Wordfence Security

  • Resolved mitcheljn

    (@mitcheljn)


    6 years, 6 months ago

    Hi,

    I am using Wordfence Security plugin in a website which also has a WooCommerce added for eCommerce platform. Recently our server guy scans the website for PCI Compliance and provides me below errors which I have to remove:

    1. Web error message information leakage
    2. Web program allows cross-site scripting in a query string

    So I just want to confirm from your side that is your plugin also prevent both errors mentioned above? If not then there is a way by using your plugin I can prevent a website by above warning/hack?

    Please suggest. What else process you can suggest removing above errors.
    Thanks

    The page I need help with: [log in to see the link]

Viewing 1 replies (of 1 total)

  • Hi @mitcheljn

    Wordfence firewall will protect your website from attacks initiated via the second point you mentioned which is “Cross-site Scripting (XSS)”, however, I recommend working with your server guy to fix whatever plugin or theme that allows such attacks in first place! because this means that your website is vulnerable at some point.

    For the first point, again, you will have to work with your server guy to identify which messages exactly show this information and narrow it down to a plugin or theme or even WordPress itself, then report this issue back to the designated dev team.

    Thanks.

Viewing 1 replies (of 1 total)
  • The topic ‘Wordfence Security’ is closed to new replies.