Security Issue In The CSS

  • Resolved nkappel

    (@nkappel)


    11 years, 7 months ago

    Downloaded the plugin. Once it was downloaded, our website showed we were not 100% secure anymore. So after diving into what it could be it was found here

    …/wp-conversion-boxes/public/assets/css/public.css?ver=2.3.5

    With the first line in the public CSS being:

    @import url(http://fonts.googleapis.com/css?family=Poiret+One|Josefin+Sans|Lobster|Anton|Shadows+Into+Light|Gloria+Hallelujah|Roboto|Oswald|Raleway|Montserrat|Oxygen|Francois+One|Titillium+Web|Indie+Flower|Fjalla+One|Inconsolata|Pacifico|Audiowide|Dancing+Script|Coming+Soon);

    Notice the “http” vs having “https” … that’s the only issue we could find. So we have to use another plugin until this one is solved. I thought I would just let you know.

    https://ww.wp.xz.cn/plugins/related-posts-for-wp/

Viewing 2 replies - 1 through 2 (of 2 total)
  • Plugin Author Barry Kooij

    (@barrykooij)

    11 years, 7 months ago

    Are you sure this is caused by Related Posts for WordPress? You’re talking about ‘wp-conversion-boxes’ directory here, and we don’t create that nor do we import any Google Fonts.

    Plugin Author Barry Kooij

    (@barrykooij)

    11 years, 6 months ago

    Closed due inactivity from issue creator, please feel free to reopen this if you need further support.

Viewing 2 replies - 1 through 2 (of 2 total)

The topic ‘Security Issue In The CSS’ is closed to new replies.