Does WPDataTables Plugin Trigger SQL Injection Warning?

  • Resolved bonus21

    (@bonus21)


    7 years, 8 months ago

    I am using WPdatatables plugin on my site wellclientapp.com and since I have installed it, I have not been able to get it working.
    I got my security summary from WordFence and noticed that perhaps WF is blocking the plugin…

    Recently Blocked Attacks
    Time IP / Action
    July 10, 2017
    2:06pm
    192.0.192.51 (Canada)
    Blocked for SQL Injection in POST body: table_content=SELECT wp_4_posts.* FROM wp_4_posts INNER JOIN wp_4_postmeta ON ( wp_4_posts.ID = wp_4_postmeta.p\xea
    July 10, 2017
    2:03pm
    192.0.192.51 (Canada)
    Blocked for SQL Injection in POST body: table_content=SELECT wp_4_posts.* FROM wp_4_posts INNER JOIN wp_4_postmeta ON ( wp_4_posts.ID = wp_4_postmeta.p\xea
    July 7, 2017
    10:50am
    192.0.192.51 (Canada)
    Blocked for SQL Injection in POST body: table_content=SELECT wp_4_posts.* FROM wp_4_posts INNER JOIN wp_4_postmeta ON ( wp_4_posts.ID = wp_4_postmeta.p\xea

    Is there a way to allow the plugin?

    Thanks

Viewing 2 replies - 1 through 2 (of 2 total)

  • Hi bonus21,
    After trying to use the plugin, I suggest checking (Wordfence > Live Traffic) and filter the traffic by “Blocked by Firewall”, if any of the listed entries has some queries related to this specific plugin, you can whitelist the request right there in the Live Traffic log, or switch the “Firewall Status” into “Learning Mode” for a couple of days or something (make sure to use the plugin in this period) then revert it back to “Enabled and Protecting”.

    Let me know how it goes,
    Thanks.

    Hello!

    I hope we were successful in helping you resolve your issue with Wordfence! Since we have not heard back from you in the past 2 weeks I will now be marking this support thread as resolved. However, if we still haven’t resolved your issue please reach out to us as we would be more than happy to further assist you!

    Thanks and have a great day!
    Chloe

Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘Does WPDataTables Plugin Trigger SQL Injection Warning?’ is closed to new replies.