Hello there, I am trying to activate this plugin having recently installed it and it will not allow me to do so.
I tried disabling other plugins before going through the process and this made no difference.
Can you please tell me what I need to do to get it working?
]]>Can’t initially scan my blog, it also looks like their main website is down.
]]>Is it possible to use contemporary 6scan protection with wordfence wp plugin?
]]>i manage few multi networks
and i wish to know if the plugin support multisite
and provide the network admin option to set the option for for the networks
I downloaded 6scan to check our site for problems. After installing and activating the screen appeared to create a 6scan account. I decided not to create the account but clicked scan site anyway. As quickly as the button was pressed to scan the site every page went directly to a 500 error and has stayed that way even after deleting the 6scan plugin via my ftp program.
What happened!?
I have complete access to everything else, mail, directories via ftp and cpanel, but site no longer works!
]]>Hi
That’s a strange problem! When I deactivate 6scan some active plugins lost their menu!!! I can access their settings page directly but for example Platinum Seo menu is not under Settings menu!!!!!
When I reactivate 6scan those menus appeare again.
in modules/signatures/loginsec.php
please quote function names
in sixscan_signatures_loginsec_register()
(and pls remove trailing whitespaces)
Thank you!
]]>Hello,
I Cannot login to backend / wp-admin after installing 6SCAN (paid version).
I get an 403 error FORBIDDEN and this is caused by the modifications in the
main
.htaccess file. Pleaase help
Best regards
I’ve got a warning on one site that it’s open to the unserialize vulnerability, and to fix it myself I need to backport some code from the fix in WordPress 3.6.1.
The thing is, the site is running WordPress 3.6.1.
This doesn’t exactly inspire confidence in the scanning accuracy.
]]>You just sent me an email warning me that my client’s site has a critical security vulnerability that I need to pay you #9.99 to fix.
Thing is, the site hasn’t had WordPress installed on it for over three months. Nothing left there but an index.html.
Trust factor for future installs just seriously tanked over here.
]]>HI there. been using 6Scan for awhile and very pleased. I installed it on 2 domains; one a sub domain and one new one. After downloading and activating plug-in, I can’t get to options page and a orange window is popping up asking for access via FTP. Is this normal. Seems odd to me and I can’t remember this occurring before.
I can log in via the website.
I wanted to set the notifications. does it inherit the notifications and lock out times from what I set up on the original site.
Tx
]]>Is there any update on when this plugin will work with multisite?
I work with multisite almost exclusively and multisite users are left out of security enhancements like this.
Great plugin, if I could use it.
Backup fails when enabled and info button does not provide any information. Scan report warning also not clearing following manual fix.
]]>After I installed this plugin, I became locked out of my admin area, only after looking though and restoring and deleting files and clearing my cookies was I able to log back in. Not sure what the exact problem was but was able to get to the back end.
]]>I just installed your plugin 6 SCAM security on my wordpress site and after the activation of this plugin i have an error:
“The website encountered an error while retrieving https://new.radiogmusic.com/wp-admin/plugins.php. It may be down for maintenance or configured incorrectly.”
“HTTP Error 500 (Internal Server Error): An unexpected condition was encountered while the server was attempting to fulfill the request.”
]]>I installed and activated the 6scan plugin from the WordPress Repository. When I went to the setting page for 6scan I saw it wanted me to “Confirm my email to continue” and stated “By clicking Agree, I agree to 6Scan’s Terms of use.” (I did NOT click “Agree”.
I deactivated the plugin and a few days later I got an unsolicited email from [email protected] with the subject “6Scan cannot contact your plugin at https://mydomain.com”. I was shocked and upset that they had forcibly taken my email address from my WP Database without my permission.
This Clearly violates the WordPress Plugin Repository Plugin Guidelines:
No unauthorized collection of user data. For example, sending the admin’s email address back to your own servers without permission of the user is not allowed; but asking the user for an email address and collecting if they choose to submit it is fine. All actions taken in this respect MUST be of the user’s doing, not automatically done by the plugin.
