Plugin Support
WFAdam
(@wfadam)
Hello @vierthom and thanks for reaching out to us!
I have not seen this error before so I did a bit of research on it. Looks like this was a common problem in WP 5.5. Which version of WP are you currently running? I also read that sometimes other SMTP mail plugins can interfere with the WP SMTP. It seems if a plugin is requesting the PHPMailer, it can cause this error as well.
It’s strange that when you disable Wordfence this error stops. Wordfence shouldn’t have anything to do with your SMTP on your site. Just in case though, let’s try running Learning Mode to make sure.
From the Wordfence Dashboard click on Manage WAF. Then you will see Basic Firewall Options > Web Application Firewall Status. Change the option to Learning Mode. Now perform the actions that were causing issues. This will help Wordfence learn that these actions are normal and it will allow them in the future. After you have finished performing the actions, switch the WAF from Learning Mode back to Enabled and Protecting. Now test to see if these actions work correctly.
https://www.wordfence.com/help/firewall/learning-mode/ is an amazing resource for learning more about the WAF and learning mode.
Let me know what you find!
Thanks!
Hi Adam,
thank you so much for getting back to me!
I have set the Web Applications Firewall Status to Learning Mode.
I have performed the actions that cause the error.
These actions are:
Login into the woocommerce account on page: https://www.s72gin.com/my-account.
After entering the username and password and hitting LOGIN, I get the error.
Then I get an email with this message:
Please verify a login attempt for your account on S72.
Request Time: October 19, 2020 04:29:34 PM
IP: 78.20.22.169
The request was flagged as suspicious, and we need verification that you attempted to log in to allow it to proceed. This verification link will be valid for 15 minutes from the time it was sent. If you did not attempt this login, please change your password immediately.
Verify and Log In
(the wp-admin page doesn’t give any error, this is still working)
I have switched back the WAF to Enabled and Protection.
Plugin Support
WFAdam
(@wfadam)
Check with Woocommerce support on this issue. Something is calling the PHPMailer function and it’s being flagged as malicious. Just doing some google searches, it seems like a common issue.
Let me know what their support says and we can go from there.
Thanks!
I have de-activated all of my plugins one by one. in between I have tried to login to check wether the error was caused by the deactivated plugin, but nothing found…
I will contact Woocommerce support – but I doubt if somebody will come up with a solution… Can’t I just whitelist this action, or does this sound too simple 🙈
UPDATE: I found a piece of code in the wp-config.php that I have commented out with //
When trying to login now i get this:
VERIFICATION REQUIRED: Additional verification is required for login. Please check the email address associated with the account for a verification link.
What do I do now??
Plugin Support
WFAdam
(@wfadam)
Hello again @vierthom
Glad to hear that! What was the issue?
I was just about to reply to your previous post and saw an update.
Thanks!