• So I tried responding to this thread where a user was experiencing the same issues.

    https://www.ads-software.com/support/topic/what-is-all-the-javascript-in-the-header/?#post-14270000

    Adam didn’t answer however, so I’m opening a new thread.

    Adam’s answer to the OP was pure pacification. His comment of “it doesn’t load for regular users” is completely false. No reason to have marked that ticket resolved considering this is a severe flaw with your plugin. When inspecting element, depending on the browser, there’s different scripts loading. It’s worse for Chrome. However in Chrome I don’t get the warning “Elements on your site are insecure” due to the https:// links being generated by Wordfence. Like 16 lines of bloat in Chrome. With Firefox it’s less bloat, but the http: links being generated “href=’http:\/\/nginx.org\/en\/docs\/http\/ngx_http_autoindex_module.html” are causing issues with Firefox and getting warning that the site isn’t secure.

    1. It slows Google PSI and affects Core Vitals negatively.
    2. It causes security warning in the FireFox browser with the “This site has elements that are unsecure” warning. This impacts CTR negatively.

    These are SERIOUS issues for people that take their businesses (websites) seriously. This impacts our SEO in a bad way and decreases our revenue.

    Wordfence needs to get on this.

Viewing 1 replies (of 1 total)
  • Plugin Author WFMattR

    (@wfmattr)

    Hi,

    Are you seeing this code loaded in a browser while not logged into the site? Regular users would include visitors to the site — in general users who are not an admin. I do not see the translation strings when visiting test sites without logging in, or even when logged in as an editor, for example.

    If you have a site where this is visible without logging in, I could check it out.

    I also do not see a warning in Firefox for that nginx link even when it’s in the source, but if you can give me details of what page you’re visiting when you see that, I can try to reproduce the issue. That URL isn’t loaded as an asset, so it’s strange for there to be a warning.

    Please also let me know if you are using any plugin that combines/minifies javascript, or alters it in other ways.

    -Matt R
    Wordfence QA Lead

Viewing 1 replies (of 1 total)
  • The topic ‘Tons of bloat, this is severely problematic for SEO’ is closed to new replies.