Title: HTTPS/ SSL warning message Last modified: January 9, 2021 --- # HTTPS/ SSL warning message * Resolved [sally.whytehead](https://wordpress.org/support/users/sallywhytehead/) * (@sallywhytehead) * [5 years, 4 months ago](https://wordpress.org/support/topic/https-ssl-warning-message/) * Hi I got a report “The website does not seem to be using HTTPS (SSL/TLS) encryption for communications” When I ran it manually, it went away. The url uses https * Why would this occur? What does it check? Viewing 10 replies - 1 through 10 (of 10 total) * Plugin Contributor [ethicalhack3r](https://wordpress.org/support/users/ethicalhack3r/) * (@ethicalhack3r) * [5 years, 4 months ago](https://wordpress.org/support/topic/https-ssl-warning-message/#post-13887496) * Hi Sally, * Thank you for letting us know. * Just to confirm, when you installed the plugin it was showing that there was no https, then when you ran a scan, it correctly showed that there was? * Thanks again, Ryan * Thread Starter [sally.whytehead](https://wordpress.org/support/users/sallywhytehead/) * (@sallywhytehead) * [5 years, 4 months ago](https://wordpress.org/support/topic/https-ssl-warning-message/#post-13887885) * Hi The plugin has been installed for some time, without this error. Then it seems to have run overnight and given this error. When I ran it manually later, the error cleared. * [webbernaut](https://wordpress.org/support/users/webbernaut/) * (@webbernaut) * [5 years, 4 months ago](https://wordpress.org/support/topic/https-ssl-warning-message/#post-13889693) * Having the same issue on multiple sites. All have https setup and redirect any http to https in htaccess. But getting email notifications about HTTPS communication warning. * I don’t think this code is working as intended. security-checks > https > check. php * [webbernaut](https://wordpress.org/support/users/webbernaut/) * (@webbernaut) * [5 years, 4 months ago](https://wordpress.org/support/topic/https-ssl-warning-message/#post-13889697) * Although this could be a cloudflare/proxy issue with is_ssl() in that file. Most of the sites are behind cloudflare. * > “WordPress is_ssl() doesn’t work behind some load balancers.” * [https://developer.wordpress.org/reference/functions/is_ssl/#comment-1093](https://developer.wordpress.org/reference/functions/is_ssl/#comment-1093) * Plugin Contributor [ethicalhack3r](https://wordpress.org/support/users/ethicalhack3r/) * (@ethicalhack3r) * [5 years, 4 months ago](https://wordpress.org/support/topic/https-ssl-warning-message/#post-13890421) * Thanks for the info [@webbernaut](https://wordpress.org/support/users/webbernaut/)! * I’ll look into this today and release a new version with a fix. * Plugin Contributor [ethicalhack3r](https://wordpress.org/support/users/ethicalhack3r/) * (@ethicalhack3r) * [5 years, 4 months ago](https://wordpress.org/support/topic/https-ssl-warning-message/#post-13891022) * I have setup a test environment on SiteGround, with HTTPS and Cloudflare. * I’m just waiting for a domain name to transfer over to SiteGround before I can enable HTTPS on the site to test it. * Once this is done, I can properly test how the plugin behaves when using HTTPS and Cloudflare and fix the issue. * I just thought I’d update you as the domain transfer might take a day or two. * For now, you can ignore the warning in the “Ignore vulnerabilities” metabox, on the right hand side of the report page. * [⌊Screenshot-2021-01-11-at-11-34-19⌉⌊Screenshot-2021-01-11-at-11-34-19⌉[ * Plugin Contributor [ethicalhack3r](https://wordpress.org/support/users/ethicalhack3r/) * (@ethicalhack3r) * [5 years, 4 months ago](https://wordpress.org/support/topic/https-ssl-warning-message/#post-13891527) * This should be fixed in version 1.14.2. * Thank you for your help. * [vraisa](https://wordpress.org/support/users/vraisa/) * (@vraisa) * [5 years, 3 months ago](https://wordpress.org/support/topic/https-ssl-warning-message/#post-13922353) * Getting “Undefined index: HTTP_HOST” in the admin. Also got the email notification that “The website does not seem to be using HTTPS (SSL/TLS) encryption for communications”. * The server is using HTTPS and is also behind Cloudflare. * Plugin version: 1.14.2 * [Erik Molenaar](https://wordpress.org/support/users/erikmolenaar/) * (@erikmolenaar) * [5 years, 3 months ago](https://wordpress.org/support/topic/https-ssl-warning-message/#post-13924468) * > Getting “Undefined index: HTTP_HOST” in the admin. * Same issue here. * Plugin Contributor [ethicalhack3r](https://wordpress.org/support/users/ethicalhack3r/) * (@ethicalhack3r) * [5 years, 3 months ago](https://wordpress.org/support/topic/https-ssl-warning-message/#post-13926275) * I was unable to reproduce the “Undefined index: HTTP_HOST” error locally, but have made a change and released version 1.14.3, which I think should fix the issue. Please let me know if it does not. Viewing 10 replies - 1 through 10 (of 10 total) The topic ‘HTTPS/ SSL warning message’ is closed to new replies. * ![](https://ps.w.org/wpscan/assets/icon.svg?rev=2678582) * [WPScan - WordPress Security Scanner](https://wordpress.org/plugins/wpscan/) * [Frequently Asked Questions](https://wordpress.org/plugins/wpscan/#faq) * [Support Threads](https://wordpress.org/support/plugin/wpscan/) * [Active Topics](https://wordpress.org/support/plugin/wpscan/active/) * [Unresolved Topics](https://wordpress.org/support/plugin/wpscan/unresolved/) * [Reviews](https://wordpress.org/support/plugin/wpscan/reviews/) ## Tags * [HTTPS](https://wordpress.org/support/topic-tag/https/) * 10 replies * 5 participants * Last reply from: [ethicalhack3r](https://wordpress.org/support/users/ethicalhack3r/) * Last activity: [5 years, 3 months ago](https://wordpress.org/support/topic/https-ssl-warning-message/#post-13926275) * Status: resolved