Kevin on "[Plugin: Wordfence Security] Latest version causing major issues...
After the update, for Themify, it identifies the following file themify/themify-utils.php and still marks the warning as Severe with the message This file is a PHP executable file and contains the word...
View ArticleWordfence on "[Plugin: Wordfence Security] Latest version causing major...
OK guys here's what I think we should do: This new detection is very sensitive and useful if your site has been hacked. But it's clearly kicking out a lot of false positives. So I've made a change on...
View ArticleWordfence on "[Plugin: Wordfence Security] Modified plugin file:...
Hi Nikolov, Actually we use the tag to compare and we figure out which tag to use based on the version. If there are no tags, then we'll use trunk. So if the developer is behaving properly and tagging...
View ArticlePositiveMostOfTheTime on "[Plugin: Wordfence Security] Wordfence Flag for...
UPDATE! Issue fixed! Thanks!
View Articleslui on "[Plugin: Wordfence Security] Latest version causing major issues...
Hi Mark, I did another scan and now I have no issues to report. Thanks. sl
View Articlearcarcane2012 on "[Plugin: Wordfence Security] Latest version causing major...
Looks good on this end too.
View ArticleWordfence on "[Plugin: Wordfence Security] Latest version causing major...
OK thanks. As I'm writing this version 4.0.3 is being pushed out and will be in the repository in a few seconds and will show up as a new version within an hour. It contains a checkbox under scanning...
View ArticleWordfence on "[Plugin: Wordfence Security] Private IP 255.255.255.255"
Hi, I think this was a bug introduced in 4.0.2. Please upgrade to 4.0.3 which just went out and see if that fixes it. I think it probably will. Regards, Mark.
View ArticleWordfence on "[Plugin: Wordfence Security] Logs of IP Address visiting web site"
Yes, the problem with restricting by date is that if you get hit by an attack which generates a billion page requests in a day, your server will run out of disk. So we have to restrict by number of...
View ArticlekevinB on "[Plugin: Wordfence Security] False positive for malicious code:...
WordFence is reporting Press Permit Core as a critical security concern because press-permit-core/admin/plugin_pp.php "contains the word ‘eval’ (without quotes) and the word ‘base64_decode’ (without...
View Articlebarker2k on "[Plugin: Wordfence Security] Latest version causing major issues...
Updated to version 4.0.2 this morning. I attempted to block a network from whois lookup and received this error You are trying to block yourself. Your IP address is (67.xx.xx.xx) which falls into the...
View Articlealex80ks on "[Plugin: Wordfence Security] false positives"
Hello, i found out that if i use CDN subdomain i get false positives no matter what. I use mirror settings in W3 Total Cache so i have duplicated files on server. It is not important too much but maybe...
View Articlealex80ks on "[Plugin: Wordfence Security] false positives"
I find out that if you dont enter email you cannot turn off notification email in advanced options.
View Articlenikolov.tmw on "[Plugin: Wordfence Security] Latest version causing major...
Hi Mark, Thanks for the devoted involvement. I'm just thinking of what would happen if the hacker uses let's say eval (... or `eval (` - I just checked and PHP seems to be fine with parenthesis being...
View Articlenikolov.tmw on "[Plugin: Wordfence Security] Modified plugin file:...
That makes sense. The strange thing on the other hand is that it only happens for the readme.txt files - I haven't seen it anywhere else so far. Any way, here's what showed up earlier today: Events...
View ArticleWordfence on "[Plugin: Wordfence Security] Latest version causing major...
barker2k: That's been fixed in 4.0.3. nikolov: I'm aware of this and we actually have a huge number of regex patterns we also use which pick up tricks like this. However we're constantly working to...
View ArticleChangeAgent on "[Plugin: Wordfence Security] Scan process ended after forking."
First UD is no longer installed on my site. I scanned with WF first and noted there was an upgrade for WF and Contact Form 7 so I installed these first. Next I did instal UD and ran WF scan and got at...
View ArticleHelenNovice on "[Plugin: Wordfence Security] Latest version causing major...
I downloaded the 4.3 version, ran a scan and still get the Backup Buddy error/ warning messages.
View ArticleWordfence on "[Plugin: Wordfence Security] Modified plugin file:...
I just installed Events Manager and it scans clean for me. Can you tell me how you installed it? Did you download it from the author's website? Thanks.
View Articlenikolov.tmw on "[Plugin: Wordfence Security] Modified plugin file:...
It did that during a scheduled scan - I believe after I updated Wordfence(the 4.0.2 update). I installed it from the plugins repository and I did so quite some time ago. The trac log shows that the...
View Article