Support » Plugin: All In One WP Security & Firewall » Cannot update Visual Composer when WP Security is enabled

  • Resolved cwarrent

    (@cwarrent)


    Hello,

    I’ve tried reading through a few posts and searching but cannot see anything directly related at this stage.

    Basically my theme has a bundled copy of Visual Composer and when I initiate an update from the themes custom landing page, it fails and gives a 404 error (and thus all related VC pages won’t load correctly from the frontend).

    I’d assume the update process is not 100% the same as the normal way updates are applied and a resulting URL (quite long with many query strings) gives a 404 error.

    Could it be that a few settings such as:
    – Deny Bad Query Strings
    – Enable Advanced Character String Filter

    ..could be causing this?

    I can test but would appreciate any pointers so I don’t get caught in a loop disabling features, applying update then rolling back the site to repeat the process as needed to see results if makes sense 🙂

    https://wordpress.org/plugins/all-in-one-wp-security-and-firewall/

Viewing 3 replies - 1 through 3 (of 3 total)
  • Plugin Author wpsolutions

    (@wpsolutions)

    …when I initiate an update from the themes custom landing page, it fails and gives a 404 error

    What exactly is that “custom” landing page? Does it reside within your wordpress admin panel or is it external?
    Do you have the rename login feature active?

    If it’s external, I wonder if their upgrade script assumes that they would be able to reach the standard “wp-admin” page because if you have rename login active that will not be possible of course.

    If it’s none of the above….then yes I think you are probably correct in basing your suspicions that one of the firewall rules are responsible but since I’ve never seen this issue personally I’m not sure which might be causing the issue and you will need to test that.

    Right, to update I’ve fixed the issue.

    Took a while to test as I had to implement, document and restore the site and repeat… will update below.

    The theme (Shopkeeper) has a custom area within the WP Admin panel for updating bundled plugins. I’m guessing this update uses a complex query string to verify the purchase codes and the like for the theme and the plugin.

    The conflict was caused by enabling:

    FIREWALL > ADDITIONAL FIREWALL OPTIONS > DENY BAD QUERY STRINGS

    …On disabling this the update worked fine.

    Hope this post may help others.

    Plugin Author wpsolutions

    (@wpsolutions)

    Thanks for updating us and taking the time to test this.

Viewing 3 replies - 1 through 3 (of 3 total)
  • The topic ‘Cannot update Visual Composer when WP Security is enabled’ is closed to new replies.