Return to previous page

Keep getting Spam Orders on Websites using XStore

This topic has 5 replies, 2 voices, and was last updated 23 minutes ago ago by indigoross

indigoross

Participant

December 3, 2024 at 10:12

Hi!

We are having issues with websites using the xstore theme past few days where they are getting quite alot of Spam orders.

They all just purchase one product which always fails, its always a spam email address as well.

We have Wordfence installed on all our sites we have done for years.

We have reCAPTCHA for WooCommerce installed on our shops and the orders are still getting through.

Spoke to hosting company and they said all is ok there end and to check with theme developers?

I keep blocking the IP addresses but they still keep getting thorough and only with sites using the XStore theme?

Is it a coincidence or is something amiss?

Any help be great

Thank you

Scott

Files is visible for topic creator and
support staff only.

#426283 Copied

4 Answers

Andrew Mitchell

Support staff

December 3, 2024 at 15:36

Hello Scott,

Thank you for reaching out to us and bringing this matter to our attention.

We sincerely apologize for the inconvenience caused by the spam orders you’ve been experiencing on your websites using the XStore theme. We understand how frustrating this can be, and we are here to assist you in resolving the issue.

Based on the information you’ve provided, it seems that you have already implemented several security measures, such as Wordfence and reCAPTCHA for WooCommerce, which are excellent steps. However, we would like to investigate further to determine if there is any specific vulnerability or configuration within the XStore theme that could be contributing to this issue.

To assist you more effectively, could you please provide us with the following details?
1. The version of the XStore theme you are currently using.
2. A list of active plugins on the affected websites.
3. Any error logs or additional information from your hosting provider that might help us identify the root cause.

In the meantime, we recommend ensuring that your theme and all plugins are updated to their latest versions, as updates often include important security patches. Additionally, you may want to consider enabling a more advanced anti-spam solution, such as a plugin specifically designed to block spam orders, to complement your existing security setup.

Once we receive the requested details, we will thoroughly review the situation and provide you with further guidance or a potential solution.

Thank you for your patience and understanding. We are committed to resolving this issue for you as quickly as possible.

Best regards,
8Theme’s Team

#426306 Copied

indigoross

Participant

December 4, 2024 at 15:49

Hi!

I hope all is well

No worries many thanks for help.

Please see attached error log.

Am using the up to date version of Xstore (Version: 9.4.5)

Plugin list is as follows

Classic Editor
Contact Form 7
Massive Addons for WP Bakery
PDF Invoices & Packing Slips for WooCommerce
Really Simple Security
reCAPTCHA for WooCommerce
ReCaptcha v2 for Contact Form 7
Redirection
Site Kit by Google
Slider Revolution
WooCommerce
WooCommerce Advanced Free Shipping
WooCommerce Dynamic Pricing & Discounts
WooCommerce PayPal Payments
WooCommerce TM Extra Product Options
Wordfence Security
WP Fastest Cache
WPBakery Page Builder
XStore Core
YITH WooCommerce Wishlist

All plugins are up to date.

I hope this helps!

Many thanks
Yoast SEO

#426440 Copied

Andrew Mitchell

Support staff

December 4, 2024 at 17:14

Hello, indigoross,

Thank you for providing the information.

It seems that the products might be added through the use of some API. Could you please confirm if you have any additional application that works with the REST API?

If not, we recommend temporarily disabling the WordPress REST API. You can do this by navigating to:
Customizer -> Speed Optimization -> REST API

Best regards,
8Theme’s Team

#426457 Copied

indigoross

Participant

December 4, 2024 at 17:18

Hi Andrew

Many thanks for your quick help with this! much apperacaited.

I shall disable this and see how it goes 🙂

Many thanks for your help!

Scott

#426458 Copied
Viewing 5 results - 1 through 5 (of 5 total)