Wordfence Blocking admin-ajax.php

  • relish1227

    (@relish1227)


    2 days, 19 hours ago

    Yesterday a client contacted me saying that customers were having trouble completing a payment form on their website. After investigating, I found it was not related to Gravity Forms or Stripe, but rather that Wordfence was blocking access to the admin-ajax.php file. I was able to add acceptions in the Live Traffic section of Wordfence, but this is concerning, given that admin-ajax.php is a core wordpress file used by many add-ons and processes. Are there any additional recommendations on how to configure Wordfence to avoid this scenario? Or, could Wordfence adjust their scanning to avoid the issue in the first place?

Viewing 1 replies (of 1 total)
  • Plugin Support wfpeter

    (@wfpeter)

    2 days, 18 hours ago

    Hi @relish1227, thanks for reaching out.

    When Wordfence is first installed, Learning Mode will be on for 7 days to catch possible false-positives in the immediate time period after installing the plugin. Having it on while plugins perform their normal actions, pages are edited, etc. will help greatly reduce the number of false-positives administrators need to deal with.

    I mentioned that because this could be a false-positive hitting that wasn’t caught during that time, or against an action a more recently installed plugin is attempting. As most (if not all) plugins will use admin-ajax.php, it’s not a block on that file, just an action that looks potentially suspicious.

    If your attempt to allowlist it via the “ADD PARAM TO FIREWALL ALLOWLIST” button on the Live Traffic page doesn’t seem to resolve it permanently, try turning Learning Mode back on for a short time and going through the payment process again.

    Let us know how you get on,
    Peter.

Viewing 1 replies (of 1 total)

You must be logged in to reply to this topic.