Hi @amrit0888,
I have seen this message once before with a customer using a plugin called Cache Enabler, so it could be related to that or a similar caching plugin. The script coming through as text/html when trying to execute is actually throwing the strict mime type error when it reaches the browser. We confirmed on our test sites that these come through correctly as text/javascript from Wordfence.
The wordfence_syncAttackData script is a normal process run by Wordfence to ensure your malware signatures and rules are up-to-date with the latest ones we have released. They’re only called from the browser if Wordfence can’t sync automatically, usually meaning that the site can’t reach itself. That would tally with the error you’ve posted with the SSL Certificate too so that will need to be resolved. I have seen cases where a traceroute to the site’s IP finds an expired SSL certificate on one of the IPs hit on the way to your site, which can usually be rectified by your host. Also, it can be linked to some code (a plugin, custom code, or a theme) on your site setting the sslverify argument in HTTP API requests to false.
Let us know what you find out,
Peter.
We do not have the Cache Enabler plugin installed, but we are using the WP Rocket plugin on the site. We tested deactivating WP Rocket and removing the cache folder, but the issue persists.
Regarding SSL, we manage the DNS through Cloudflare, and the SSL certificate is issued by Cloudflare as well. The certificate in the browser shows active and is set to expire on March 31, 2025.
SS: https://drive.google.com/file/d/11fU52Or393gTUnOowahr1J5Gu4bYbbp1/view?usp=sharing
However, on the hosting server for the site, we noticed that the SSL has expired. Since SSL is managed through Cloudflare, is the hosting server’s SSL necessary?
SS: https://drive.google.com/file/d/13NEKjta4qkmcZX-dsBB_eiCKg6r1Ue-1/view?usp=sharing
Please assist us with this.
Thank you
Hello @wfpeter
We do not have the Cache Enabler plugin installed, but we are using the WP Rocket plugin on the site. We tested deactivating WP Rocket and removing the cache folder, but the issue persists.
Regarding SSL, we manage the DNS through Cloudflare, and the SSL certificate is issued by Cloudflare as well. The certificate in the browser shows active and is set to expire on March 31, 2025.
SS: https://drive.google.com/file/d/11fU52Or393gTUnOowahr1J5Gu4bYbbp1/view?usp=sharing
However, on the hosting server for the site, we noticed that the SSL has expired. Since SSL is managed through Cloudflare, is the hosting server’s SSL necessary?
SS: https://drive.google.com/file/d/13NEKjta4qkmcZX-dsBB_eiCKg6r1Ue-1/view?usp=sharing
Please provide your insight on this. Your assistance is greatly appreciated.
Thank you
