WordPress 4.8.2 prepare method breaks plugin | ww.wp.xz.cn

Denis Žoljom
(@dingo_d)

8 years, 8 months ago
I’ve seen two topics on this, my guess is that the new update caused some issue because I am also getting this error:

WordPress database error You have an error in your SQL syntax; check the manual that corresponds to your MariaDB server version for the right syntax to use near '%1$s )' at line 3 for query SELECT internal_link_count, incoming_link_count, object_id FROM wp_yoast_seo_meta WHERE object_id IN ( %1$s ) made by WP_List_Table->display, WP_List_Table->display_tablenav, WP_Posts_List_Table->extra_tablenav, do_action('manage_posts_extra_tablenav'), WP_Hook->do_action, WP_Hook->apply_filters, WPSEO_Link_Columns->count_objects, WPSEO_Link_Columns->set_count_objects, WPSEO_Link_Column_Count->set, WPSEO_Link_Column_Count->get_results

The update said:

$wpdb->prepare() can create unexpected and unsafe queries leading to potential SQL injection (SQLi). WordPress core is not directly vulnerable to this issue, but we’ve added hardening to prevent plugins and themes from accidentally causing a vulnerability.
- This topic was modified 8 years, 8 months ago by Denis Žoljom.

Viewing 3 replies - 1 through 3 (of 3 total)

Moderator Ipstenu (Mika Epstein)
(@ipstenu)

🏳️‍🌈 Advisor and Activist

8 years, 8 months ago

The new version of the plugin will fix that.

Suwash Kunwar
(@suascat_wp)

8 years, 8 months ago

@dingo_bastard we apologize for the trouble this has caused. There was a compatibility issue with WordPress 4.8.2. The issue has been fixed in the newly released version v-5.4.2. Please update the plugin.

Prince_Dhaval
(@shethdhaval)

8 years, 8 months ago

Hello Author,
is it fixed in premium version?
Appreciate your response
Thanks

Viewing 3 replies - 1 through 3 (of 3 total)

The topic ‘WordPress 4.8.2 prepare method breaks plugin’ is closed to new replies.

Tags

3 replies
4 participants
Last reply from: Prince_Dhaval
Last activity: 8 years, 8 months ago
Status: not resolved