-
Posts
-
Had a strange occurrence this morning of a client going to their website and finding a simple password prompt. They sent me a message and after the recent exploits in WordPress, I was worried another exploit had hit the wild. That is when it got a little interesting. Nothing looked different from the root directory of the site, so I looked more in-depth at things, trying to figure out how to get the site back live. I disabled plug-ins and then decided to disable the primary theme, in this case, Enfold. The minute I did that, the site came back online. I looked around and verified the WP content to see things looked intact, so I re-activated Enfold and instantly went back to a password prompt on both front-end and back-end. I disabled it by renaming it and it came back.
I was able to put a fresh copy of Enfold into the themes directory and get it back. I lost a few settings, but for the most part, everything returned. While it was a decent ending, it left me with a very, very worried feeling.
Has anyone else seen this yet?
Hi solarmediapro!
Thank you for using Enfold.
This is the first time someone reported such issue. Make sure that you’re ftp credentials are not compromised. Change it immediately. Try to install security plugins to avoid this in the future. Search the plugins repository for any available security plugins. I haven’t use one myself so I won’t be able to suggest anything. Another security measure that you can add is captcha fields on WP login. I’ll ask the rest of the support team to take a look.
Regards,
Ismael
- The topic ‘Password prompt when Enfold activated?’ is closed to new replies.