The [Essential Block].[Post Grid].[Pagination] function does not work properly that there will be no response when you press [1] or [2] in the pagination (the query loop will not be triggered).
After thorough research about this , I found out that there is plugin conflict that causes this problem.?The plugin that causes conflict is [BBQ Firewall].
By disabling it, [Pagination] function works properly.
I have tried to whitelist the url= [https://dentisthongkong.com/] using the plugin [BBQ Firewall Whitelist] but the problem persists. The problem is only not experienced if [BBQ Firewall] is deactivated.
please help to fix this issue.
regards!
]]>Hi Jeff,
the latest version of your plugin (20241017) blocks my PDF download script.
The download URL is for example: /wp-content/plugins/bonsai-ads/download.php?file=bonsai-kampan-189-1730442684.pdf
The download.php script is not doing anything fancy:
// Connect with WordPress
require_once( __DIR__.'/../../../wp-config.php' );
require_once( __DIR__.'/../../../wp-includes/wp-db.php' );
require_once( __DIR__.'/../../../wp-includes/pluggable.php' );
// Download only if it's an admin or advertiser user
if( current_user_can( 'administrator' ) || current_user_can( 'bbads_manager' ) ) {
/* Get file name from the URL */
$file_name = esc_attr( $_GET['file'] );
/* Create the full file path */
$file_path = PLUGIN_PATH.'/export/'.$file_name;
$file_url = PLUGIN_URL.'export/'.$file_name;
/* Check if file exists */
if( file_exists( $file_path ) ) {
/* Download the file */
header( "Strict-Transport-Security: max-age=31536000; includeSubDomains" );
header( "X-Content-Type-Options: nosniff" );
header( "X-Frame-Options: SAMEORIGIN" );
header( "Content-Type: application/pdf" );
header( "Content-Disposition: attachment; filename=" . urlencode( $file_name ) );
header( "Content-Description: File Transfer" );
header( "Content-Length: " . filesize( $file_path ) );
$fp = fopen( $file_path, "r" );
while( !feof( $fp ) ) {
echo fread( $fp, 65536 );
flush(); // essential for large downloads
}
fclose( $fp );
} else {
echo "The file does not exist.";
}
} else {
echo "Nope, you can't do that.";
}I can confirm that the download works up to and including version 20240629, but stops working with version 20241017 of your plugin. I am not sure what’s changed, or how I can change my download code to make it work again. I would prefer not whitelisting anything, if possible, so I don’t have to bother users of my plugin to do it on each install.
Thank you very much for your help.
Best regards
]]>Hi I tried the test but the page is completly blank. the url that comes up is: https://mysite.com/?bbq-test=eval(
I tried deaktivating all plugins. -no succes.
I looked at the errorlogs there are errors but nothing related to bbq as far as i can judge
hallo and big thanks for your great work.
i would like to start using your plugins firewall and badbot but i cant find indications or compatibility for woocommerce site, i’m also using aruba hi speed cache and perfmatters. thank you. i used to set up allinonesecurity but gave my problems with caching w 6Gfirewall enabled. thanks.
]]>Does it work with WordFence?
]]>Hi @specialk
I repeat – I really like your plugin, but I have a question! He
Block empty/empty user agents and this was a link from https://t.co/ to my site, I understand this to mean that the transition from Twitter to my site was blocked? And probably I need to disable this feature?
Hi,
Today I wanted to test whether the firewall was working. To do this, I went to Settings > Test BBQ Firewall > and clicked “Okay run the test”. It says:
This test opens a new tab. If the response is 403 Forbidden (HTTP Error 403), the firewall is working.
But in the new tab no 403 error page opens, but a blank white page. When I look at the source code of the page, it just says 1 Does this mean that the firewall is not working?
Thank you very much for a hint
]]>For those using Woocommerce, is this compatible with HPOS?
]]>I’ve been investigating and the plugin is blocking the WP Smush Pro plugin (I haven’t tested it in the free version).
It’s probably blocking the request, I just couldn’t check which request is made to report here.
Not sure if this is error or what but I got 900++ php warning log
]]>PHP Warning: preg_match(): Unknown modifier ‘l’ in /wp-content/plugins/block-bad-queries/block-bad-queries.php on line 84
Hi, I’m curious if BBQ blocks external cron services that would hit a site via the URL and ? string
https://domain.tld/wp-cron.php?doing_wp_cron
Thanks
]]>Hi,
Does it support OpenLiteSpeed or LiteSpeed Server? Thanks
]]>Hi,
I came across WPTuts Youtube video about the 8G Firewall option yesterday, offering a bit better security. Apparently the code can be found on this website:
https://perishablepress.com/8g-firewall/
If you are the same author, are you planning on updating the BBQ Firewall plugin or will there be maybe a new plugin for the 8G Firewall?
