david2432
Forum Replies Created
-
I did scan it, does not seem to be compromised. After some modifications I don’t see wp_asx.php in logs anymore, though it might reappear.
Currently my main concern is that I see many xmlrpc logs in 404 monitor of my Seo Rank Math plugin, it also logs user agents and those user agents start with “Mozilla 4…” which seems outdated version of Firefox, not sure what this could mean… I also have enabled monitoring 404 in Aiowps and it does not show these. Rank Math has the option to ignore “query parameters” in its 404 settings. I turned it now to ignore and will see if xmlrpc will still appear.
My question above was about Aiowps one of the function “Check this if your site uses AJAX functionality” which is found when turning on brute force protection as you suggested. I have several plugins but don’t know which of them uses Ajax.
Also, could you tell me if 404 logs in Aiowps are deleted automatically after some period of time?!
Thank you and sorry if asking too much questions.I agree, this cookie based prevention is a good feature, but, how can I know if my theme or plugins use Ajax, should I write and ask all of them?!
No. Is that necessary? Could you tell me please what is wp_asx.php?! can’t find any info about it…
Also, is enabling both: WP XML-RPC and Pingback good idea? Maybe first one already includes the second!?Forum: Plugins
In reply to: [Accept Donations with PayPal & Stripe] Email is shown instead of Merchant idHi, Scott. Unfortunately deleting caches of my plugin didn’t help and I don’t think think it could be server caching either because the same happens in my local Xampp installation. Maybe this is because PayPal updated their policy recently or because I have Personal (not Business) account?! Thanks.
Ah yes, I remember tested other similar plugins in xampp, I’m sorry.
In Settings there are Cancel URL and Return URL. Should I create these pages like “Thank You” page?!Are file permissions reset to defaults when I deactivate the plugin?
I’m sure most of them if not all are false positives, either general changes made by plugins, no other scanners have found these.
I’m sorry but I don’t have time and intention to re-activate wordfence again and investigate that…