Replies: 0
Hello,
I’m trying wordfence 7.5.5 (and olders too)
Manually Refresh Rules has failed, I deleted rules.php and wordfence create it,
My server cannot access to internet directly, this used wordpress proxy for updates.
Wordfence update proces using wp-proxy or connecting directly for get updates ?
Thanks.
Replies: 0
I run a website based on a no longer supported theme, which breaks when updating to WP 5.8. It only runs until 4.8. Client can’t afford new theme/page. So I downgraded page to 4.8. What security measures are possible under these conditiones? Any other options? Best and thanks for your time. 🙂
(On the page with this issue I run free version of WordFence)
Replies: 0
Idea: add option to typo check invalid usernames
Wordfence has an option to imidiately lock out invalid usernames. Could you add an option to ignore typos, for example, using regex to check if it was close to a valid username.
Thanks.
Replies: 0
How do you unlock the account of a legitimate user that forgot their password (and didn’t use the forgot password function…)?
Thanks
Replies: 0
Hello,
In the last update an alert was displaying in my dashboard alerting of possible conflicts with Woocommerce sites. It was related to WordFence Firewall.
It prompted me to manually update. I clicked to manually update and while the alert disappeared the issues still persist.
Below I transcribe same issue I posted in Woocomerce forum
“`If you go to recorreba.com/mi-cuenta/ you will land in a page with restricted content (Argentina del Progreso – Introductorio)
Content of this page belongs to recorreba.com/argentina-del-progreso. This page is related to Woocommerce as it is the URL (and download link) of the restricted content for product recorreba.com/producto/argentina-del-progreso/ . However, If you paste this address recorreba.com/producto/argentina-del-progreso/ in the nav bar you will experience redirection to https://recorreba.com/arquitectura-en-argentina/?redirect_to=%2Fargentina-del-progresosss%2F and this redirection issue is now present in every URL containing the restricted content I am selling through Woocommerce. At this moment all pages related to protected content sold through Woocommerce would redirect, Examples:
recorreba.com/brutalismo
recorreba.com/planes-urbanos
https://recorreba.com/tipologias-de-viviendas/, etc.All of the products show the same issue. None of the redirections however take you to the corresponding page. They all land in the website STORE https://recorreba.com/arquitectura-en-argentina/ followed by the redirection slug example: ?redirect_to=%2Ftipologias-de-viviendas%2F
If you try to make a purchase from recorreba.com/producto/argentina-del-progreso/ you will see that “Comprar” button again shows this problem, you should be derived to https://recorreba.com/carro/ but you will probably see argentina-progreso content so checkout process is broken.
I de-activated and then re-activated WordFence but the issue persists. “
Kindly, let me know how to configure WordFence in order to fix this issue.
Thank you so much!
Liliana
Replies: 0
Good Day!
Issue:
For some odd reason, Wordfence detected our Name Server IP (not Site IP), blocked it, and now displays it in Wordfence’s Widget (“Top 5 IPs Blocked”).
Details: https://ibb.co/2Kz6wJs
When the above happened, Wordfence was in learning mode. Also, our IP detection option was set to “Let Wordfence use the most secure method to get visitor IP addresses. Prevents spoofing and works with most sites. (Recommended)”
Our host is SiteGround and we’re using Cloudflare.
Questions:
(1) What caused Wordfence to block our Name Server IP?
(2) How can we clear the Name Server IP entry shown in our Widget?
(3) Should we Whitelist both our Name Server IPs and Site IPs?
(4) What can we do to prevent the above from happening again?
(Note: We have switched our Firewall from “Learning Mode” to “Enabled and Protecting.” Also, we have switched our IP detection option from “Let Wordfence use the most secure method …” to “Use the Cloudflare “CF-Connecting-IP” HTTP header to get a visitor IP. Only use if you’re using Cloudflare.”)
Help appreciated!
Replies: 0
I’m needing to setup recaptcha v3 on a client’s site, but kept running into a console error. To double check it wasn’t site specific, I repeated the process using my dev site as a test. I generated new keys for the dev site, and entered them into the Wordfence plugin, in the “Enable reCAPTCHA on the login and user registration pages” section and checked “Enable WooCommerce integration” box. When I test, the same error occurs in the browser’s developer console on the dev site as did on my client’s live site. The error states “Uncaught Error: Invalid site key or not loaded in api.js: {SITE KEY HERE}”. I’ve deleted and setup the keys at least 5 times now in Google, and triple checked them in the WP admin each time. I don’t really know what else to check at this point. My domain is entered without the https:// in the Recaptcha admin as I saw other people were having that cause this same issue. I also notice I don’t see the little recapcha badge anywhere, which I though was supposed to still show somewhere on the page. Any help would be appreciated!
Replies: 0
Hello,
Can someonehelp me out with this please?
I’m getting the following message on the site health screen
The REST API call gave the following unexpected result: (503)
I noticed someone posted about this a year ago, but the steps to resolve their issue did’t work for me. I don’t have any blocks in place in Wordfence > Firewall > Blocking.
Screenshots of the text/code under the error message available here:
Replies: 1
Hi,
I have Wordfence installed on several websites and it worked well but unfortunately, one of them it is not.
