Jilino1 live.Makakuha ng libreng 700pho sa bawat deposito

Align Scan Severity with CVSS in Email Alerts

frzsombor — Thu, 21 Nov 2024 18:31:53 +0000

Dear Wordfence Team,

I am a Wordfence user managing multiple websites, and I rely heavily on automated scans with email alerts configured for “High” severity or greater. My goal is to stay informed about critical vulnerabilities while avoiding unnecessary notifications for lower-severity issues.

However, I have noticed that Wordfence categorizes every vulnerability as “Critical” in its scan results, regardless of the actual CVSS severity level. For example, I recently received an alert for a plugin vulnerability rated 4.9 (Medium) CVSS, which applies only to “Authenticated (Administrator+)” users. While this is noteworthy, it does not warrant a “Critical” designation under typical severity classifications, and I would not expect an email notification when my preferences are set to “High” or greater. This approach results in frequent notifications for low-level vulnerabilities, which dilutes the importance of truly critical alerts. For some time, I believed this behavior was a bug, but I understand now that it is by design.

Would it be possible to introduce an option to align scan result severity with CVSS ratings or allow users to filter email alerts more precisely based on CVSS levels? This change would significantly improve the relevance of email notifications for users like me who manage a large number of sites.

Thank you for considering this request, and I look forward to hearing your thoughts.

backup with alerts

Lisa — Sun, 10 Nov 2024 18:10:28 +0000

Hello,

I have automatic backups configured on Google Drive with UpdraftPlus, and I have the following message in the confirmation of my last backup : “Latest status: The backup was successful (with alerts) and is now complete”

I don’t know the reason for these alerts and where do I check ?
I need help so there are no more alerts.
I don’t know if backups with alerts can be used in case of problems ?

Thank you in advance for your help.

Trash Email Alerts

ADWheeler — Fri, 23 Aug 2024 19:36:21 +0000

Who at Wordfence thought it was a great idea to word Plugin update alerts like they were hacking attempts? Seriously…updates do not equal “Problems with WordPress”. FFS!! Get real! This fear mongering over-embellishment is ridiculous and predatory.

Alerts trigger a WP_Error when no email addresses are set

Andrew Wilder — Fri, 26 Jul 2024 17:47:34 +0000

Hi!

We’ve noticed that the Sucuri plugin still tries to send email alerts even when there are no email addresses in the list of recipients. And, when sending a “Test Email” from the Alerts settings page, it will reload the page and say it was sent successfully, which of course cannot be true.

This is triggering a WP_Error when it happens (presumably because Sucuri is calling wp_mail but not providing a To: address.)

Below is a WP_Error object that we logged; this dev site happened to be using the Fluent SMTP plugin (Configured to send outbound mail through Mailgun), but the issue is the same regardless.

WP_Error Object
(
    [errors] => Array
        (
            [wp_mail_failed] => Array
                (
                    [0] => Mailgun API Error
                )

        )

    [error_data] => Array
        (
            [wp_mail_failed] => Array
                (
                    [to] => Array
                        (
                            [0] => 
                        )

                    [subject] => Sucuri Alert, dev.local, Test Email Alert, 127.0.0.1
                    [message] => 
Event: Test Email Alert
Website: https://dev.local
IP Address: 127.0.0.1
Reverse IP: dev.local
Date/Time: July 25, 2024 4:21 pm
User: andrew

Message: Test email alert sent at July 25, 2024 4:21 pm

                    [headers] => Array
                        (
                        )

                    [attachments] => Array
                        (
                        )

                    [phpmailer_exception_code] => 400
                )

        )

    [additional_data:protected] => Array
        (
        )

)

Thanks!

streamlining proposal for the WordPress translation system

last water — Tue, 09 Jul 2024 12:08:00 +0000

Because there may be thousands of plugins that must have been translated by temporary users, who stayed in WordPress for a while and then left…
I would like to have a system set up that will synchronize all the information and tell the translation editors and the WordPress communities everywhere that there are plugins/themes/WordPress/ and more X -X -X that have not been translated!
Too bad this information is being lost!
No translation editor knows about translations that have been made.
I would be happy to develop/discuss the issue.

WooCommerce order post update notifications

deeveedee — Thu, 06 Jun 2024 18:45:32 +0000

My eCommerce website has been operating for several years. Starting in December 2023, I have been receiving the following two post update notifications with every WooCommerce order (I was not receiving these post updates before December 2023):

Message: Shop_order status has been changed; details: ID: 8513,Old status: wc-pending,New status: wc-processing,Title: Order – June 5, 2024 @ 05:46 PM
Message: Shop_order status has been changed; details: ID: 8513,Old status: new,New status: wc-pending,Title: Order – June 5, 2024 @ 05:46 PM

WooCommerce developers claim that these post update notifications are not related to anything that they have changed in their plugin, so I do not understand why these post updates (once being performed silently) are now resulting in e-mail alerts.

How do I configure Sucuri alert preferences so that I am not receiving notifications for these two post updates (new -> wc-pending and wc-pending -> wc-processing)?

Thank you.

Wordfence won’t send emails (IONOS host only)

Thu, 22 Feb 2024 17:41:13 +0000

I have wordfence (free version) installed on over a dozen sites. Some of them do not do well at automatically sending alerts or reports to my email, all of them will send a test email with no issues via the diagnostics panel. Until recently (some time between Feb. 5 and now), this function no longer works on this site in the link, which is on an IONOS server. IONOS links me to this page (https://www.ionos.com/help/hosting/no-sending-of-emails-with-a-different-sender-address/) and says that due to security reasons they are blocking “alternative or empty” email addresses. Wordfence sends in this format: wordpress@domain which IONOS interprets as an invalid address. Does the premium version send alerts differently? While I was on chat with IONOS I did a new install and test email on a different IONOS hosted site, which worked fine which tells me there is either something else going on, or they are applying their rules randomly. They tell me that Wordfence is going to cease to work on all their sites. Is this true? Are other hosts about to make this change that will block all alerts from Wordfence?

How to deactivate mails when updates are availbable?

LogoLogics — Fri, 08 Dec 2023 20:34:38 +0000

Hi,

Really love this plugin and use it on 120+ sites.
That means that every time there is an update available, I get 120+ emails telling me about that.

I know I can unsubscribe from these email notifications, but after unsubscribing, my email is completely removed in WordFence email notifications settings.

I do want to keep getting alerts when administrators are users log in and when there are high level attempts to log in etc.

How can I achieve that please?

Thanks,
Annie

Love this for our agency!

Andrew Wilder — Sat, 11 Nov 2023 13:53:46 +0000

We use Logtivity on all of our clients’ sites — it’s incredibly helpful to have not just logging, but alerting for any events we want. The Slack alerts work beautifully, and they enable us to take immediate action when needed. That thoroughly impresses our clients because we have such a watchful eye over things.

Steve & Ralph are phenomenal developers and product managers. I have made a crazy-number of feature requests and suggestions, and most have already been incorporated (or are at least on the roadmap).

I can’t say enough good things about the two of them — they epitomize the absolute best of the WordPress ecosystem!

New Job Post Alerts emailed to all users

jeanesumner — Tue, 24 Oct 2023 17:02:12 +0000

I am trying to find out if it is possible to send new Job Post alerts to all registered users vs. having them set up individual alerts.

The current workflow is for new job postings to go to Admin for review. The “Jobs” page is only shown to certain roles on the website.
Once the new Job is published by the Admin, is it possible for the “Subscriber” user to get an email (Instead of setting up Alerts)?

I do have the Alerts Add-on, and I was hoping there was a way to globally enable alerts for all new postings.