Login and Security Issue with Update dated 07.02.2024

  • Resolved finansh

    (@finansh)


    9 months, 2 weeks ago

    We recently encountered an issue following today’s plugin update, and we urgently need assistance to resolve it.

    After updating the plugin earlier today, we noticed that the plugin automatically disabled itself after a few hours.

    We enabled the plugin through our host, but then we are unable to log into the dashboard through either the standard login URL (website.com/wp-admin) and our custom AIOS login URL. Only once we disable the AIOS, we can login normally

    Additionally, we observed unusual activity, including multiple accesses to pages such as /wp-admin/admin.php, /wp-admin/post.php, and /wp-admin/edit.php.

    We have already taken the following steps:

    1. Conducted a malware scan.
    2. Requested a security and access check from our hosting provider.

    Despite these measures, the issue persists, and we are unable to access the WordPress dashboard consistently without disabling the plugin.

    The page I need help with: [log in to see the link]

Viewing 4 replies - 1 through 4 (of 4 total)

  • I don’t think you have been infected or breached. One of my sites started having problems after today’s AIOS plugin update. I deactivated it by renaming the folder and was able to log in. Oddly enough reactivating the plugin did not take the site offline again.

    I am seeing error log entries triggered by AIOS when UptimeRobot connects. The log entries refer to a missing column in the database.

    [Thu Feb 08 02:43:18.455830 2024] [proxy_fcgi:error] [pid 2381630:tid 139642920879808] [remote 216.144.248.23:0] AH01071: Got error 'PHP message: WordPress database error Unknown column 'released' in 'where clause' for query SELECT * FROM wp_aiowps_login_lockdown WHERE released > UNIX_TIMESTAMP() AND failed_login_ip = '216.144.248.23' AND lock_reason = '404' made by require('wp-blog-header.php'), require_once('wp-load.php'), require_once('/srv/www/example.com/www/wp-config.php'), require_once('wp-settings.php'), do_action('init'), WP_Hook->do_action, WP_Hook->apply_filters, AIO_WP_Security->wp_security_plugin_init, AIOWPSecurity_General_Init_Tasks->__construct, AIOWPSecurity_General_Init_Tasks->do_404_lockout_tasks, AIOWPSecurity_Utility::check_locked_ip', referer: https://example.com/

    Thread Starter finansh

    (@finansh)

    Hi,
    Thanks for the update. The workaround worked. Also the 404 were of similar nature.

    Thanks again.

    Plugin Support aporter

    (@aporter)

    Hi @finansh

    Just curious if you have another TFA plugin installed like Duo or Google Authenticator?

    Best Wishes,

    Ashley

    Thread Starter finansh

    (@finansh)

    Hi Ashley,

    Yes, we do use a TFA Plugin linked to AIOS

Viewing 4 replies - 1 through 4 (of 4 total)
  • The topic ‘Login and Security Issue with Update dated 07.02.2024’ is closed to new replies.