new password doesnt work

Leitner
(@leitner)

8 years ago

Hi,

when I want to visit the site https://[…%5D/wp-login.php?itsec-hb-token=edit?action=rp&key=XXX&login=XXX I will be forwarded to https://[…%5D/wp-login.php?itsec-hb-token=edit%3Faction%3Drp and nothing happens.

After disabling iThemes Security all works fine.

Anyone an idea, how I could fix this?

Disabling “hide backend”, “Disable Request Methods”, “Suspicious Query Strings”, “Non-English Characters” and “Long URLs” doesn’t fix it.

Regards
Patrick

Viewing 9 replies - 1 through 9 (of 9 total)

Thread Starter Leitner
(@leitner)

8 years ago

Hi,

update:
it must be the “hide backend” function, which generate this issue. When I set the link to https://[…]/edit?action=rp&key=XXX&login=XXX all works fine.

Is this a bug?

Regards
Patrick

Thread Starter Leitner
(@leitner)

8 years ago

Update #2:

it must be a bug. With version 6 all works fine.

Patrick

nlpro
(@nlpro)

8 years ago

You mean this issue started after updating the iTSec plugin from 6.9.2 to the 7.0.x release ?
Thread Starter Leitner
(@leitner)

8 years ago
Hi @nlpro,

I don’t know, because I don’t use this function very often.
But I have tested two websites with the same iThemes Security settings.
The only differences are the iThemes Security version (6.9.2 vs. 7.0.1), activated SSL (yes vs. no) and the PHP Version (7.2 vs 7.1).

One is working (iThemes 6.9.2, SSL and PHP 7.2) and one not (iThemes 7.0.1, no SSL and PHP 7.1).

Regards
Patrick
- This reply was modified 8 years ago by Leitner.
Thread Starter Leitner
(@leitner)

7 years, 11 months ago

Hi @nlpro,

did you have any new information for me?

Regards
Patrick

Thread Starter Leitner
(@leitner)

7 years, 11 months ago

Hi @nlpro,

could you tell me when this will be fixed?

Regards
Patrick

nlpro
(@nlpro)

7 years, 11 months ago

I have no idea.

Don’t even know whether iThemes is aware of this issue. According to the FAQ section in the readme.txt file “iThemes does not monitor the ww.wp.xz.cn support forums”.

Best you can do is submit a bug report here.

Perhaps also refer to the 2 topics (1 and 2) about this issue that currently exist in the forum.

Thread Starter Leitner
(@leitner)

7 years, 11 months ago

Hi @nlpro,

I’m sorry – I thought you are an employee of iThemes.

I reported the bug weeks ago. But I didn’t get any response.

Regards
Patrick

Thread Starter Leitner
(@leitner)

7 years, 10 months ago

Today I found the issue but I dont have any idea, how can i fix this.

The new password link is https://[…]/wp-login.php?itsec-hb-token=edit?action=rp&key=XXX&login=XXX.
And there are two ?: one before itsec-hb-token and one before action. So this is the mistake. It can only be one ?. The second ? should be an &.

Viewing 9 replies - 1 through 9 (of 9 total)

The topic ‘new password doesnt work’ is closed to new replies.