Security Breach

  • Resolved xxxhoop

    (@xxxhoop)


    3 years, 4 months ago

    This is coming from a fake email address which i have never created [email protected]

    Howdy!

Since WordPress 5.2 there is a built-in feature that detects when a plugin or theme causes a fatal error on your site, and notifies you with this automated email.

In this case, WordPress caught an error with one of your plugins, Wordfence Security.

First, visit your website (https://alternativesmallbusiness.fund/) and check for any visible issues. Next, visit the page where the error was caught (https://alternativesmallbusiness.fund/wp-admin/widgets.php?legacy-widget-preview%5BidBase%5D=custom_html&legacy-widget-preview%5Binstance%5D%5Bencoded%5D=YToyOntzOjU6InRpdGxlIjtzOjA6IiI7czo3OiJjb250ZW50IjtzOjQ2NjoiPHNjcmlwdCBhc3luYyBzcmM9Imh0dHBzOi8vcGFnZWFkMi5nb29nbGVzeW5kaWNhdGlvbi5jb20vcGFnZWFkL2pzL2Fkc2J5Z29vZ2xlLmpzP2NsaWVudD1jYS1wdWItODgxNDkxMzQyMDkyMTM5OCINCiAgICAgY3Jvc3NvcmlnaW49ImFub255bW91cyI%2BPC9zY3JpcHQ%2BDQo8IS0tIGFsdGVybmF0aXZlLmZ1bmQgLS0%2BDQo8aW5zIGNsYXNzPSJhZHNieWdvb2dsZSINCiAgICAgc3R5bGU9ImRpc3BsYXk6YmxvY2siDQogICAgIGRhdGEtYWQtY2xpZW50PSJjYS1wdWItODgxNDkxMzQyMDkyMTM5OCINCiAgICAgZGF0YS1hZC1zbG90PSI3MTA3MTA0OTU5Ig0KICAgICBkYXRhLWFkLWZvcm1hdD0iYXV0byINCiAgICAgZGF0YS1mdWxsLXdpZHRoLXJlc3BvbnNpdmU9InRydWUiPjwvaW5zPg0KPHNjcmlwdD4NCiAgICAgKGFkc2J5Z29vZ2xlID0gd2luZG93LmFkc2J5Z29vZ2xlIHx8IFtdKS5wdXNoKHt9KTsNCjwvc2NyaXB0PiI7fQ%3D%3D&legacy-widget-preview%5Binstance%5D%5Bhash%5D=5e749760f928e9477217f845e71536eb&legacy-widget-preview%5Binstance%5D%5Braw%5D%5Btitle%5D=&legacy-widget-preview%5Binstance%5D%5Braw%5D%5Bcontent%5D=%3Cscript%20async%20src%3D%22https%3A%2F%2Fpagead2.googlesyndication.com%2Fpagead%2Fjs%2Fadsbygoogle.js%3Fclient%3Dca-pub-8814913420921398%22%0D%0A%20%20%20%20%20crossorigin%3D%22anonymous%22%3E%3C%2Fscript%3E%0D%0A%3C!--%20alternative.fund%20--%3E%0D%0A%3Cins%20class%3D%22adsbygoogle%22%0D%0A%20%20%20%20%20style%3D%22display%3Ablock%22%0D%0A%20%20%20%20%20data-ad-client%3D%22ca-pub-8814913420921398%22%0D%0A%20%20%20%20%20data-ad-slot%3D%227107104959%22%0D%0A%20%20%20%20%20data-ad-format%3D%22auto%22%0D%0A%20%20%20%20%20data-full-width-responsive%3D%22true%22%3E%3C%2Fins%3E%0D%0A%3Cscript%3E%0D%0A%20%20%20%20%20(adsbygoogle%20%3D%20window.adsbygoogle%20%7C%7C%20%5B%5D).push(%7B%7D)%3B%0D%0A%3C%2Fscript%3E) and check for any visible issues.

Please contact your host for assistance with investigating this issue further.

If your site appears broken and you can't access your dashboard normally, WordPress now has a special "recovery mode". This lets you safely login to your dashboard and investigate further.

https://alternativesmallbusiness.fund/wp-login.php?action=enter_recovery_mode&rm_token=recovery-token-removed-by-moderator

To keep your site safe, this link will expire in 1 day. Don't worry about that, though: a new link will be emailed to you if the error occurs again after it expires.

When seeking help with this issue, you may be asked for some of the following information:
WordPress version 5.8.2
Current theme: Businessbiz (version 1.3)
Current plugin: Wordfence Security (version 7.5.6)
PHP version 7.4.25

Error Details
=============
An error of type E_COMPILE_ERROR was caused in line 22 of the file /srv/disk2/3533691/www/alternativesmallbusiness.fund/wp-content/plugins/wordfence/lib/wordfenceClass.php. Error message: require_once(): Failed opening required '/srv/disk2/3533691/www/alternativesmallbusiness.fund/wp-content/plugins/wordfence/lib/wfActivityReport.php' (include_path='.:/usr/local/php-7.4.25/share/pear')
    • This topic was modified 3 years, 4 months ago by Yui.
    • This topic was modified 3 years, 4 months ago by Yui. Reason: sensitive data removed

    The page I need help with: [log in to see the link]

Viewing 5 replies - 1 through 5 (of 5 total)
  • Moderator Yui

    (@fierevere)

    永子

    WordPress (by default) always sends email from wordpress@SITEADDRESS
    so you should not disregard this email and .. well, you are on the right forum to solve the error issue reported.

    Thread Starter xxxhoop

    (@xxxhoop)

    Thanks, i will wait for their response but i ain’t clicking on any links on that email, infact i deleted them both..this has happened before… bloody plugins..especially this one… asking for upgrades and they are the issue..always pointing to other plugins yet..they too are an issue…i told them months ago that their plugin is affecting the widget area..yet they blamed all other plugins.. they Wordfence and the All In One seo plugin have issues, even probably a conflict…

    Plugin Support wfphil

    (@wfphil)

    Hi @xxxhoop

    If your site is alternativesmallbusiness.fund then the email has been sent by your WordPress installation due to a fatal PHP error as @fierevere mentioned.

    The fatal PHP error has been caused by a missing Wordfence file. It may have occurred due to a failed plugin update.

    You can delete the Wordfence plugin directory located below. If you are not sure what to do then your hosting provider may be happy to help you:

    ~/wp-content/plugins/wordfence

    Then reinstall WordPress on the WordPress Plugins page and it should be fixed. All of your settings will be intact as they are stored in the database.

    Thread Starter xxxhoop

    (@xxxhoop)

    You mean reinstall wordfence, you said reinstall wordpress….

    Plugin Support wfphil

    (@wfphil)

    Hi @xxxhoop

    My apologies, yes I meant to say “reinstall Wordfence”.

Viewing 5 replies - 1 through 5 (of 5 total)
  • The topic ‘Security Breach’ is closed to new replies.