Gravity Forms

Home Forums BulletProof Security Pro Gravity Forms

Tagged: 

Viewing 8 posts - 1 through 8 (of 8 total)
  • Author
    Posts
  • July 26, 2013 at 9:56 am #7956
    jena
    Participant

    Hi

    We are facing some kind of issue with gravity forms and other plugins.

    While creating a new form when we add form name and description and hit submit, the submit button doesnt do anything.The new form is not added.This issue is in all sub sites.

    When I open the primary site dashboard in another tab and go back to sub site and hit the submit button it creates the new form. It seems as if the primary site unlocks something that helps the ajax to function.

    I have already tried by deactivating all other plugins.

    You had also mentioned earlier that admin scripts need not to be white listed then whats the reason behind this kind of issue.

    Also the wpmu membership plugin shows similar kind of problem.The drag drop feature dont work.

    And Sermon Manager for WordPress plugin has issues with date picker and file uploader from dashboard.

    This specific plugin works for me but doesnt works for other super admins.Is it due to the fact that I had installed bulletproof plugin and my ip is whitelisted?

    I checked all roles under “Additional Roles IP Whitelist” setting.

    Thanks

    July 26, 2013 at 10:25 am #7958
    AITpro Admin
    Keymaster

    Please post any BPS Pro Security Log errors from the BPS Pro Security Log that relate to the issues/problems.

    July 27, 2013 at 6:54 am #7962
    jena
    Participant

    The error log is flooded with errors on daily basis.

    Here is the latest error log

    [PHP Error Log entries removed – pending Security Log entries as requested]

    July 27, 2013 at 7:08 am #7964
    AITpro Admin
    Keymaster

    Please post your Security Log entries.  You posted your PHP error log entries above, which were removed.

    To troubleshoot php errors please see this Forum Topic link below.

    http://forum.ait-pro.com/forums/topic/how-to-troubleshoot-php-errors-php-errors-in-your-php-error-log/

    July 30, 2013 at 4:10 am #8023
    jena
    Participant

    Ok.Here is the security log entry

    >>>>>>>>>>> 403 GET or Other Request Error Logged - May 20, 2013 - 4:33 am <<<<<<<<<<<
REMOTE_ADDR: 108.161.186.118
Host Name: 108.161.186.118
HTTP_CLIENT_IP:
HTTP_FORWARDED:
HTTP_X_FORWARDED_FOR:
HTTP_X_CLUSTER_CLIENT_IP:
REQUEST_METHOD: GET
HTTP_REFERER: http: //hope4today.missionwebs.org/find-a-home/
REQUEST_URI: /wp-content/plugins/gravityforms/js/jquery.json-1.3.js?ver=1.7.3
QUERY_STRING:
HTTP_USER_AGENT: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31

>>>>>>>>>>> 403 GET or Other Request Error Logged - May 20, 2013 - 4:33 am <<<<<<<<<<<
REMOTE_ADDR: 108.161.186.118
Host Name: 108.161.186.118
HTTP_CLIENT_IP:
HTTP_FORWARDED:
HTTP_X_FORWARDED_FOR:
HTTP_X_CLUSTER_CLIENT_IP:
REQUEST_METHOD: GET
HTTP_REFERER: http: //hope4today.missionwebs.org/find-a-home/
REQUEST_URI: /wp-content/plugins/gravityforms/js/gravityforms.js?ver=1.7.3
QUERY_STRING:
HTTP_USER_AGENT: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31

>>>>>>>>>>> 403 GET or Other Request Error Logged - May 20, 2013 - 4:33 am <<<<<<<<<<<
REMOTE_ADDR: 108.161.186.118
Host Name: 108.161.186.118
HTTP_CLIENT_IP:
HTTP_FORWARDED:
HTTP_X_FORWARDED_FOR:
HTTP_X_CLUSTER_CLIENT_IP:
REQUEST_METHOD: GET
HTTP_REFERER: http: //hope4today.missionwebs.org/find-a-home/
REQUEST_URI: /wp-content/plugins/gravityforms/js/chosen.jquery.min.js?ver=1.7.3
QUERY_STRING:
HTTP_USER_AGENT: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31

>>>>>>>>>>> 403 GET or Other Request Error Logged - May 20, 2013 - 4:35 am <<<<<<<<<<<
REMOTE_ADDR: 108.161.186.118
Host Name: 108.161.186.118
HTTP_CLIENT_IP:
HTTP_FORWARDED:
HTTP_X_FORWARDED_FOR:
HTTP_X_CLUSTER_CLIENT_IP:
REQUEST_METHOD: GET
HTTP_REFERER: http: //hope4today.missionwebs.org/find-a-home/
REQUEST_URI: /wp-content/plugins/gravityforms/js/jquery.json-1.3.js?ver=1.7.3
QUERY_STRING:
HTTP_USER_AGENT: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31

