Wordfence find issue

  • bajlazzo

    (@bajlazzo)


    4 months ago

    This night Wordfence find some issue: blocked by firewall for HT Mega – Absolute Addons for Elementor <= 2.2.0 – Missing Authorization to Privilege Escalation
    https://srv.g-my-site.com/wp-admin/admin-ajax.php

    IP: 18.119.127.93 Hostname: ec2-18-119-127-93.us-east-2.compute.amazonaws.com

    Human/Bot: Human

    Mozilla/5.0 (iPhone; CPU iPhone OS 18_3_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) GSA/363.0.743255906 Mobile/15E148 Safari/604.1

Viewing 1 replies (of 1 total)
  • Plugin Support kamal025

    (@kamal025)

    4 months ago

    Hi @bajlazzo,

    Thanks for reporting this.

    The Wordfence alert you’re seeing applies to HT Mega versions ≤ 2.2.0. This issue was fixed a long time ago. Since the current version of HT Mega is 3.0.4, the reported vulnerability does not affect the latest release.

    In some cases, Wordfence may still flag or block requests based on old rules, which can result in false positives. Please make sure Wordfence is fully up to date and re-scan the site. Clearing or updating Wordfence firewall rules should resolve this.

    There is no known security issue in HT Mega v3.0.4 related to this report.

    Thanks for checking, and feel free to update us if you notice anything else.

    Best regards,
    Kamal

Viewing 1 replies (of 1 total)

You must be logged in to reply to this topic.

  • 2 replies
  • 2 participants
  • Last reply from: kamal025
  • Last activity: 4 months ago
  • Status: not resolved