6Scan

Hi seonag,

This is very strange – we haven’t experienced that before. Could you maybe upload a screenshot of what you see after activating the plugin? (You can also send it to [email protected] if you don’t want it shown publicly.)

Can you also tell us why you can’t install plugins manually (perhaps this could have something to do with it), as well as exactly how you performed the installation using cPanel? Did you use FTP or cPanel’s file manager to simply copy the files over to your server from the ZIP file, or some other method?

I look forward to hearing more details so we can investigate further.

Good day,

If you are reporting a backup problems, please also include the name of your hosting provider.
This will allow us to run better compatibility tests.

Thank you.

Robert,

A one-time fix fixes all your current vulnerabilities forever. It does not fix vulnerabilities which will be found in the future.

Please note that for the fixes to remain functional, you do have to keep the 6Scan plugin installed and activated.

Hi shiramark,

Sure! 6Scan adds one more layer of security and doesn’t conflict with any other login security plugins, if you do have issues with other plugins please contact support and we will resolve your issue as soon as possible.

Thanks!

6Scan Support Team

Good day shiramark,

We got a generic scanner the resides in the cloud and scan our users sites for security vulnerabilities such as SQL Injection, XSS, RFI and many others. Besides our own exploit research, we also follow RSS feeds of security forums and news websites, whenever a new exploit is published, we analyze it and add to our exploit database.

Thank you

Hi,

On average, your site will be scanned once every few hours, making sure your site is scanned several times every day for the latest security issues. However, when a new vulnerability is discovered and published, 6Scan Security will scan affected sites with a higher priority to make sure the vulnerability is fixed right away.

In the coming days you will be able to schedule and choose when you want to be scanned.

Thank you for your question!

6Scan Support Team

Hey Dave,

Yes, this is a real vulnerability that was recently discovered in WordPress 3.3.1. As the description states, it could allow malicious users to post unauthorized comments on any of your blog posts (for example, spam comments). It was classified as high severity because although it can’t be used to steal your data, excessive off-topic comments could be used to deface your site and reduce its credibility.

The reason no further data is available is because we don’t want to make it too easy for malicious users to exploit the vulnerability by giving too many details. Of course, as soon as WordPress fix it and release a new version, full details will be published. We’ve been conferring with the group that originally found the vulnerability, and they’re in the process of notifying WordPress about it (if they haven’t already done so). WordPress is usually very good about fixing vulnerabilities such as these, so we expect a quick release of version 3.3.2 or similar once they have it fixed.

In the meantime, you can of course upgrade the 6Scan plugin to get the vulnerability fixed.

Dear Maor,

Thank you for your feedback. We mentioned in more than one place that scanning by Patrol is FREE and you can upgrade your account with a small fee of $10 per month to automatic-fix security vulnerabilities found by Patrol; we will add additional description to clarify that.

Thanks!

Yaron

It is a simple fix.

Please check your mailbox

Hi sc1961,

Can you please send to [email protected] your website address and description of the issues you had? we will do our best to help you solve your issue.

Thank you,

John,
6Scan Support Team

Hi blizam and nohler,

One of our virtual patches could indeed cause this behavior.
We have fixed the signature and above issue should disappear.

Please tell us, if you still experience this issue.

Best regards,
6Scan Support Team

Hi Blizam,

Thank you for your feedback!

We constantly check our plugin’s comparability with newest versions of WordPress and couldn’t reproduce the same behavior you described, if you can provide more information we will be glad to help you solve your problem and make your site secured.

Best regards,
6Scan Support Team