This I am writing this to warn all prospective users about this immoral (if not illegal) abuse of private information and also in the hopes that I get the attention of the developers of this plugin so that they may change their tactics.
I would also hope that a WP Plugin Moderator would see this as a breach of the Plugin Guidelines and suspend distribution of this plugin until they stop stealing user’s private data.
]]>Why is 6scan being reported (in log files) as associated with compromised servers that appear to be hosting hackers?
https://www.ipillion.com/ip/95.211.58.114
Amsterdam, Netherlands tried to access https://forumrenegade.com/wp-content/plugins/allwebmenus-wordpress-menu-plugin/readme.txt
2 hours 59 mins ago IP: 95.211.58.114 [block] Hostname: battlecruiser.6scan.com
Browser: Firefox version 7.0 running on Win7
Mozilla/5.0 (Windows NT 6.1; WOW64; rv:7.0.1) Gecko/20100101 Firefox/7.0.1
Hi,
I’m currently using your plugin on a few sites but I’m having issues installing it on wordpress sites hosted on Zeus and Apache servers.
When I try to activate it, it gives me the following error:
6Scan Install Error: Failed creating signature file at WordPress directory /clientdata/apache-www/b/l/bluepharaohmusic.com/www/6scan-signature.php
I don’t have any issues installing it on websites on cpanel hosting. I’ve contacted my host and this is what they emailed me:
Write permissions are not allowed to the root folder for cloud
environments. What i suggest is that you contact the Vendor of the
Plugin and ask if their plugin is supported on cloud environments which
do not allow root folder write permissions.
is there a workaround the root folder permissions?
]]>hi,
just installed 6scan with premium support –
i’m getting a 404 page on one of our login pages for our users at:
https://www.globalrevival.com/media/
how can i fix this so it displays the page properly?
]]>Can you tell me how to uninstall this plugin. I cannot find it in my plugin list or on my server in the plugins folder? Thanks.
]]>From a technical standpoint, this software may work very well, I never got to fully test it because upon activating it, I was informed that my site was “vulnerable to attack.” At which point I was told to upgrade for which I could pay a mere $14.99 for a one time fix (with, of course, standard and advanced subscription options).
That’s what I call a SCAM!
]]>I am getting a lot of requests from this address and the host is listed as battlecruiser.6scan.com from the Netherlands.
Is that a legitimate 6 scan address?
]]>Firstly let me say Im very disappointed by your customer service – I have raised three emails on your 6SCAN support section directly and not receive ANY reply at all – The first was over a week ago – and the second this morning after your plugin took out my site again
Your plugin installs correctly and works until it runs some kind of scan – It then creates a htaccess file that then causes the site to deliver a 500 error. I have to go in and then delete the htaccess file . Not exactly idea as it means that the site isn’t protected.
This has now happened three times
I have sent you a copy of the htaccess file
Meanwhile I have disabled your plugin – and am about to do so on four other sites that I have also.
Please can you let me know whats going on – If there is an issue with the plugin ? or something else perhaps thats causing it ..
]]>Will this plugin work on Windows IIS server?
]]>Hey all..
