WordPress.org

Ready to get started?Download WordPress

Forums

Fast Secure Contact Form
[resolved] vcita wp_sessions being added to wp_options table (12 posts)

  1. lesb55
    Member
    Posted 1 year ago #

    The MySQL server on my VPS crashed the other day, and checking in my wp_options table I found over 1000 wp_session entries like this:
    a:1:{s:12:"vcita_expert";b:1;}

    Thinking these were being created by the new feature: 'Meeting Scheduler - by vCita'; (being as I don't have this feature enabled anyway) I deleted this folder from the si-contact-form plugin folder.

    I then manually deleted all these wp_sessions from my database, but noticed that this wp-session still keeps getting added to my database:
    a:3:{s:24:"fsc_shortcode_redirect_1";s:0:"";s:22:"fsc_shortcode_hidden_1";s:0:"";s:24:"fsc_shortcode_email_to_1";s:0:"";}

    Then the wp-sessions like this keep getting added:
    _wp_session_8c5fb3d0c5626b3d589e5bb6652394f4 a:1:{s:12:"vcita_expert";b:1;}

    Starting to suspect a hack, because WordPress should not normally retain sessions (Register_Globals is off on my server).

    Disabled Fast Secure Contact Form plugin on our duplicate test site, and the added wp_sessions stopped.

    This has only started with the latest updates of FS contact form. (Wasn't happening with version 3.1.6.3.)

    Anybody else getting this?

    http://wordpress.org/extend/plugins/si-contact-form/

  2. Mike Challis
    Member
    Plugin Author

    Posted 1 year ago #

    This plugin requires sessions and has implemented wp session manager.
    There is nothing wrong, those entries are temporary and get deleted after a period of time.

    In the upcoming version 4.0 there will be an improved vcita feature.

    More about wp session:
    http://wordpress.org/extend/plugins/wp-session-manager/
    http://eamann.com/tech/wp_session-a-proposal/
    http://eamann.com/tech/introducing-wp_session/

  3. lesb55
    Member
    Posted 1 year ago #

    Phew!

    Thanks for the explanation Mike.

    But my sessions are not being stored as transients.

    Are my sessions not being deleted because I am using W3 Total Cache with APC opcode cache (there were over 1000 in my wp_options table)?

  4. Mike Challis
    Member
    Plugin Author

    Posted 1 year ago #

    Every visitor will have a temporary session stored on the options table. The session tokens are very small, it is a server side cookie store. The sessions automatically purge after 30 minutes of inactivity. 1,000+ rows in the options table shouldn't be an issue, particularly since the table is indexed already.

    There is lots of information about how wp session works in the links gave you.
    You can ask questions about WP session here:
    http://wordpress.org/support/plugin/wp-session-manager

  5. callmeforsox
    Member
    Posted 1 year ago #

    These get deleted, right? I have over 1 million rows of just sessions.

  6. tamantit
    Member
    Posted 1 year ago #

    Hi Mike,

    mySql server exceeded the quota I purchased.

    I found 100.000 records in wp_options table like this one

    _wp_session_84e3d0cb7ece74de557fdd0210f8986f
    a:1:{s:12:"vcita_expert";b:1;}

    Do you think is safe to delete them manually?

    Many thanks

  7. Mike Challis
    Member
    Plugin Author

    Posted 1 year ago #

    Yes you can delete them

    The current version has a new wp session feature that does not work properly on some configurations. I will fix it in the next version by removing wp-session and reverting back to PHP session.

    But until then, if you are having problems...
    I recommend going back to this version:
    http://downloads.wordpress.org/plugin/si-contact-form.3.1.6.3.zip

    The instructions how to do it are here:
    http://www.fastsecurecontactform.com/revert-to-previous-version

  8. Catherine
    Member
    Posted 1 year ago #

    PHPMyAdmin found 260487 matches for my "at least one of the words" search of wp_session in the options table.

    Can I bulk delete them all safely by clicking the "delete" link on this page:

    http://drmiller.com/wp-content/uploads/2013/03/Screen-shot-2013-03-28-at-12.36.28-PM.png

    Thanks. If I can, that would save much time and keep backups flowing smoothly.

  9. Mike Challis
    Member
    Plugin Author

    Posted 1 year ago #

    Yes you can delete them but I recommend backing up the database first for good measure.

  10. Catherine
    Member
    Posted 1 year ago #

    I'm having to restore this site to a backup from earlier today and I am seeing this message from BackupBuddy: Mar 28, 2013 4:48:52 pm 76.40 3.67 error Error #9010: Unable to import SQL query: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near ''a:3:{s:24:/"fsc_shortcode_redirect_1/";s:0:/"/";s:22:/"fsc_shortcode_hidden_1/"' at line 1

    Thought you might like to know.

  11. Mike Challis
    Member
    Plugin Author

    Posted 1 year ago #

    Update to Version: 3.1.8.2 or higher to fix this.
    The database will be cleaned up from these left over session rows also.

    I switched back to PHP sessions because WP Sessions had issues with cache plugins and the session cleanup was not working

  12. formerfatguy
    Member
    Posted 1 year ago #

    I dont think I've EVER ran into a current, up to date, ongoing discussion of a problem on this support site EVER!

    Have the same issue. My options table is huge and yes, it's left over sessions.

    Glad to see a fix

Topic Closed

This topic has been closed to new replies.

About this Plugin

About this Topic