knittingtheweb
Forum Replies Created
-
Forum: Plugins
In reply to: [WP Last Modified Info] RCE vulnI second this request! WP Engine sent out vulnerability notification. I’ll need to remove the plugin from my sites if it isn’t patched soon. Any timeline available? Thanks!
Private ticket opened, thank you!
Unfortunately, three more spam registrations were approved this morning that don’t appear in the CleanTalk log. They came from email addresses used for accounts I’ve deleted at least twice now, and are attempting to access post-new.php, so I really need to keep them out.
Can I send you the usernames and email addresses privately for you to check?
Thanks for the update. I’ve followed your excellent instructions to install the fixed version. I submitted a test registration with [email protected] and it was blocked by the plugin. I really appreciate the fast response and fix.
I’ve been using Anti-Spam by CleanTalk for years and it has blocked tens of thousands of spam bots on my websites. I already submitted a five-star review but wanted to say here that this is absolutely one of the best WordPress plugins! Thank you!!
Thank you for the quick reply, and for pinpointing the problem. It’s a low-traffic site at this point so I’m happy to wait 2-3 business days for your team to follow up.
Thank you for the update. I’m not comfortable downgrading to a previous version since, according to the changelog, the last two versions included fixes for security vulnerabilities. I will install Hustle updates as they become available and hope that the CTA conversion tracking bug is fixed soon.
Sorry for the delay. Here is the link to the pop-up export.
You’re correct, I had re-enabled Wordfence pending additional help. 🙂
Thank you for the detailed instructions for whitelisting my IP address in Wordfence Central. That did the trick; I was able to log in, disable and then re-enable 2FA, and save my new recovery codes.
Brilliant! Thank you so much, Margaret. Wordfence is such a great plugin and now I know their support is top-notch, too!
I should have also mentioned that none of my recovery codes are working.
Thank you for your reply, Margaret. I do not have Wordfence Login Security installed.
I tried again:
- I renamed the Wordfence folder to wordfence.bak via SFTP.
- I opened the login form in a new incognito Chrome window.
- I entered my admin username and password.
- I again received the “CODE REQUIRED: Please provide your 2FA code when prompted” message.
Any other suggestions? I’ve worked through this new phone/Wordfence 2FA issue on 10 websites hosted by WP Engine, and in every case renaming the folder allowed me to log in and reset 2FA. The fact that it’s not working on this website is concerning. It’s on shared hosting by Namecheap/EasyWP, if that information is useful.
Forum: Plugins
In reply to: [Urvanov Syntax Highlighter] When to expect patched version?Really hoping there’s a patch soon! This is the only syntax highlighter plugin I’ve found that works with bbPress forums. It’s very important to our website and I’d hate to have to deactivate it.
- This reply was modified 2 years, 7 months ago by knittingtheweb.
Thanks, @tnchuntic. In v2.2.5, I’m getting a different error message in some Visual Link Preview boxes: “Error loading block: The response is not a valid JSON response.” Again, this does not affect the VLP block display on the front end, only in the editor. If I toggle the VLP block in the editor to “Edit as HTML” and then back to “Edit visually” it temporarily displays properly but shows errors randomly pop up again if I save changes and refresh the editor.
I installed the Health Check plugin to check for incompatibilities but it was a little more difficult to use in the editor than on a front end display. I suspect for me it may be a conflict with Kadence Blocks – Gutenberg Blocks for Page Builder Features because if I drag a VLP block that is throwing an error out of the Kadence accordion block, the error message disappears.
I am also experiencing this issue. The visual link previews look fine on the front end of the website. But when I open the page in the block editor, some of the previews are fine and some of them say “This block has encountered an error and cannot be previewed.”
For example, on that page, all of the previews under Designing, Building, and Maintaining Outdoor Learning Spaces > Articles and Posts show the error message. But under Accessibility, Equity, and Inclusion > Articles and Posts, the preview block shows properly with no error message.
I’ve temporarily turned this feature off (Settings > Anti-Spam by CleanTalk > Advanced Settings > Forms to Protect > Test default WordPress search form for spam) until we hear from support. I don’t want my site visitors to have a frustrating experience searching my site.
I am also seeing legitimate search requests blocked on my wikiwatershed.org and leafpacknetwork.org websites.