nintechnet

You can try to bypass your CDN by directly accessing the site via its IP address and adding the host field:
1. In the “Page to profile”, select “Custom post/URL” and enter the server real IP address instead of the domain. For instance: https://1.2.3.4/some-page-to-profile/
2. Then click the “Advanced Options” button and in the “HTTP headers” section, enter the “Host” field with your domain name. For instance: Host: example.com

If you block IP addresses that don’t originate from the CDN at your server level, that won’t work.

Go to the profiler’s main page, click the “Support” tab and search for [admin-ajax].
Do you see [access] => OK or an error instead?

Regarding the Composer warning, please click on the “FAQ” tab and check the “Why does the execution time and memory returned by Code Profiler seem higher than when I load my site in my browser” example.

File Statistics show I/O (Input/Output) operations that occurred while your website was loading: you can click on the “Help” button below the chart to have more details about each label.

Disk I/O Statistics show the sum of read and written bytes (see the Help button too).

Most memory errors seem to be related to that plugin : permalink-manager-pro
If you can’t increase the memory, can you try to temporarily deactivate permalink-manager-pro and then run the profiler?

Can you tell me what was the last 500 error message? Did you check it in your PHP error log, or the profiler’s “Log” section? Was it about memory?

Your site is running out of memory :

Error: E_ERROR (Allowed memory size of 268435456 bytes exhausted (tried to allocate 10485760 bytes) – line 175 in /var/web/site/public_html/wp-content/plugins/permalink-manager-pro/includes/core/permalink-manager-core-functions.php

You can try either to increase the memory by editing the wp-config.php for example:

/* Adjust memory for frontend */
define('WP_MEMORY_LIMIT', '384M');
/* Adjust memory for backend */
define('WP_MAX_MEMORY_LIMIT', '384M');

If you don’t want or can’t increase the memory, try to change the profiler’s accuracy in the “Settings” tab. Select a lower accuracy such as “High” instead of “Highest” and, below, select a lower value for the “Buffer size” as well (e.g. 5MB)

Can you run this script: https://nintechnet.com/share/ninja-connect.txt
1. Rename it to “ninja-connect.php”.
2. Upload it into your website root folder.
3. Go to https://YOUR WEBSITE/ninja-connect.php
4. Delete it afterwards.

That will check if your site can connect to download the rules during the installation process.

Can you paste here some lines of the firewall log (NinjaFirewall > Logs) that show the preload being blocked?

That’s odd because it shouldn’t happen as the firewall checks the capability (edit_page and/or edit_post) of the user trying to edit the post/page.
Could you try to create a new temporary editor user, login as that user and try to create your own post and then try to edit it, just to see if it works or not?
The backtrace may not be helpful here as that is not a hacking attempt.
Did you check the NinjaFirewall > Dashboard page for potential warnings and errors?

I noticed this error in the report:

[admin-ajax] => Array
    (
        [access] => Error: 404 Not Found
    )

When attempting to access the wp-admin/admin-ajax.php endpoint, it returned 404 Not found. Do you know why?

Also your PHP error log seems quite large:
[Error log] => error_log (6,452,880 bytes)
Can you check it? Maybe it has more details about the error.

Can you run the troubleshooter script: https://nintechnet.com/share/wp-check.txt

1. Rename it to “wp-check.php”.
2. Upload it into your WordPress root folder.
3. Go to https://YOUR WEBSITE/wp-check.php
4. Delete it afterwards.

The request is blocked with a 400 HTTP code.
Do you have any security plugin, .htaccess rule or server application that protects the admin AJAX endpoint?
Go to the profiler page, click the “Support” tab and search for [admin-ajax] in the system information report. Does it show an error?

I can’t reproduce the problem.
Did you try to uninstall it and then to reinstall it ?
Make sure to remove any line in your PHI INI (.user.ini) file when you reinstall it, just in case.

Your host is using Linux Malware Detect?engine only, but they added their own signatures. False positives can occur sometimes, specially when scanning files belonging to security applications (firewall, antivirus).

It looks like the site returns some characters when the profiler connects to the admin AJAX ednpoint (/wp-admin/admin-ajax.php).

Can you try to open your browser’s console ( CTRL + Shift + J ), click on the “Start profiling” button and see if there’s any error? You can also check the result of the AJAX request in the console “Network” tab (you can filter on the admin-ajax substring). That will show you the response to the HTTP request.