>>>>>>>>>>> 403 GET or Other Request Error Logged - May 20, 2013 - 4:35 am <<<<<<<<<<<
REMOTE_ADDR: 108.161.186.118
Host Name: 108.161.186.118
HTTP_CLIENT_IP:
HTTP_FORWARDED:
HTTP_X_FORWARDED_FOR:
HTTP_X_CLUSTER_CLIENT_IP:
REQUEST_METHOD: GET
HTTP_REFERER: http: //hope4today.missionwebs.org/find-a-home/
REQUEST_URI: /wp-content/plugins/gravityforms/js/chosen.jquery.min.js?ver=1.7.3
QUERY_STRING:
HTTP_USER_AGENT: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31

>>>>>>>>>>> 403 GET or Other Request Error Logged - May 20, 2013 - 4:35 am <<<<<<<<<<<
REMOTE_ADDR: 108.161.186.118
Host Name: 108.161.186.118
HTTP_CLIENT_IP:
HTTP_FORWARDED:
HTTP_X_FORWARDED_FOR:
HTTP_X_CLUSTER_CLIENT_IP:
REQUEST_METHOD: GET
HTTP_REFERER: http: //hope4today.missionwebs.org/find-a-home/
REQUEST_URI: /wp-content/plugins/gravityforms/js/gravityforms.js?ver=1.7.3
QUERY_STRING:
HTTP_USER_AGENT: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31

>>>>>>>>>>> 403 GET or Other Request Error Logged - May 20, 2013 - 4:35 am <<<<<<<<<<<
REMOTE_ADDR: 108.161.186.118
Host Name: 108.161.186.118
HTTP_CLIENT_IP:
HTTP_FORWARDED:
HTTP_X_FORWARDED_FOR:
HTTP_X_CLUSTER_CLIENT_IP:
REQUEST_METHOD: GET
HTTP_REFERER: http: //hope4today.missionwebs.org/find-a-home/
REQUEST_URI: /wp-content/plugins/gravityforms/js/gravityforms.js?ver=1.7.3
QUERY_STRING:
HTTP_USER_AGENT: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31

>>>>>>>>>>> 403 GET or Other Request Error Logged - May 20, 2013 - 4:35 am <<<<<<<<<<<
REMOTE_ADDR: 108.161.186.118
Host Name: 108.161.186.118
HTTP_CLIENT_IP:
HTTP_FORWARDED:
HTTP_X_FORWARDED_FOR:
HTTP_X_CLUSTER_CLIENT_IP:
REQUEST_METHOD: GET
HTTP_REFERER: http: //hope4today.missionwebs.org/find-a-home/
REQUEST_URI: /wp-content/plugins/gravityforms/js/chosen.jquery.min.js?ver=1.7.3
QUERY_STRING:
HTTP_USER_AGENT: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31

>>>>>>>>>>> 403 GET or Other Request Error Logged - May 20, 2013 - 4:35 am <<<<<<<<<<<
REMOTE_ADDR: 108.161.186.118
Host Name: 108.161.186.118
HTTP_CLIENT_IP:
HTTP_FORWARDED:
HTTP_X_FORWARDED_FOR:
HTTP_X_CLUSTER_CLIENT_IP:
REQUEST_METHOD: GET
HTTP_REFERER: http: //hope4today.missionwebs.org/find-a-home/
REQUEST_URI: /wp-content/plugins/gravityforms/js/jquery.json-1.3.js?ver=1.7.3
QUERY_STRING:
HTTP_USER_AGENT: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31

>>>>>>>>>>> 403 GET or Other Request Error Logged - May 20, 2013 - 4:36 am <<<<<<<<<<<
REMOTE_ADDR: 108.161.186.118
Host Name: 108.161.186.118
HTTP_CLIENT_IP:
HTTP_FORWARDED:
HTTP_X_FORWARDED_FOR:
HTTP_X_CLUSTER_CLIENT_IP:
REQUEST_METHOD: GET
HTTP_REFERER: http: //hope4today.missionwebs.org/find-a-home/
REQUEST_URI: /wp-content/plugins/gravityforms/js/jquery.json-1.3.js?ver=1.7.3
QUERY_STRING:
HTTP_USER_AGENT: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31

