redirected to safe-load.gotmls.net when trying to display a user page

Home Forums Support Forum redirected to safe-load.gotmls.net when trying to display a user page

This topic contains 1 reply, has 2 voices, and was last updated by  Anti-Malware Admin 5 years, 11 months ago.

Viewing 2 posts - 1 through 2 (of 2 total)
  • Author
    Posts
  • #2202

    Hi,

    I have made few searches on the WEB and in the FAQs and forum of gotmls but could not find anything relevant.

    When I attempt to display a user page in WordPress, using

    Users -> All Users  + click on user1 -> display

    This starts a query like <mySite>/?author=2 and I am being redirected to a safe-load.gotmls.net page which displays this :
    111057406: FW_UserEnum
    You have been redirected here from <mySite> which is protected by GOTMLS Anti-Malware

    Is there a threat ?
    How can I figure out and fix ?

    The extended scan did not report anything bad. Only about 30 files that could not be open, for any reason …

    thanks for your help, and great plugin! :-)
    Michel.

    #2203

    Anti-Malware Admin
    Key Master

    This is not a threat but rather a vulnerability called User Enumeration, which would permit anyone to discover your usernames using an unrestricted URL such as:
    /?author=2

    That is why it is one of the Firewall options that is enabled by default. If you wish for any un-authenticated visitor to be able to easily view this information about any user in your database by passing a common number like 1, 2, or 3 then you can simply disable the User Enumeration protection on my Anti-Malware plugin’s Firewall Options pages in your wp-admin.

    Please feel free to let me know if you have any further questions about any of this.

Viewing 2 posts - 1 through 2 (of 2 total)

You must be logged in to reply to this topic.

Comments are closed.