I have found that when I have attempted to run a Scan, it stops within 10 seconds.
Any help would be much appreciated.
Thanks!
Replies: 0
I’ve searched the documentation and forums for this but the only answers I found were unhelpful stock answers. My scans run fine but always turn up yellow triangle warnings for Server State and Vulnerability Scan. I have no idea what these mean or how to fix them, and as I said, the only answers I found were unhelpful. FYI I keep WordPress and all plugins up to date. I’m new to WF so would appreciate some help. Thank you.
Replies: 0
Yeah, I can click the optimize button but after that I don’t know what to do to actually optimize the firewall. Don’t assume any knowledge on my part.
Replies: 3
The new support for WooCommerce login and registration forms is awesome!
But it’s also stops Woocommerce notices in this page at all (Like “The username or password you entered is incorrect.”)
Replies: 1
Hey,
I have Wordfence installed on the website https://www.austriayourguide.tours/.
I received the message “File contains suspected malware URL”.
I deleted malware files, but when I try to scan Wordfence, I am redirected to a 404 page.
Any help is appreciated.
Thanks!
Replies: 0
Posted this earlier here but it was marked resolved before it actually was resolved, so I’m reposting it here as I still need help.
[INITIAL MESSAGE] I have been using Wordfence for a long time on my website, but I just logged in and noticed it isn’t activated. I don’t remember deactivating it (I am the only admin on my site), and when reactivating the plugin, it advises me that “wordfence-waf.php” already exists (not surprising, considering I was using the plugin before) and that I should contact you here before proceeding.
Do I need to be worried that my site may have been hacked? It is still online and working without issue.
[FOLLOW-ON MESSAGE] I had previously been using Wordfence, but (as said earlier) recently noticed it was not activated. I don’t know how long it was deactivated for, but it is quite likely it was previously activated with a previous version of WP, and possibly even an earlier version of PHP. This notice came up after re-activating Wordfence, and going to its settings page in my WP dashboard.
You can find the screenshot for this notice at https://ibb.co/S6DH5nm.
Diagnostic report has just been emailed to you.`
Replies: 5
Hi, I have several sites that show the rules did not refresh. When I try to manually refresh the rules, this error shows:
Rule Update Failed
No rules were updated. Please verify your website can reach the Wordfence servers.
I think I set the following IPs to whitelists but am not sure:
44.239.130.172
44.238.191.15
35.155.126.231
54.68.32.247
44.235.211.232
54.71.203.174
I tried to submit a premium support ticket but even though I was logged in, I was unable to get to the support form.
Can you help?
Thanks, Daphne
Replies: 0
Hi Wordfence, I’m using your plugin and I have about 2 dozen “medium” alerts showing for one specific plugin.
Is there a way we can find out more regarding what’s triggering these many warnings?
We ignored them before, but this plugin (in general) triggers another one. We have about 20 websites that use WordFence, only this one uses the WooCommerce Plugin. Is this something we would contact them about?
Website:
https://www.healingelementswellness.com
Plugin:
WooCommerce Events Manager
Thank you!
Replies: 0
Hello,
I have been unable to edit with Elementor and upon invetigation, after having disabled and re-enabled each plugin one by one I can confirm that WordFence is causing the issue.
Once re-activated, Elementor stops working. It cannot fully load as you can see in
https://recorreba.com/CAPTURA-PANTALLAS/woocommerce-error-message-bad-links.jpg
I have WordFence deactivated. please help me fix this error
Thank you very much
Liliana
Replies: 0
I have a custom made plugin for my wordpress that has a custom made widget that makes a javascript request to https://piratemc.com/wp-content/plugins/MineCraftOnline/json_players_query.php
On this page https://piratemc.com/players/
WordFence is blocking my internal plugin with a 403! I need to know how to whitelist this URL right now.
I tried your “Learning mode” that did absolutely nothing, I have also tried adding the url to
All Options > Allowlisted URLs
but I have no idea what parameters to set.
I just want to be able to whitelist this specific URL.
Proof that there in allow list
https://i.imgur.com/8B4lLxb.png
Replies: 1
Hi I’m getting some unknown error Since august and I don’t know about it please help me to solve this. Below is the link to the error which I’m getting
Replies: 1
Hi,
I see two errors marked high on my Wordfence dashboard. I know there were increased login attempts yesterday. I am not sure if it is related.
Error 1. wp-includes/functions.wp-scripts.php
File Type: Core
Details: This WordPress core file has been modified and differs from the original file distributed with this version of WordPress.
Changes:
return $wp_scripts->localize( $handle, $object_name, $l10n ); to return $wp_scripts->localize( $handle, $object_name, (array)$l10n );
error 2. Unknown file in WordPress core: wp-includes/bkp_functions.wp-scripts.php
Type: File
Filename: wp-includes/bkp_functions.wp-scripts.php
File Type: Core
Details: This file is in a WordPress core location but is not distributed with this version of WordPress. This scan often includes files leftover from a previous WordPress version, but it may also find files added by another plugin, files added by your host, or malicious files added by an attacker.
Do you think it’s an attack or something?
Attaching my google doc file with screenshots.