>>>>>>>>>>> 403 GET or Other Request Error Logged - May 20, 2013 - 4:36 am <<<<<<<<<<<
REMOTE_ADDR: 108.161.186.118
Host Name: 108.161.186.118
HTTP_CLIENT_IP:
HTTP_FORWARDED:
HTTP_X_FORWARDED_FOR:
HTTP_X_CLUSTER_CLIENT_IP:
REQUEST_METHOD: GET
HTTP_REFERER: http: //hope4today.missionwebs.org/find-a-home/
REQUEST_URI: /wp-content/plugins/gravityforms/js/chosen.jquery.min.js?ver=1.7.3
QUERY_STRING:
HTTP_USER_AGENT: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31

>>>>>>>>>>> 403 GET or Other Request Error Logged - May 20, 2013 - 4:36 am <<<<<<<<<<<
REMOTE_ADDR: 108.161.186.118
Host Name: 108.161.186.118
HTTP_CLIENT_IP:
HTTP_FORWARDED:
HTTP_X_FORWARDED_FOR:
HTTP_X_CLUSTER_CLIENT_IP:
REQUEST_METHOD: GET
HTTP_REFERER: http: //hope4today.missionwebs.org/find-a-home/
REQUEST_URI: /wp-content/plugins/gravityforms/js/gravityforms.js?ver=1.7.3
QUERY_STRING:
HTTP_USER_AGENT: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31

>>>>>>>>>>> 403 GET or Other Request Error Logged - May 20, 2013 - 4:40 am <<<<<<<<<<<
REMOTE_ADDR: 108.161.186.118
Host Name: 108.161.186.118
HTTP_CLIENT_IP:
HTTP_FORWARDED:
HTTP_X_FORWARDED_FOR:
HTTP_X_CLUSTER_CLIENT_IP:
REQUEST_METHOD: GET
HTTP_REFERER: http: //hope4today.missionwebs.org/account/
REQUEST_URI: /wp-content/plugins/membership/membershipincludes/js/accountform.js?ver=3.5.1
QUERY_STRING:
HTTP_USER_AGENT: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.64 Safari/537.31
    July 30, 2013 at 9:46 am #8031
    AITpro Admin
    Keymaster

    You need to add these 2 plugin whitelist rules below to your Plugin Firewall.

    Click the Plugin Firewall menu link, click on the Firewall Whitelist Tools accordian tab, add these 2 plugin whitelist rules below into the  , click the Save Whitelist Options button and activate the Plugin Firewall again.

    /gravityforms/js/(.*).js, /membership/membershipincludes/js/(.*).js

    Plugin whitelist rules MUST use this format:  /plugin-folder-name/plugin-script.js, /another-plugin-folder-name/another-plugin-script.js  Plugin Firewall whitelist rules MUST be separated by a comma and a space between each whitelist rule.

    Reference/Source:  http://forum.ait-pro.com/forums/topic/plugin-firewall-read-me-first-troubleshooting/

    August 1, 2013 at 1:29 am #8104
    jena
    Participant

    gravity forms whitelist is already added like this

    /gravityforms/js/jquery.json-1.3.js, /gravityforms/js/gravityforms.js

    Will it make any difference if we add like this

    /gravityforms/js/(.*).js

We also face other issues.
Sermon Manager for WordPress plugin has issues with date picker and file uploader from dashboard for some users.
Does bullet oriif prevents it for soe users?
    August 1, 2013 at 8:50 am #8108
    AITpro Admin
    Keymaster

    It is definitely better to use this Gravity Forms plugin whitelist rule…

    /gravityforms/js/(.*).js

    …because if javascript names or javascript version numbers change in future versions of the Gravity Forms plugin then this whitelist rule will still work.  (.*) is Regular Expression code that means match anything (any name or any number, etc).  So the whitelist rule means this:  /gravityforms/js/[match any Gravity Forms javascript name].js.  The matching condition is:  match any Gravity Forms javascript name in the /js/ folder.  This means that all Gravity Forms .js scripts will be matched now and in the future if the name of the javascript filename is changed in a later version of Gravity Forms.

    Example of javascript file name matches using: /gravityforms/js/(.*).js

    The whitelist rule above will match all of these Gravity Forms javascript filenames below.
    /gravityforms/js/jquery.json-1.3.js
    /gravityforms/js/jquery.json-1.4.js
    /gravityforms/js/jquery.json-1.5.js
    etc, etc, etc….

    To troubleshoot whether or not BPS Pro is causing an issue or problem use these BPS Pro Troubleshooting steps in the link below.  If you find that BPS Pro is causing an issue or problem with another plugin then please post the troubleshooting steps you did to confirm this, which troubleshooting step allowed the other plugin to work correctly, the name of the plugin and exactly what is being blocked or is not working in that plugin.

    http://forum.ait-pro.com/forums/topic/read-me-first-pro/#bps-pro-general-troubleshooting

  • Author
    Posts
Viewing 8 posts - 1 through 8 (of 8 total)
  • You must be logged in to reply to this topic.