Just wondering ??
]]>Hi,
just wondering if this is an all-in-one solution or if I still need other security plugins like Wordfence?
If so, is your plugin compatible with Wordfence or other security plugins?
Thanks ??
]]>Hello and thank you for this great plugin,
Recently i have activated your plugin in my website which is using:
– Last WordPress version 6.4.3,
– Premium tabula theme,*
– Lightspeed cache plugin,
Unfortunately after activation the comments form for logged in users has disappeared. When logged out you can see the comments form https://prnt.sc/e4jFpXcwUG74 , but when logged in you can not https://prnt.sc/gBHHgJoIV8IV .
After some tests, i have found that your plugin is creating this issue.When i deactivated it i can see the form again. Any ideas why this may be happening?
*The theme is using just the simple native comments form of WordPress.
Regards,
Hello.
To test the plugin, I enter https://example.com/eval(
After that I don’t get 403 Forbidden. I get a blank page with no entries. Just a blank screen. Is this the correct result of the plugin?
]]>Please note that BBQ creates an issue with the User Registration form in the Masteriyo LMS Plugin.
As you can see, a redirect is added to the signup URL, which is blocked by BBQ.
How can I fix it?
Thanks!
]]>When using BBQ Firewall and Fluent Forms, it doesn’t seem like the integrations within Fluent Forms work normally.
Is there a way for BBQ firewall to bypass a certain plugin?
I contacted the Fluent Forms support, and they said that 7G, whether server side or via BBQ, is blocking Fluent Forms REST API. Is there a way to bypass everything withing Fluent Forms?
best,
]]>Is there anyway to ban ip / ip range in this plugin?
]]>Hi, blocked requests (number) are not visible.
]]>Hello, I’m facing an issue with a client’s website. When I try to connect to the website, WordPress redirects me to the email confirmation page, but this page is now an error 403 because of the BBQ Firewall plugin. Is there a setting to adapt for this page, or this just an issue with it? Thank you by advance for your answers
]]>Hi Jeff,
First of all thank you for your job, aspessially for this great plugin and .htaccess Tricks!
I’d like to ask is it possible to show different content for white and black lists visitors?
Despite that I’m going to change CF7 to one of your secure contact form plugins, I strongly need to hide contact form from bad queries at all.
Thanks in advance
]]>Hello,
When editing HTML in a specific block of the editor, an error occurs.
Block Load Error: The response is not a valid JSON response.
Please let me know if it is part of the specification for requests containing line breaks to be blocked, and if so, what possible solutions could be considered.
When rendering a block that uses PHP in the editor, the request is made via the REST API, and the returned data is used for rendering. However, it seems that this request is being blocked.
]]>Good Day,
As implied by this FAQ answer, it appears your plugin does not incorporate or use all of the blocking rules contained in nG Firewall. Therefore, we have to install both your plugin and add the latest nG firewall rules to our htaccess file for optimum protection.
Based on the above, and to simplify things, it would be great if you can update your plugin’s code to ensure it always uses the blocking rules contained in nG Firewall.
That is, with BBQ Firewall installed, there should be no need to add the latest nG Firewall rules to our htaccess file.
Thank you!
]]>Good Day,
One more … ??
Can you provide a code snippet or htaccess rule that will allow us to redirect URLs blocked by your plugin to a URL (i.e., page) of our choice? (e.g., 404 page, home page, custom block page, etc.)
Thank you!
]]>Good Day,
What type of page (i.e., design) is served when a URL is blocked by your plugin?
For example, when we test your plugin per your plugin’s instructions we get a block page generated by Cloudflare as shown below.
Good Day,
Searched and could not find anything related to this topic, so here goes:
Is your plugin compatible with Wordfence? If using Wordfence, do you still recommend using your plugin?
Thank you!
]]>I am receiving some fatal error codes everytime that I try to activate the BBQ Pro plugin. Plus the Plugin Planet website is bugging out with errors and will not let me login or submit a support ticket.
]]>Hello. it happen when try to bulk edit product when BBQ is enabled
Not sure which plugin causing conflict. Below are the parameter FYI, see if you could notice any issue?
Thanks
Access to example.com was denied
You don’t have authorisation to view this page.
