Before you ask please READ THIS

SSL Security Problem with "Apollo13 Framework-Erweiterungen"(Extensions) Plugin

in Rife Posts: 5
Greetings,

so I am using Rife Pro on multiple client sites, i got messages from these clients that apperently their sites are marked as "not safe" in browsers. So i looked into it and after a lot of digging and almost nothing working i decieded to copy a whole client wordpress instance into an isolated webhosting and check if i can get rid of the safety problem by deleting parts of the site and deactivating plugins.
Sure enough after this process, it turned out that the "Apollo13 Framework-Erweiterungen"(German for Extensions) Plugin is causing this issue somehow.

That became even more clear when i activated all other plugins, and the issue was not present. But after activating said plugin - it was there right away.

Would be great if you could look into this and take care of it.
Kinda dissapointed that an (probabaly) update with this effect is even send out.

Sincerly,
Sabera

Comments

  • Here is a screenshot of the message that was displayed in Opera (German)
    ScreenshotApollo13RifeProSecurityProblem.png
    562 x 345 - 47K
  • AirAir
    Posts: 10,970
    Hello :-)

    As I understand you mean that some content, like images, are served by http instead of https, right?

    Please show me live link to such site.

    If I am correct you just have to refresh generated user.css file, so it contains proper links to images. Try doing this by going to customizer(with active plugin), changing something, and saving changes.

    This happens when you switch the site from HTTP to https after the site is already live:-)

    With kind regards.
  • Air said: Please show me live link to such site.
    https://fixautoverkaufen.de
    Air said: If I am correct you just have to refresh generated user.css file, so it contains proper links to images. Try doing this by going to customizer(with active plugin), changing something, and saving changes.
    Tryed but didnt work. I went into customizer changed some thing. Saved. Went into custum Css sections, changed and saved. Than even went into Theme editor made a change and saved.
    Unfortunatly nothing worked.

  • AirAir
    Posts: 10,970
    Ok :-)

    In case of this website those files are served by http instead of https:

    http://fixautoverkaufen.de/wp-content/uploads/2019/08/Fixautoverkaufen.jpg” „http://fixautoverkaufen.de/wp-content/uploads/2019/08/logo.png” „https://fixautoverkaufen.de/wp-content/uploads/2019/08/Fixautoverkaufen.jpg” „http://fixautoverkaufen.de/wp-content/uploads/2019/08/ErklaerungsvideoGlanzAutomobile.mp4” „https://fixautoverkaufen.de/wp-content/uploads/2019/08/logo.png

    So for sure please go to the logo section and try to select image for logo settings once again.

    I see that in your HTML some images are also served by http, so I suspect that not all settings in WordPress are set correctly.

    Just to calm you - plugin is not the issue, but the wrong links to few files are, and it seems that they are either cached, like in user.css file, or glitched due to other settings.

    I can take a look at this website tomorrow.

    If you like me to do it please send me temporary* access to your WordPress and so I could check there what is going on. Send it here on the forum via private message(click on my nick, in top-right corner you will find option "Message"). In message please add LINK to topic it applies to.

    By sending access to WordPress I mean:
    -create a new ADMIN account with a fake e-mail
    -set some password to this account
    -send me created login and password

  • Well i tryed out the suggestet fixes - didnt work - so i guess i let you take a look at it... I will send you a temporary access. (By the way, as i mentioned earlier simply deactivating said plugin already fixes the problem.)
  • AirAir
    Posts: 10,970
    Hey there:-)

    So deactivating plugin didn't solve the issue - various files were still served by HTTP. Not sure what you have seen while deactivating the plugin, but it didn't solve anything for me.

    As for logo - I have reset logo image in all places- in all header color variants and in normal logo settings, as it seemed that there were stuck some old settings, even that they didn't appear in the customizer.

    Last 2 files that you have to fix in your content in the Elementor are:
    -'http://fixautoverkaufen.de/wp-content/uploads/2019/08/ErklaerungsvideoGlanzAutomobile.mp4'.
    'http://fixautoverkaufen.de/wp-content/uploads/2019/08/Fixautoverkaufen.jpg '

    After these links are fixed, you shouldn't see any SSL warnings anymore.

    Hope, now all will go smooth for you :-)

    With kind regards.
  • Hey Air, what i saw is my browser giving out no security warnings, after deactivatingsaid plugin, and opening the site in a new tab - in private mode. I just checked again and u are right i cant recreate it again... mhh thats weird. Also on my test instace now everything works as intented. Guess either u have resolved the issue on your site - or something changed on my site. Whatever the case iam just happy that it works now.

    About fixing the last two files - deleting them and reuploading them over wordpress should be sufficent right?

    Thanks for ur help.
  • AirAir
    Posts: 10,970
    Sabera said: About fixing the last two files - deleting them and reuploading them over wordpress should be sufficent right?
    Yes, probably. I think that removing this media and choosing it again will add it with good link(https).

    With kind regards.
Sign In or Register to comment.

Howdy, Stranger!

It looks like you're new here. If you want to get involved, click one of these buttons!