The Custom Order Statuses for WooCommerce plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.5.2. This is due to missing or incorrect nonce validation on multiple functions. This makes it possible for unauthenticated attackers to modify order statuses via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.
No known patch available. Please review the vulnerability’s details in depth and employ mitigations based on your organization’s risk tolerance. It may be best to uninstall the affected software and find a replacement.
]]>So, I think it’s clear by now that this plugin has been completely abandoned. Yes, it does still work with the latest versions of WordPress and Woocommerce. But it’s marked as not compatible with Woo’s new HPOS, which is going to be an issue moving forward. It’s also becoming more glitchy, for me at least, and has caused a few fatal errors. And more importantly, ANY abandoned plugin is a potential security risk. Therefore, I’m looking at moving to an alternative plugin that does the same job asap. The problem is that I have a fair few thousand existing orders that all use different custom order statuses, and I don’t want to lose that data. I can see that there are a good number of alternative plugins available now that do the same job. The key question is, has anyone had any success moving to a similar plugin, while still retaining all existing order data, including all existing ‘Custom Order Status’ data. Anyone??? Please???
]]>is expected to be updated in order to be compatible with woocommerce hpos?
]]>As reported by someone else, there is a notice in the server logs:
[notice] [client ] id was called incorrectly. Order properties should not be accessed directly. Backtrace: do_action(‘wp_ajax_woocos_setup_deactivation_form_ajaxPost’), WP_Hook->do_action, WP_Hook->apply_filters, call_user_func_array, woocos_setup_deactivation_form_ajaxPost, WC_Abstract_Legacy_Order->__get, wc_doing_it_wrong. This message was added in version 3.0., referer https://.com/wp-admin/plugins.php?plugin_status=all&paged=1&sThe fix just involves changing $order->id to $order->get_id() on line 29 of custom-order-statuses-for-woocommerce/ajax/deactivation-form.php
Change:
array_push( $found_orders, $order->id );to:
array_push( $found_orders, $order->get_id() );I realise that the developer seems to have disappeared but this code may help others that are concerned about the message in the log file.
]]>Hi! I need to know if with this plugin (v 1.5.2) I can update to WC 8.0.2 and WP 6.3.
Thank you!
I have a request status that was created and when the status is deleted
He remains present between the ranks, but without any name
How do I delete it completely
<font _mstmutation=”1″></font>
]]>Hello budy, how are you?
I’m trying to use the plugin but it’s giving me a critical error, I think because I’m using PHP 8.0, is there any modification I can do to correct the error? Because I need to use version 8 and I can’t change
I see that the last update was almost a year ago and no support has been given by the plugin author in 10 months. What are the plans for the plugin in the future? I don’t want my client to be stuck with an unsupported and not updated plugin.
]]>Как привязать сумму заказа в теле письма , заполнитель какой ставить ?
]]>I deactivate this plugin while trobleshooting an issue and now i cant reactivate it. i am receiving this error
Fatal error: Allowed memory size of 805306368 bytes exhausted (tried to allocate 20480 bytes) in /home/customer/www/.com/public_html/wp-includes/class-wpdb.php on line 2397
How can i fix this?
]]>Hello,
I would like to ask it is possible to send order status email for a specific time. Eg one week after order email. Two week after ordered another one and so on.
Thanks,
Laszlo
]]>Hello
I see an error in the logs, please look into it. I think it is related to your plugin. could you check it out?
[notice] [client ] id was called incorrectly. Order properties should not be accessed directly. Backtrace: do_action(‘wp_ajax_woocos_setup_deactivation_form_ajaxPost’), WP_Hook->do_action, WP_Hook->apply_filters, call_user_func_array, woocos_setup_deactivation_form_ajaxPost, WC_Abstract_Legacy_Order->__get, wc_doing_it_wrong. This message was added in version 3.0., referer https://.com/wp-admin/plugins.php?plugin_status=all&paged=1&s
]]>Hello, please tell me if there are any checks in the plugin that will help to get the order number when the plugin starts sending mail by custom status.
I’m using the multi-vendor plugin, and sub-orders are created for vendors. It turns out that the letter comes by order and by sub-order.
Here is the multivendor plugin support response:
“
plugin is sending two mail one for main orders and the other for suborders.
So, can you please ask this delivery plugin author whether they have any checking that will let us fetch the order number when this plugin is triggering the mail.
“
]]>Hello there,
I have discovered that your plugin is conflicting with PayPal Payments plugin.
