Wordfence Blocking Ajax Requests

  • Resolved Jason Ryan

    (@viablethought)


    5 years, 9 months ago

    Hello –

    We are finding in a lot of cases where we set up staging sites in sub-directories off of the root where the site in the root directory has Wordfence enabled and it blocks any Ajax requests on the site in the sub-directory being made.

    Is there a way to disable this or list a specific directory in the file tree not to be watched by Wordfence? The only other option I have right now is to disable the plugin altogether on the production site, which is not ideal.

    Thanks.

Viewing 2 replies - 1 through 2 (of 2 total)
  • Thread Starter Jason Ryan

    (@viablethought)

    Hello –

    After some reading and checking the production site’s logs, I put the site in Learning Mode and found the entries in the Live Traffic view and was able to Whitelist those actions.

    I am good to go now. Thanks.

    Hi @viablethought,

    Can you tell me the plugin that is not working with ajax requests? If there are multiple plugins not working, you can list them here too.

    If it’s a custom script that calls an ajax file within a directory, please let me know what that script is sending to the ajax handler.

    I think that Wordfence is blocking the request to the ajax handlers because it is triggering some XSS rule.
    As a test, can you go into Wordfence -> All Options, and disable the XSS slider?

    For example: https://i.imgur.com/zcbU44G.png

    Dave

    Edit: Glad to see you got it working!

    • This reply was modified 5 years, 9 months ago by wfdave.
Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘Wordfence Blocking Ajax Requests’ is closed to new replies.