Just checking on the status of patching this vulnerability: https://patchstack.com/database/vulnerability/convertbox-auto-embed/wordpress-convertbox-auto-embed-wordpress-plugin-plugin-1-0-19-cross-site-scripting-xss-vulnerability?_a_id=431
]]>Hello.
This plugin is incompatible with Oxygen builder. It blocks the Media Library “browse” button and also locks the custom css menu bar when you’re in editor.
I think we need a snippet like in previous thread with Beaver Builder to prevent this plugin from adding the embed script when the Oxygen editor is active. I tried this one, but it’s not working.
add_action( 'plugins_loaded', 'bbcbox_maybe_unload_cbox' );
function bbcbox_maybe_unload_cbox() {
if ( isset( $_GET['ct_builder'] ) ) {
remove_action( 'wp_head', 'convbox_head_script' );
}
}If you’re running into issues where you’re unable to interact with the media gallery while using the BB editor with this plugin active, you can use the below code in either a custom plugin or your theme’s functions.php to prevent this plugin from adding the embed script when the BB editor is active:
add_action( 'plugins_loaded', 'bbcbox_maybe_unload_cbox' );
function bbcbox_maybe_unload_cbox() {
if ( isset( $_GET['fl_builder'] ) ) {
remove_action( 'wp_head', 'convbox_head_script' );
}
}Is this plugin Abandoned?
It is showing this message and most likely will be deleted from WordPress soon:
This plugin hasn’t been tested with the latest 3 major releases of WordPress. It may no longer be maintained or supported and may have compatibility issues when used with more recent versions of WordPress.
]]>Hi we’ve got the follow error EVERY second:
PHP Warning: Cannot modify header information – headers already sent in /www/wp-content/plugins/convertbox-auto-embed/convert-box-plugin.php on line 124
It brings extra load to our servers, making the website load slower.
Can you please fix this issue? Thanks!
This hasn’t been updated in a year. Is ConvertBox no longer a viable service?
]]>