I tried to jump on my website this morning and intead of wesbite i got this
var generator = new Object(); generator.params = new Object(); generator.updateParam = function(name, value) { //var element = document.getElementById(id); switch (this.params[name].type) { case “url”: case “text”: case “color”: this.params[name].value = value; break; case “int”: this.params[name].value = Number(value); break; case “bool”: this.params[name].value = value; // (value == “on”)?1:0; break; } } generator.addParam = function(id, name, type, defaultValue) { var element = document.getElementById(id); this.params[name] = new Object(); this.params[name].type = type; this.params[name].defaultValue = defaultValue; this.params[name].element = element; switch (type) { case “url”: case “text”: this.params[name].value = element.value; element.onchange = delegate(this.params[name], function() { this.value = this.element.value; generator.updatePlayer(); }); break; case “color”: this.params[name].value = element.value.replace(/#/, ”); element.onchange = delegate(this.params[name], function() { this.value = this.element.value; generator.updatePlayer(); }); break; break; case “int”: this.params[name].value = Number(element.value); element.onchange = delegate(this.params[name], function() { this.value = Number(this.element.value); generator.updatePlayer(); }); break; case “bool”: this.params[name].value = element.value; // (element.value == “on”)?1:0; element.onchange = delegate(this.params[name], function() { this.value = this.element.value; // (this.element.value == “on”)?1:0; generator.updatePlayer(); }); break; } }; generator.updatePlayer = function() { var out = ‘
“Cannot modify header information – header already sent by (output started at /home…./plugins/6scanbackup/6scan.php:148) in /home…/wp-includes/pluggable.php on line 881
I jumped on the FTP error log and found a heap of error messages
[17-Jul-2012 23:52:14 UTC] PHP Warning: Cannot modify header information – headers already sent by (output started at /home…../plugins/6scan-backup/6scan.php:148) in /home/…..wp-includes/functions.php on line 2494
Once I disabled the plugin via the FTP changing the folder name of 6scan.. the website was fine!
Is there an issue with the backup? I dont want to reinstall the 6scan in case it drops the site again!
]]>I made sure that htaccess, uploads, and upgrads and all its subfolders have 777 permissions before trying this.
I get the following message upon clicking “Activate”:
exception ‘Exception’ with message ‘Failed to find 6scan-gate.php during installation’ in /var/www/vhosts/samauctionsoftware.com/httpdocs/wp-content/plugins/6scan-protection/admin/includes/htaccess.php:12 Stack trace: #0 /var/www/vhosts/samauctionsoftware.com/httpdocs/wp-content/plugins/6scan-protection/admin/includes/installation.php(149): sixscan_htaccess_install() #1 /var/www/vhosts/samauctionsoftware.com/httpdocs/wp-content/plugins/6scan-protection/admin/includes/installation.php(19): sixscan_installation_install(‘9c751bfff2d01f4…’) #2 [internal function]: sixscan_installation_manager(”) #3 /var/www/vhosts/samauctionsoftware.com/httpdocs/wp-includes/plugin.php(403): call_user_func_array(‘sixscan_install…’, Array) #4 /var/www/vhosts/samauctionsoftware.com/httpdocs/wp-admin/admin-header.php(135): do_action(‘admin_notices’) #5 /var/www/vhosts/samauctionsoftware.com/httpdocs/wp-admin/admin.php(149): require_once(‘/var/www/vhosts…’) #6 {main}
]]>I’ve effected the recommended manual fixes for “WordPress 3.4 comment posting forgery” and “WordPress up to 3.4 Usernames enumeration.” 6Scan vulnerability warnings are still there for each, including the large horizontal bar telling me I have 2 unfixed vulnerabilities across the top of every WordPress screen. Does this mean my manual fixes didn’t work, or is there a way to make these warnings go away?
]]>Hello,
I was asked to give feedback about the plugin by email but nitznm email is not working.
Hello,
This is more a curiosity question…
My site received a vulnerability warning about “3.4 comment posting forgery” that read the following:
>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
Wordpress 3.4 (and 3.3.2) comment posting forgery
CSRF vulnerability in WordPress versions under 3.3.2 allows malicious users to make fake posts
<<<<<<<<<<<<<<<<<<<<<<<<<<<<<
However from what I could find about this vulnerability, WordPress has patched that in WordPress 3.3.2, so is this warning still valid? Should one still follow the instructions provided in the scan report to “patch” the vulnerability?
Thank you in advance for the clarifications!
]]>Hello,
After disabling 6Scan, I believe your Cloud Service is still scanning my site. I keep receiving alerts from another plugin ‘Better WP Security version 3.2.6’ that an I.P. address of 95.211.58.114, is trying to open files that do not exist. Most of these files are ‘readme.txt’ from plugins I don’t use.
How do I stop your service from scanning my site?
]]>