Home Forums WordPress Plugins Hide My WP blocking users by mistake

This topic is: not resolved
Viewing 4 posts - 1 through 4 (of 4 total)
  • Author
    Posts
  • December 1, 2015 at 3:18 pm #6258
    spectrothemes
    Post count: 1

    I’m having serious problems with multiple users. The plugin is blocking normal user who try to buy in my store. I have many, many messages on my email like this:
    The following potential attack has been detected by HMWP IDS

    . If it’s you please Exclude that parameter or increase Notify Threshold from IDS settings.
    In most cases you don’t need to do anything. Hide My WP protects you!

    IP: 187.44.148.2 (187.44.148.2)
    User ID:
    Date: 2015-11-27T19:41:20+00:00
    Total Impact: 24
    Affected tags: xss csrf id rfe lfi format string

    Affected parameters: POST.post_data=billing_first_name%3DLucas%26amp%3Bbilling_last_name%3DFerreira%26amp%3Bbilling_persontype%3D1%26amp%3Bbilling_cpf%3D019.513.045-60%26amp%3Bbilling_company%3D%26amp%3Bbilling_cnpj%3D%26amp%3Bbilling_country%3DBR%26amp%3Bbilling_postcode%3D40820-010%26amp%3Bbilling_address_1%3DRua%2Bda%2BIndependencia%252C%2Bn%25C2%25BA%2B19%26amp%3Bbilling_number%3D19%26amp%3Bbilling_address_2%3DCasa%26amp%3Bbilling_neighborhood%3DParipe%26amp%3Bbilling_city%3DSalvador%26amp%3Bbilling_state%3DBA%26amp%3Bbilling_phone%3D%2871%29%2B3397-1358%26amp%3Bbilling_cellphone%3D%2871%29%2B99247-1133%26amp%3Bbilling_email%3Dlucas.asf%2540gmail.com%26amp%3Bshipping_first_name%3DLucas%26amp%3Bshipping_last_name%3DFerreira%26amp%3Bshipping_company%3DADN%2BTecnologia%26amp%3Bshipping_country%3DBR%26amp%3Bshipping_postcode%3D40280-902%26amp%3Bshipping_address_1%3DAv.%2BAntonio%2BCarlos%2BMagalh%25C3%25A3es%26amp%3Bshipping_number%3D16%25C2%25BA%2BAndar%26amp%3Bshipping_address_2%3DEdf.%2BRoyal%2BTrade%26amp%3Bshipping_neighborhood%3DBrotas%26amp%3Bshipping_city%3DSalvador%26amp%3Bshipping_state%3DBA%26amp%3Border_comments%3D%26amp%3Bshipping_method%255B0%255D%3DPAC%26amp%3Bpayment_method%3Dpagseguro%26amp%3B_wpnonce%3Da2aaeae805%26amp%3B_wp_http_referer%3D%252Ffinaliza-compra%252F,

    Request URI: /finaliza-compra/?wc-ajax=update_order_review
    Origin: 127.0.0.1

    this event is above a user who always buys us. I am in doubt on how many users lost to be blocking the checkout.

    December 1, 2015 at 6:52 pm #6265
    Suman M.
    Post count: 12480

    Hi, goto Dashboard >> Intrusions, hover over the request mentioned above and then click on “Exclude” link. Now check again and let us know if you are still having issue.

    December 1, 2015 at 7:44 pm #6267
    spectrothemes
    Post count: 1

    Sorry, but this option not showing to me. The plugin is enable, but “Intrusions” link, not appears. Just the settings.

    December 2, 2015 at 10:32 am #6275
    Suman M.
    Post count: 12480

    That’s strange. What if you disable IDS from ID firewall tab? Are users still blocked?

  • Author
    Posts
Viewing 4 posts - 1 through 4 (of 4 total)

You must be logged in to reply to this topic.