Since patch 130406 many users can't log

Hello,

after a year of flawless functioning, S2member suddenly stopped allowing non admin users to log in into the website.

What they get is not the usual “wrong password” message but a very specific:

ERROR: Invalid username or incorrect password

like the user does not exist at all (they do, I checked all of them).

We did not change anything in the last weeks except updating S2 member to v130406.

Disabling all plug ins did nothing, only disabling and re-enabling S2 member immedately restores functionality to those users. I also noticed that setting all these users to “Subscriber” immediately make them log in again (with reduced privileges of course). If I set them back to S1-S4 role then they get that message again.
Only 1 user, got fixed by enabling and then re-disabling the S2 member logs feature.

I installed that Server Check script and it’s all green checks (we are hosted on Bluehost by the way).

Needless to say, I have to go overseas in 2 days and of course right now the website is unusable for the users >_<

WP used is 3.5.1.

Any way to downgrade S2 member to the previous version? Our site cannot be taken down, cannot be restored (we have backups but we'd lose too much created content and users since 2 days ago).

Best regards,
dfumagalli

Is my question incomplete? Should I send some sort of data?

Hello Dario,

I’m sorry for this error, here’s a topic you’ll be interested in regarding changing to a previous version:
http://www.s2member.com/forums/topic/rollback-to-previous-version/

However you’re the only user that seems to be reporting this so we can’t take this as a real bug report. :/

– Eduan

Hello,

first of all please excuse me for the delay, I was travelling by car across half Europe and then took a ferry to an island.

I know I am the only one with this issue, maybe it’s due to our unique “combination” of using S2Member in conjunction with Simple:Press 4.X (basically, a forum with paid access on most of its sections).

I wish I knew what logs or whatever to produce to possibly figure out what’s going wrong after a year of flawless working despite updating S2 Member every new version.

Well s2Member’s logging feature can be found under Dashboard -› s2Member® -› Log Files (Debug) -› Logging Configuration.

In there you will find a way to enable/disable the things that s2Member logs… Perhaps what you need is in there?

– Eduan

Sorry, let me know if I should be logging a new topic as I was directed here to log my issue here as I am running into a similar problem…
After a new user registers they cannot login…They are not able to log in until I go into their user profiles and reset their passwords.
I am running version 130406 and am getting the same message for my new users as the OP:
ERROR: Invalid username or incorrect password

This is a brand new site I am developing and trying to deploy.
http://www.npopmtraining.org

When I check the log files in my security app (Better WP Security) I have I am seeing a lot of 404 errors.

Any ideas?