It produces a critical error on the order status update. This is what I have captured:
WooCommerce\PayPalCommerce\WcGateway\Gateway\PayUponInvoice\PayUponInvoice::WooCommerce\PayPalCommerce\WcGateway\Gateway\PayUponInvoice\{closure}(): Argument #4 ($email) must be of type WC_Email, string given, called in /home/mydomainname.com/asdasdasdsdkpvhpubjec/public_html/wp-includes/class-wp-hook.php on line 308
in /home/mydomainname.com/asdasdasdsdkpvhpubjec/public_html/wp-content/plugins/woocommerce-paypal-payments/modules/ppcp-wc-gateway/src/Gateway/PayUponInvoice/PayUponInvoice.php on line 286
Aufrufstapel
WooCommerce\P\W\G\P\PayUponInvoice::WooCommerce\P\W\G\P\{closure}()
wp-includes/class-wp-hook.php:308
WP_Hook::apply_filters()
wp-includes/class-wp-hook.php:332
WP_Hook::do_action()
wp-includes/plugin.php:517
do_action()
wp-content/plugins/kadence-woocommerce-email-designer/templates/woo/emails/email-order-details.php:142
include()
wp-content/plugins/woocommerce/includes/wc-core-functions.php:345
wc_get_template()
wp-content/plugins/woocommerce/includes/class-wc-emails.php:421
WC_Emails::order_details()
wp-includes/class-wp-hook.php:308
WP_Hook::apply_filters()
wp-includes/class-wp-hook.php:332
WP_Hook::do_action()
wp-includes/plugin.php:517
do_action()
wp-content/plugins/custom-order-statuses-for-woocommerce/templates/emails/4th-pay-for-order.php:18
include()
wp-content/plugins/woocommerce/includes/wc-core-functions.php:345
wc_get_template()
wp-content/plugins/custom-order-statuses-for-woocommerce/emails/woocos-email.php:186
WOOCOS_Email::woocos_get_content_html()
wp-content/plugins/custom-order-statuses-for-woocommerce/emails/woocos-email.php:100
WOOCOS_Email::woocos_trigger()
wp-includes/class-wp-hook.php:308
WP_Hook::apply_filters()
wp-includes/class-wp-hook.php:332
WP_Hook::do_action()
wp-includes/plugin.php:517
do_action()
wp-content/plugins/custom-order-statuses-for-woocommerce/email-manager.php:64
WOOCOS_Email_Manager::woocos_trigger_email_action()
wp-includes/class-wp-hook.php:308
WP_Hook::apply_filters()
wp-includes/class-wp-hook.php:332
WP_Hook::do_action()
wp-includes/plugin.php:517
do_action()
wp-content/plugins/custom-order-statuses-for-woocommerce/order-status-generator.php:97
woocos_add_custom_order_status_actions()
wp-includes/class-wp-hook.php:310
WP_Hook::apply_filters()
wp-includes/class-wp-hook.php:332
WP_Hook::do_action()
wp-includes/plugin.php:517
do_action()
wp-content/plugins/woocommerce/includes/class-wc-order.php:397
WC_Order::status_transition()
wp-content/plugins/woocommerce/includes/class-wc-order.php:245
WC_Order::save()
wp-content/plugins/woocommerce/includes/admin/meta-boxes/class-wc-meta-box-order-data.php:692
WC_Meta_Box_Order_Data::save()
wp-includes/class-wp-hook.php:310
WP_Hook::apply_filters()
wp-includes/class-wp-hook.php:332
WP_Hook::do_action()
wp-includes/plugin.php:517
do_action()
wp-content/plugins/woocommerce/includes/admin/class-wc-admin-meta-boxes.php:277
WC_Admin_Meta_Boxes::save_meta_boxes()
wp-includes/class-wp-hook.php:310
WP_Hook::apply_filters()
wp-includes/class-wp-hook.php:332
WP_Hook::do_action()
wp-includes/plugin.php:517
do_action()
wp-includes/post.php:4717
wp_insert_post()
wp-includes/post.php:4819
wp_update_post()
wp-admin/includes/post.php:426
edit_post()
wp-admin/post.php:227Could you please taka a look?
Thanks.
]]>Hello !
I created a new status and I edited the email texts. However, I need to translate the texts into another language. How can I archieve it? I’m using WPML.
Thanks!
]]>Hi! is the las version of this plugin compatible with Woocommerce 7.1 and WordPress 6.1?
thank you
Привет!
Можно ли как-то настроить разный цвет у каждого произвольного статуса заказа?
Hi,
I was troubleshooting a connection error so disabled all plugins. I was able to re-activate all of the plugins on my site except this one. Everything i try to activate it i recieve the following error.
Fatal error: Allowed memory size of 805306368 bytes exhausted (tried to allocate 16777224 bytes) in /home/customer/www/staging2.visibledeals.com/public_html/wp-includes/wp-db.php on line 2867
thanks for your help in advance.
]]>Hi,
I created a custom order status for ‘despatch’ and set up an email. The email triggers I have (new order and completed) work fine through WooCommerce and they also have a link to Mailchimp. Is there a way that I can either make the emails work straight from WooCommerce or connect up the custom order status to trigger an automation in Mailchimp
Thanks
]]>Hello,
First off, thanks for your plugin. It works great and it is very useful to me. I’m an artist and I’m using your plugin to create “loan to gallery” and “commissioned work” to keep track of my artworks.
