jeffThevenot
Forum Replies Created
-
Forum: Plugins
In reply to: [Add Shortcodes Actions And Filters] ForbiddenHello,
Thank you for your post, I had the same bug!
I copy all my website to my dev server and I couldn’t save/update my shortcode PHP with add-actions-and-filters (Forbidden) or shortcode-exec-php plugin (error 403).
In fact that is the new firwall in Wordfence who do that.
Solution:
1. If your are in Learning Mode you have to answer allowed at “Whitelisted while in Learning Mode” question. (In my case I had deleted Wordfence and Wordfence table in dB)2. You can add “Add Whitelisted URL/Param” in the Firewall tab:
shortcode-exec-php :
URL:/wp-admin/admin-ajax.php
Param: POST/Body
Param Name: phpcodeadd-actions-and-filters :
URL:/wp-admin/admin-ajax.php
Param: POST/Body
Param Name: codeForum: Fixing WordPress
In reply to: Error 403 just after changed password – wp-login.phpHello,
Thank you for your help.
I spoke with my host.
Here are the results of our research:“We are currently facing several waves bruteforcing interface
Administration Joomla and WordPress. Following this, we implemented a
system to eliminate this kind of attacks. The rules established
were obviously too strict and prevented access to certain pages.
They have just been adapted this morning … “Since then, the 403 error is gone and the change password is operational again.
It is therefore necessary to contact host to ask him to look at it closely.
Yes, WordPress have not involved.
Hoping this will help other.
Sincerely,
JeffForum: Fixing WordPress
In reply to: Error 403 just after changed password – wp-login.phpMy htaccess is basic:
<IfModule mod_rewrite.c>
RewriteEngine On
RewriteBase /
RewriteRule ^index\.php$ – [L]
RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-d
RewriteRule . /index.php [L]
</IfModule>and wp-login.php is not in folder.
and in fact when I change into /wp-login.php without var (?action=resetpass&key=djIJnfdQxjpwfjjymg5U&login=loginname) It’s working. So I can access to /wp-login.php, no?
If var are bad for ex: action=dodododo there is no check but error 403.
And this man have the same problem :
http://vedovini.net/2013/05/how-to-change-your-wordpress-password-when-you-lost-all-hopes/I contacted my hosting and they have the same problem in a blank install.