Wordpress login with true username & password failed - wordpress

I am managing a wordpress site. Recently, I have trouble with the login system. Even though I give the right username and password, it give me the login page again and again, instead of redirect me to the dashboard.
The solution that I usually do is dropping all the tables in the database and import them again. It temporary fixes the problem. But the problem still have possibility to exist.
Anybody know what the problem exactly is?

WordPress login issue, when you have 100% correct username and password, and it does not give you username/password incorrect error, but it just takes you back to login form... it is mostly due to some security measure by some plugin or theme. Most probably a plugin, could by JetPack's security feature, or any other security plugin like Bulletproof Security Plugin & AIO Security (as was the case in OP's situation.)
To make sure if that is the plugin, or which plugin, I suggest a quick work around, ftp/ssh to your server and rename plugins folder as plugins-old, and create new blank folder plugins for now.. and try to login now... this time if you can login perfectly, then it is some plugin, most probably security related plugin, now you can go back to ftp and restore the plugins folder, and then you will have to activate/disable one by one to see which plugin might be the issue.
I have faced this issue many times in the past and above approach has always helped me get it fixed.

Related

Wordpress ERROR :reCAPTCHA verification failed. Please Try Again

I'm new to wordpress, literally the first time using it, and now i am frustrated because i cannot even get in on the page even as an admin because of the error on the title.
So here's how it went :
i wanted to add social login for my web
i install nextend social login and use the google platform for it
i did every step right (i made sure of it, there's a list of steps in the nextend i just simply follow it)
i copy the secret id and cope, i verify it and i wanted to test it out
so i log out of my user, and i don't even see the google button to login (maybe because i haven't add it (i thought it's automatic))
and so i went to login using user and password turns out it gives me an error
ERROR :reCAPTCHA verification failed. Please Try Again.
i have searched at google, youtube and nothing seems to work, please help
Note : i cannot get into my account
Option 1: Examine what other plugins you have installed.
Perhaps one of them is interfering e.g if you have cache plugin, you might want to clear your browser cache and try again and/or disable the cache plugin entirely
Option 2: Disable and re-install
If you have access to the host account, you can disable and re-install the plugin via phpmyadmin or ftp as shown in the following article.
https://kinsta.com/knowledgebase/disable-wordpress-plugins/
Go to your hosting login to WP through there to your admin panel.
Go to your google reCAPTCHA account get keys and paste them to your reCAPTCHA plugin on Wordpress again.

wp admin user name has been changed by someone

As a Administrator of my website (Wordpress with Woocommerce), I am unable to logged in on my website's wp-admin panel. Then I tried to log in from another user name and it got successfully logged me in, then I saw the name of my admin user has been changed. I am amazed how it was happened? who did it? and why ?
Please suggest me what should i do ?
How to avoid such incident again ?
Incase the culprit who did it, In the next attempt, if he/she changes name of my second user of wordpress, what i should do ?
I am afraid if the culprit change the names of my all wp users then what should i do?
It seems a hacking attack.
So I suggest you first , upgrade your plugins and themes.
Then don't forget to scan your whole site with wordfence.
Then secure it with wordfence , I suggest to use it's pro version, I really feel it useful.
Then tell your hosting to scan and make sure no security issue there.
Note : Don't forget to remove your ftp and extra admin or change their password at least.
Your task is done ..
Still confusion, consult with an expert like me.
Block or delete the mentioned admin account
Install a security plugin like Wordfence
Scan your whole site (with the plugin), it's very likely a backdoor has been installed for future attacs
Change all passwords of admin-accounts and advice your users to do the same
Change the passwords of your FTP, database and possible webserver-interface (if the username was changed, it's likely done directly inside the database)

Sorry, you are not allowed to access this page

I realize there is other threads on this topic but there solutions and problems are different from mine.
Im able to login to wp-admin correctly
All seems normal but the abilty to (add plugin) or theme or anything has been wiped.
you can look at plugins but there is no way to add a new one.
Same goes for widgets, and themes.
Also.
You cant access things like update core.
you just get a default message
Sorry, you are not allowed to access this page.
Iv checked the mysql database and all seems fine.
With the user_meta and users
Iv deleted all plugins
Iv deleted all themes.
There is no issue with Wp memory
its basically just a default install of wordpress at this point.
Im not sure what could be causing this.
Any suggestions?