My question is, is it possible to have your statuses deduct quantity from stock? I think it would be a great option to add to each status (whether that specific status should deduct from stock or not), as it would allow me to say one specific artwork is no longer available for sale through the website if the gallery has it. Hope my question makes sense. If its not possible through your plugin… do you know of a way to set one of the order statuses created with your plugin to subtract from stock? Is there another plugin you know that might do this?
Thanks you again. Great work!
]]>Hi, I’m trying to use the bulk action option to a custom status, but when I change the order status they goes to a pending status instead of the correct one.
There is a way to fix this feature?
Thank you
]]>Hi there,
We are trying to translate emails using polylang plugin.
Following strings (heading_woocos-*, additional_content_woocos-*, subject_woocos-*) are translated but emails still arrive in default language.
Any idea would be helpful!
Thanks!
Hello
Thanks for the plugin – it’s great!
I have a request to the developer: Please make it compatible with the WC Marketplace multi-vendor plugin (https://www.ads-software.com/plugins/dc-woocommerce-multi-vendor/)
The fact is that the multi-vendor plugin creates a suborder for each seller.
Example:
For example, the order number of WooCommerce is 9405, (your plugin works fine with this order) contains goods from 2 suppliers: Adidas and Nike.
By order number 9405, the multivendor plugin creates suborders with separate numbers (but they all belong to the main order 9405).
Suborder for Adidas 9406.
Suborder for nike 9407.
Each of the brands can change the status of suborders from their control panel and send the goods themselves, so the suborder for Adidas 9406 can have a custom (status created by your plugin) “Delivered by courier” and the suborder for Nike can have the status “in process”.
Also, there is a code that synchronizes the statuses of suborders, if all suborders are completed, then the status of the parent order 9405 also automatically changes to completed.
(https://wc-marketplace.com/faqs/sub-order/)
I’ve attached a screenshot so you can see what I mean.
https://drive.google.com/file/d/1Mro9DN5yOvHxcabYyv_EfWN82XY2LlHX/view?usp=sharing
Now:
Incompatibility with email and suborders:
It is not possible to set a custom order status for a suborder created by your plugin. An error occurs.
Also, for a suborder, a letter about changing the status to a custom status does not come: the letter only works for the parent order – and ideally: so that letters come with suborder numbers and the number of the parent order.
For example: If Adidas suborder 9406 has already sent his order, then the client should receive an email:
“Part of your order 9405 has changed its status to ‘Custom status’. Suborder for 9406 Adidas sent you a package.
Incompatibility with suborder icons – they are empty.
Incompatibility with status change: If I change the status from “In progress” to “My custom status” – then the checkmark icon for the order “Complete” disappears.
Hi there,
I have created a new status and enabled the email template. Is there a way of editing this new email with a email customizer? I’m using email custimizer by themehigh and I can’t see the new email template in the plugin to be edited.
Thank you!
Best regards,
Siri
Hi,
automatic e-mails to customers don’t seem to be sent since the release of the last version 1.5.2. I’ve tried a downgrade to 1.5.1 but it doesn’t work neither. E-mails functioned properly before I installed 1.5.2, this is really strange. Other automatic e-mails from classic Woocommerce status just work fine.
Have you an idea ?
Thanks !
Hi,
it seems that after changing order status to custom status created with your plugin, other WooCommerce emails (when changing to default statuses) are no longer sent out.
For example, we created status “Payment waiting” and a custom email template for it. Custom email is sent out perfectly, however, if we then change the order status to either “Processing” or “Completed”, default emails stop working. If we never use custom status, default emails work as expected.
Hope you can help with the issue.
]]>Hi,
first of all thanks a lot for this plugin, simple and efficient.
I would like to know if it is possible and if so how to translate the order status name and content of the e-mails. I’ve been searching for hours in WPML but nothing found.
Thanks !
Is it possible to insert placeholders in the subject and content of the email, e.g. for the order number {order_number}?
Thanks
]]>Dear developpers,
I installed your plugin on our website to create custom order statuses.
I created a first one: “Order ready to go” which worked well and since I tried to create a second one, the plugin shows me empty order statuses.
Moreover, I tested sending emails and I don’t receive any despite the settings.
I put the value {{customer}} in the email field.
Could you please help me to solve these two problems?
PS: I have already deactivated and reactivated the plugin.
Thanks a lot for your future answers
Translated with https://www.DeepL.com/Translator (free version)`
]]>Hi,
Email I receive as someone who made an order doesn’t include order data and isn’t styled like the remaining WooCommerce emails (it’s basically an empty email with only title and subject which I set up in the WooCommerce settings > Emails).
Hope you can help me with the issue.
Best
]]>