Chad Warner
Forum Replies Created
-
@hiroaki-miyashita Please reply.
The site has a snippet that creates full-width sections on pages. We’ve used it for years without problems. Suddenly the problem started when blocks (including Custom HTML, Column, and Image blocks) were used within the full-width sections generated by this snippet.
<div class="full-width-section {background}-bg {class}">
<div class="wrap">
{content}
</div>
</div>Variables: background,class
Shortcode: checked/enabled
As one example of what was happening, there were iframes in Custom HTML blocks. On the front end, additional double quotes were inserted into the iframes (for escaping?), breaking them.
@hiroaki-miyashita Please reply. Patchstack published this several weeks ago, in Dec.
Forum: Plugins
In reply to: [Scriptless Social Sharing] XXS Vulnerability@littlerchicken Thank you! 3.3.1 is no longer being flagged as vulnerable.
Forum: Plugins
In reply to: [Scriptless Social Sharing] XXS Vulnerability@littlerchicken, please reply as soon as you’re able. Security vulnerabilities are serious, and several people have requested a status update. I’m sure many other users of your plugin who haven’t taken the time to post are also wondering about this.
Forum: Plugins
In reply to: [Scriptless Social Sharing] VulnerabilityThere are other support threads about this. Unfortunately, the plugin author hasn’t replied for two weeks.
https://ww.wp.xz.cn/support/topic/3-3-0-still-vulnerable/
https://ww.wp.xz.cn/support/topic/vulnerability-found-by-wordfence-2/
Forum: Plugins
In reply to: [Scriptless Social Sharing] XXS Vulnerability@littlerchicken, can you please reply? As you can see, many people are looking for a status update.
Forum: Plugins
In reply to: [Scriptless Social Sharing] XXS Vulnerability@littlerchicken, have you heard back back from Patchstack? If not, could you release an updated plugin containing the fix? Maybe the change in version number along with fixing the vulnerability will cause Patchstack to stop flagging it as vulnerable.
Forum: Plugins
In reply to: [Scriptless Social Sharing] 3.3.0 still vulnerableI agree with @jane-blonde’s suggestion. @littlerchicken, could you please address this? As you can see from the support forum for your plugin, many users are concerned about this.
Forum: Plugins
In reply to: [Scriptless Social Sharing] XXS VulnerabilityI’m concerned about this as well, and agree with @badlydrawnben’s suggestion.
Forum: Plugins
In reply to: [RSVP and Event Management] Plugin causes media upload error on WordPress.comI just shared the PHP error logs through your form.
Forum: Plugins
In reply to: [RSVP and Event Management] Plugin causes media upload error on WordPress.comI followed your instructions. In Troubleshooting Mode, the Media Library only has Classic view, not Default view. With that view, uploading works, as it did outside of Troubleshooting Mode. I had to activate Jetpack to enable Default view in the Media Library. With Jetpack activated, uploading failed, whether or not RSVP was activated.
I disabled Troubleshooting Mode. With Jetpack and RSVP activated, uploading failed when using Default view. With Jetpack activated but RSVP deactivated, uploading succeeded.
- This reply was modified 1 year, 4 months ago by Chad Warner.
Forum: Plugins
In reply to: [RSVP and Event Management] Plugin causes media upload error on WordPress.comPlugin version 2.7.15. Theme is a child theme of Genesis.
Upon a failed upload, browser console shows:
[Error] Unhandled Promise Rejection: JsonSyntaxError: Invalid response from the Jetpack site
(anonymous function) (media.afc216bfd0e64e9b7c8d.min.js:1:45227)This site has the Jetpack and Jetpack Boost plugins installed.
I don’t know why this thread was marked as resolved, because the plugin page is still showing, “This plugin has been closed as of March 1, 2024 and is not available for download. This closure is temporary, pending a full review.” Does anyone have an update?
- This reply was modified 2 years, 2 months ago by Chad Warner.