Sometimes other plugins can interfere with or break WordPress functions and therefore prevent Wordfence from working. The easiest way to isolate which plugin is causing the issue is to disable all plugins except Wordfence and then reenable them one by one until one of them breaks Wordfence. Some examples of problems we’ve seen are:
- Plugins that try to protect your /wp-admin/ area but in doing so block access to admin-ajax.php which lives in that directory and needs to be publicly accessible.
- Plugins that put your site into maintenance mode and also disable admin-ajax.php.
- Plugins that disable jQuery in WordPress. This disables Wordfence and almost all other plugins and themes that rely on this core library.
Please note that the Wordfence team can’t provide support for other plugins, however if you’re aware of a specific incompatibility please report it to us.
How to inspect the browser console
Chrome Browser Console
Browsers on desktop computers have a console which shows details about every page loaded in your browser. On Windows in Chrome, Edge and FireFox, the browser console can be opened by pressing F12. On Mac, you can open it by pressing Command+Option+i. The Browser console is also available via respective Browsers menu.
How to take a screenshot
When collecting data for debugging purposes, it can be useful to save screenshots to communicate exactly what is going wrong. If you are in contact with Wordfence support, they may ask you to provide a screenshot to demonstrate your issue.
Most operating systems provide built in features for taking screenshots. On Windows computers, you can use the “Snipping tool”. On Mac computers you can press Shift-Command(⌘)-3 to save a full screenshot on your desktop. To take a partial screenshot, press Shift-Command(⌘)-4 and click-drag over the area you want to screenshot. For information on other ways to take a screenshot, you can visit https://www.take-a-screenshot.org.
Once you have the screenshot you can send it as an attachment in an email, or host it on a service online so that you can share a link to it instead. An example of such a service is https://imgur.com/ Remember to never share any sensitive details such as usernames or passwords in screenshots or text.
Admin pages with query string redirect to the home page
If you are trying to visit “Click to view your system’s configuration in a new window” on the Wordfence “Diagnostics” page and the home page of your site loads instead of the system information page, your theme may be using the “template_redirect” hook incorrectly.
WordPress has a built in function called template_redirect which allows theme authors to make redirects that are informed about the specific state of WordPress during a request. For example, it can be used to make different redirects depending on whether a user is logged in or not.
On occasion, theme authors will use the template_redirect hook in a way that breaks all URL’s that request the root of the site and have query strings, because it redirects all those requests to the site’s home page. There is unfortunately no fix for this, other than to ask the theme developer to change how their code works so it doesn’t impact other URL’s on your site. You can read more about the template_redirect hook and how to use it in the WordPress documentation. Please note that as the documentation states, loading a different template is not a good use of this action hook.