I’m using iThemes Security plug in (free version)
Unfortunately I can’t scan my site!
I’ve already tried to deinstall and reinstall the plug in. Didn’t work…!
Site scan still doesn’t work after the cooldown!
Error: The scan failed to properly scan the site
Exceeded rate limit. Please wait 289 seconds
Array id =>[number] 5802 time => 2023-10-02T11:16:02+00:00 url =>[empty string] code => scan-failure-client-error description => überprüfungsfehler status => error entries =>Array() errors =>Array 0 =>Array code => rate_limit_exceeded message => Exceeded rate limit. Please wait 289 seconds. data =>Array wait =>[number] 289 url => https://skiclub-radolfzell.com _links =>Array self =>Array 0 =>Array href => https://skiclub-radolfzell.com/wp-json/ithemes-security/v1/site-scanner/scans/5802 ithemes-security:site-scan-issues =>Array 0 =>Array embeddable =>[boolean] true href => https://skiclub-radolfzell.com/wp-json/ithemes-security/v1/site-scanner/scans/5802/issues curies =>Array 0 =>Array name => ithemes-security href => https://s.api.ithemes.com/l/ithemes-security/{rel} templated =>[boolean] true
Thank you very much!
best
]]>https://patchstack.com/database/vulnerability/elementskit-lite/wordpress-elementskit-lite-plugin-2-9-0-broken-access-control-vulnerability?_a_id=431
and it says you were fixing this backing in June.. 2 months ago?
]]>According to the iThemes security plugin, ElementsKit has been having known vulnerabilities for a while. These are them
- WordPress Premium Addons PRO plugin <= 2.9.0 – Broken Access Control vulnerability
- WordPress Premium Addons PRO plugin <= 2.9.0 – Sensitive Data Exposure vulnerability
Are they known to the community? Are they known to the developers? Is some quick fix awaiting around the corner? Is the iThemes security plugin mistaken?
Cheers!
~IF
]]>Hello, we have several sites where we are replicating a problem when trying to access with the 2FA with the email method. The error appears after entering the username and password, that is, in the step where the email must be sent (it is not a problem of sending, the code is received correctly) and the field to enter the code is displayed. Right now, instead of seeing this field, I’m getting a blocking message from Cloudflare.
Add that, if I try the option to identify myself from APP, the field is displayed without problem.
]]>Dear iThemes,
Please be advised that when migrating a large website using All in One Migration (with the Unlimited Extension), IThemes Security causes a critical issue whereby the database restoration process stalls at 0% indefinitely or the migration is only partially restored.
After receiving support from AiO ServMask, I was advised to temporarily disable iThemes before creating the migration package. This has solved the issue on my side, but you might want to investigate why this is happening.
Thanks.
Kind regards
Anthony.
I know I can just turn off notifications – but rather than ignoring it, does anyone have any idea why this might be happening? The files that were supposedly changed are sometimes plugins, themes, or core – but I’m not running automatic background updates so nothing should be getting overhauled without me knowing.
I use IThemes security on my webpage for several months. I’m quiet happy but since I use it, I can’t upload medias. So I get used to swich off my plugin bevore i upload the picture and turn it on afterwards.
If i have IThemes security on, my Images have always the same issue:
There is no thumbnail and no image visible, if i click on the image and then on the edit button, i see the image.
Further it doesn’t show up if i use it in the webside.
I use Elementor (currently v3.12.1). I read there is sometimes a problem thogether with the Ultimate Member – Plugin but turning off UM doesn’t change anything and the proplem wasn’t exactly the same.
Usually when the pictures are online (after turning off IThemes and turning it on again) everything works fine. But today 2 Images of the Page wasn’t loading poperly. After swiching off IThemes, refresh the pages and turn it on again, everything was visible again.
I try to set my IP as authorized host in IThemes Security without sucess.
It would be great to get some help here.
]]>I am using the version “8.1.2” of iThemes security plugin. While using One Of the Feature File Access of settings Advanced. i am having the following error on the frontend.
“A validation function for system-tweaks received data that has an entry for request_methods when no such entry exists.”
And it has the error code 207 with the following messages.
“A validation function for system-tweaks received data that has an entry for suspicious_query_strings when no such entry exists.”
“A validation function for system-tweaks received data that has an entry for non_english_characters when no such entry exists.”
“A validation function for system-tweaks received data that has an entry for long_url_strings when no such entry exists.”
“A validation function for system-tweaks received data that does not match the expected data type for the write_permissions entry. A data type of NULL was expected, but a data type of boolean was received.”
]]>What an amazing plugin is here!
I can’t have both plugins: iThemes Security + WP Hide & Security Enhancer active is it possible?
Thank you