giwpt

Same here. After trying to add an IP to the blacklist, I got the “Incorrect IP address or IP range” message. Then, in Dashboard -> Activity, I see a DENIED for my IP, “Probing for vulnerable PHP code” – “URL: MYSITE.COM/wp-admin/load-styles.php”

It doesn’t matter if I switch off “Block unauthorized access to load-scripts.php and load-styles.php” in hardening, still getting same error.

EDIT:
Apparently the plugin author is aware of the bug and working on it https://www.ads-software.com/support/topic/blacklisting-not-working/

• This reply was modified 5 years, 3 months ago by giwpt.

Hello, Gioni, and thanks for your amazing plugin.

Follow-up: Looks like this happens only to admin, with the new “Admin Email Verification” screen. If WP wants to display this screen, the redirection to wp-admin fails, and goes to a 404 instead. Noticed it in a few wp sites now. Not really much of a problem, since manually typing wp-admin after logging in will take you to the dashboard anyway, but I thought it might be worth mentioning, if anyone else comes across this issue.

Update: Turns out this only happens during the upgrade to WP-5.3. Installing the plugin on a fresh WP install does not cause a 404 redirect upon logging in in custom login page.

If anyone happens to come across this problem:
– After upgrading WP core, change “Custom login URL” to something random, save, and then change again to your actual custom login URL.