I just ran into this issue myself. I fixed it on my end but hopefully they’ll fix it within the core…
Affected file:
better-wp-security/core/class-itsec-lib.php
Affected function within that file:
public static function get_module_path( $file ) {
$path = str_replace( ITSEC_Core::get_plugin_dir(), '', dirname( $file ) );
$path = ltrim( str_replace( '\\', '/', $path ), '/' );
$url_base = trailingslashit( plugin_dir_url( ITSEC_Core::get_plugin_file() ) );
//$url_base is returning https://yoururl/wp-content/plugins/better-wp-security/
//fix...not returning correct path for strong passwords module...
//check if path is for the strong-passwords module and correct if so
//you'll need to change this to the xampp directory you posted
if($path == "C:/inetpub/yourapplicationpath/wp-content/plugins/better-wp-security/core/modules/strong-passwords"){
return trailingslashit( $url_base . "core/modules/strong-passwords" );
}else{
return trailingslashit( $url_base . $path );
}
}
I know its bad practice to hack the core, but I needed a fix without waiting…
![[click]](http://i.imgur.com/K08MXdv.png){kind=link}