taniav

I am glad that you plan to provide options to display tags and categories in the near future.

My site depends so much on the tags and categories. Hiding them will surely hurt my traffic and make the bounce rate so high. escribircanciones got the points.

Cheers

I just updated the plugin to version 4.4 and get the same error.

I also would like to know how to configure it correctly if I want to set the From field to be: “The Sender’s Name <[email protected]>”

Totally agree with this:

however it would be very unlikley that the sender would happen to have an email address on the website’s domain

The ‘From’ field should be filled with the info of the person who fill the form and submit it. And they are very likely do not have email address with the website’s domain.

Nice investigation, Eric. It explains a lot why on one server there is no problem and on another it causing problem.

Yes, right now I disabled it too on my production server. Hopefully Sucuri can do something about this issue.

Hallo,

Thanks for the tips. However, as I need the wp-content to be hardened, so I guess I should disable the w3tc instead for now ??

Hi,

I just got chance to try it again.

I deleted wp-admin and wp-includes folders, causing my site to go down for few minutes. Then, uploaded new wp-admin and wp-includes from a fresh WordPress installation.

The problem still happen when I hardened the wp-includes on the Sucuri setting again. So, unfortunately that solution does not work for me.

Hi,

Thank you very much! Now I can access Live Traffic again. ??

Solution for anyone who might get the same problem:
The problem solved by changing all non-www urls to www. Somehow I got problem (locked out of admin) when I changed ‘WordPress Address (URL)’ to www. So I did it by replacing non-www to www on database using a search and replace script. I hope that can help.

Cheers!

Hi,

I am sorry. You are right, I forgot to keep the www from one of the url. Let me paste it again more carefully. This one is on Chrome browser.

XMLHttpRequest cannot load https://my-site.com/wp-admin/admin-ajax.php. No ‘Access-Control-Allow-Origin’ header is present on the requested resource. Origin ‘https://www.my-site.com&#8217; is therefore not allowed access.

I tried it on another browser (Mozilla) without any addons installed, and got these messages on the console:

Cross-Origin Request Blocked: The Same Origin Policy disallows reading the remote resource at https://my-site.com/wp-admin/admin-ajax.php. (Reason: CORS header ‘Access-Control-Allow-Origin’ missing).

Cross-Origin Request Blocked: The Same Origin Policy disallows reading the remote resource at https://my-site.com/wp-admin/admin-ajax.php. (Reason: CORS request failed).

Maybe a bit more details can help:
I set on the ‘General Settings’, ‘WordPress Address (URL)’ to be https://my-site.com – and ‘Site Address (URL)’ is https://www.my-site.com.

I also have on root’s .htaccess to redirect all urls from non-www to www. And set it to disallow hot-link and to prevent the site being displayed on iframe.

I tried to access my-site.com/wp-admin/admin-ajax.php and this got redirected to https://www.my-site.com/wp-admin/admin-ajax.php. On https://www.my-site.com/wp-admin/admin-ajax.php, I got blank page with a 0 on the top left corner.

I deleted the folders (not override) then I uploaded back the folders from my backup.

Did you upload the new folders from a fresh WordPress installation?

Hi,

I just tried to delete wp-admin and wp-includes folders, then upload them back. It’s not working for me. The problem is still there ??

Hi Tim,

As far as I know, access to wp-admin folder is not blocked.

There is no .htaccess on the wp-admin’s root.

On WordPress’s root, the only rules in .htaccess that mention wp-admin are these:

#AIOWPS_FORBID_PROXY_COMMENTS_START
RewriteCond %{REQUEST_METHOD} =POST
RewriteCond %{HTTP:VIA}%{HTTP:FORWARDED}%{HTTP:USERAGENT_VIA}%{HTTP:X_FORWARDED_FOR}%{HTTP:PROXY_CONNECTION} !^$ [OR]
RewriteCond %{HTTP:XPROXY_CONNECTION}%{HTTP:HTTP_PC_REMOTE_ADDR}%{HTTP:HTTP_CLIENT_IP} !^$
RewriteCond %{REQUEST_URI} !^/(wp-login.php|wp-admin/|wp-content/plugins/|wp-includes/).* [NC]
RewriteRule .* - [F,NS,L]
#AIOWPS_FORBID_PROXY_COMMENTS_END

RedirectMatch 403 admin\_db\_utilities\.
RedirectMatch 403 admin\.webring\.docs\.

Hi pey22,

When you uploaded them back, do you include the .htaccess as well?

I am not sure if that’s the best way to fix the problem or not? I kinda hope the plugin author can explain the issue and provide the solution / final fix so I can prevent such problem occurring again.

I also experienced the same issue. That .htaccess rules block /wp-content/plugins/w3-total-cache/pub/minify.php, causing W3 Total Cache cannot do the minifying ??

Is there any solution from Sucuri for that?

Thank you for your response, Tom.

Glad that it can help improve the plugin for the future.

In the mean time, I will use those css you suggest. Thank you.

Hi,

This may be caused by conflicts with other plugins or themes on your site. Try to disable other plugins to see what plugin that is conflicting it?

Hi Mikko Saari,

I encountered similar problem. This happened after I upgraded to WooCommerce 2.2.6. When I tried to save post that have [recent_products], I got this error message:
Fatal error: Call to undefined function woocommerce_product_loop_start() in ..\wp-content\plugins\woocommerce\includes\class-wc-shortcodes.php on line 327

I tried your suggestion to add remove_shortcode() to lib/indexing.php. Adding this:
remove_shortcode('recent_products');
and the problem goes away.

Please consider to include that to the next version as well.

Cheers ??