Stop Hacks to Wordpress Site - New User Added

My apologies in advance if I am posting it in the wrong forum.
I have a WordPress site. Every couple of days, a new user is added as an "Administrator" as shown below
I have changed my password many times using complex passwords but to no use. I even searched on Google and have read links like this one.
I have also unchecked the option "Anyone can register"
However, I am unable to stop them from registering.
Fortunately, no malicious activity has been noticed (Ex: Deletions/Unwanted posts etc)
Please advise me on what I can do to stop these?
You clearly have a more serious compromise, like an uploaded malicious script or an unpatched vulnerability. You need to rebuild your site from scratch (clean install of the current versions of WP and any plugins and themes, using a known-good database export) ASAP before something really bad happens.
Unfortunately, it's impossible to say what happened without digging through your server. My guess is that somebody exploited a vulnerability and uploaded a script. It could be anything - an hole in the WP core, a plugin, or a theme; a malicious plugin or theme; a stolen password; a breach of another site on the same server; or a number of other things.
Regardless of what happened, the only safe fix is to rebuild the site. If you have data backups, you can achieve this in a few hours.
I strongly recommend installing the security plugin WordFence to help prevent similar problems in the future. (I have no affiliation with WordFence, but use it on a number of sites.)
Finally, you might want to read this discussion on security.stackexchange.com. The consensus in this situation is "nuke it from orbit." Good luck!
Someone is making a SQL injection in your site.
If you want to prevent this in future, you should do some things.
Rebuild your website from scratch.
Install some of the security plugins, like Bulletproof Security, Wordfence, iThemes Security. I suggest you to buy the license of Bulletproof, or use the free version + one of the others. And be careful for the equal settings.
The most common attack are with SQL Injection XSS, Plugin exploits and of course brute-forcing the admin pass. You should upgrade every plugin and Wordpress every time when you see a new version.
Use less plugins. They are one of the main reason for hacked websites. If you use Linux, Ican tell you how to scan your website for vulnerabilities. Or just tell me the url, and I will tell you the results.
Also change your /wp-admin path, there are a lot of bots who search the web and make bruteforce attacks.
Also is important to use different admin username from admin or Admin. And use strong passwords. It's a good practice when you make a new Wordpress installation, to do two more users. The first will be an Author and will post everything in the site, the second you should make with Administration role. After that delete the first admin user and start the new one.
Hackers knows that almost every time the user with id:1 is the admin, so they can try to access again. So in this case your admin will be with id:3, and again don't use username like admin and etc.
Best regards and wish you luck.
Kasmetski
Check index.php, wp-admin/index.php to see if they have been modified. Usually the following line of code is added to the top of the index.php file. A code starting with 'required' is usually added.
The file being ‘required’/’included’ here contains malicious code which is executed along with each run of WordPress. Such code can generate fake pharma pages, Japanese SEO spam pages and other malware infections.
Delete the #require code from the file after comparing it with the contents of the core WP files from it’s GitHub repository.
Check if there are any new files in the root of the server or /wp-admin folder that were not created by you. Some of the files that you may find are:
Marvins.php
db_.php
8c18ee
83965
admin.php
buddy.zip
dm.php
If you find any of the above suspicious files, take a backup and delete them.
Source: https://www.getastra.com/blog/911/fix-wordpress-admin-dashboard-wp-admin-hack/

DNN Wrong Password Reset link

I have problems when I force reset passwords for my website users.
When I use this option, the next time the user logs in it will be prompted to change the password. My website link is something like this: Server/MyPortal.
When users login instead of taking them to:
Server/MyPortal/default.aspx?ctl=PasswordReset&resetToken...
They are redirected to:
Server/default.aspx?ctl=PasswordReset&resetToken...
Which obviously takes them to a 404 not found page because it is missing MyPortal.
Can anyone please shed some light on me and help me to fix this? Thank you very much!
Ivan
What version of DNN are you on?
I would look at
Are you on the latest version
Are your Portal Aliases configured properly. To tell this, login as a Super User, go to the Admin/Site Settings page for the portal in question, find the Portal Aliases section, I believe that is under the Advanced tab. See if you have a misconfigured alias in there.
Another thing you might check, would be to check the Language files (admin/languages) to see if the password reset email could be modified there to include the proper portal URL. When editing language files in DNN you can edit System, Host, or Site.
You likely want to edit the SITE level if you have other websites running as well. Site level edits will only apply to that individual portal.

Resources