Some files reveal path server

[w3dzign]

Hi we are using this template and in the past days the people who need to use this site make a ethical hacking test and the found some files who show the full path of the server as a weeknes /wp-content/themes/wplms/blogs /wp-content/themes/wplms /wp-content/themes/wplms/members/ and some other files the files and most of the directories of some plugins we correct with a plugin all in one security but this directories in particular we cant so what can we do?

[Anshuman Sahu]

Thanks fro reporting these vulnerabilities . We are adding fixes for these in the next update of wplms 2.0.

[w3dzign]

thanks alex and is there a easy way to add a protection of thesse directories? because  this guys need to scann agan in the next days

[w3dzign]

Alex another issue i have I install as i said All In One WP Security BAW Anti CSRF and WordPress Password Policy Manager since this guys ask for the stronge security in the site they send us a huge list of issues some are easy and part of other plugins and some are from server but since I install this plugins i cant see 2 things: 1.  /members/name/dashboard 2. the results of the quiz after we finish the quiz to take another oportunity of remake the quiz they have 5 chances to make the quiz   so i don remember if I move somenthing in the configuration or is some of this  plugins if you have a clue to help us please tell us thanks

[Anshuman Sahu]

Please check if you have any members page connected in the   settings-> buddypress -> pages . Also try resaving the permalinks to postname .

[Author]

Posts