HTTP ERROR 403
example.com/wp-admin/edit.php?s=&post_status=all&post_type=product&_wpnonce=054f59d705&_wp_http_referer=%2Fwp-admin%2Fedit.php%3Fpost_type%3Dproduct&action=edit&product_cat=&product_type=&stock_status=&seo-filter=&schema-filter=none&fb_sync_enabled=&paged=1&tax_input%5Bproduct_cat%5D%5B%5D=0&tax_input%5Bavailable_on%5D%5B%5D=0&tax_input%5Bspecial_cat%5D%5B%5D=0&tax_input%5Bfb_product_set%5D%5B%5D=0&rank_math_bulk_edit_primary_term=bcdc9a539b&_wp_http_referer=%2Fwp-admin%2Fedit.php%3Fpost_type%3Dproduct&rank_math_primary_term=0&page_template=-1&comment_status=&_status=-1&acf%5Bfield_5fe3578848d73%5D=___do_not_change&tax_input%5Bproduct_tag%5D=&change_regular_price=&_regular_price=&change_sale_price=&_sale_price=&_tax_status=taxable&_tax_class=standard&change_weight=&_weight=&change_dimensions=&_length=&_width=&_height=&_shipping_class=&_visibility=&_featured=&_stock_status=&_manage_stock=&change_stock=&_stock=&_backorders=&_sold_individually=&woocommerce_bulk_edit=1&woocommerce_quick_edit_nonce=548cfd9260&rank_math_quick_edit_nonce=c8a13fa4a8&_wp_http_referer=%2Fwp-admin%2Fedit.php%3Fpost_type%3Dproduct&rank_math_title=&rank_math_description=+&bulk_edit=Update&post_view=list&screen=edit-product&post%5B%5D=6560&post%5B%5D=6060&post%5B%5D=6059&post%5B%5D=6058&post%5B%5D=6057&post%5B%5D=6056&post%5B%5D=6055&post%5B%5D=6054&post%5B%5D=5738&post%5B%5D=5473&post%5B%5D=5472&post%5B%5D=5471&post%5B%5D=5134&post%5B%5D=5092&post%5B%5D=5091&post%5B%5D=5090&post%5B%5D=5089&post%5B%5D=5087&post%5B%5D=5088&post%5B%5D=5086&post%5B%5D=5085&post%5B%5D=5083&post%5B%5D=5084&post%5B%5D=3349&post%5B%5D=2923&post%5B%5D=2924&post%5B%5D=2925&post%5B%5D=2931&post%5B%5D=2926&post%5B%5D=2922&post%5B%5D=2932&post%5B%5D=2930&post%5B%5D=2929&post%5B%5D=2928&post%5B%5D=2927&post%5B%5D=2921&post%5B%5D=2915&post%5B%5D=2639&post%5B%5D=2424&post%5B%5D=2414&post%5B%5D=1530&post%5B%5D=1548&post%5B%5D=1380&post%5B%5D=1417&post%5B%5D=1167&post%5B%5D=1486&post%5B%5D=1432&post%5B%5D=1402&post%5B%5D=1449&post%5B%5D=1504&post%5B%5D=1514&post%5B%5D=1586&post%5B%5D=1604&action2=edit
Hi there,
Thanks a lot for this great and easy-to-use plugin!
I have also installed the whitelist extension, but failed to whitelist the return URL for consumers that paid with Paypal.
Can you help me with this?
The URL looks like this:
/checkout/order-received/123456/?key=wc_order_abcdefgh&utm_nooverride=1&PayerID=1234567&st=Completed&tx=1234567&cc=EUR&amt=92.87&cm=%7B%22order_id%22%3A123456%2C%22order_key%22%3A%22wc_order_abcdefgh%22%7D&payer_email=test%test.de&payer_id=abcdefg&payer_status=VERIFIED&first_name=First&last_name=Last&address_name=First%Last&address_street=Street%20123&address_city=City&address_country_code=DE&address_zip=12345&residence_country=DE&txn_id=abcdefg&mc_currency=EUR&mc_fee=2.24&mc_gross=92.87&protection_eligibility=ELIGIBLE&payment_fee=2.24&payment_gross=92.87&payment_status=Completed&payment_type=instant&handling_amount=0.00&shipping=0.00&item_name1=Test%20Test%20%206%C2%A0x%C2%A0500��&item_number1=12345&quantity1=1&mc_gross_1=92.87&tax1=0.00&num_cart_items=1&txn_type=cart&payment_date=2023-03-30T16%3A23%3A07Z&receiver_id=abcdefg¬ify_version=UNVERSIONED&custom=%7B%22order_id%22%3A123456%2C%22order_key%22%3A%22wc_order_abcdefgh%22%7D&invoice=12345&verify_sign=abcdefgh-TB
If you need any further information, I would gladly provide that.
Thank you in advance!
Best regards,
Christopher