Bug with WP Favorite Posts plugin

Viewing 3 replies - 1 through 3 (of 3 total)
  • Plugin Author nintechnet

    (@nintechnet)

    Hi,

    This is not a bug, but your plugin is adding CR/LF characters to the cookie.
    Go to “NinjaFirewal > Rules Editor”, and select rule 152 from the “Total rules enabled” menu and then click on “Disable it”.

    Thread Starter Vakula

    (@vakula)

    Thank you for the reply. If I disable this rule – it is bad for security of site?

    Plugin Author nintechnet

    (@nintechnet)

    It will not make your site unsafe.
    Your plugin adds a line feed character (%0a) inside the cookie value, which is a bit unusual, and the main goal of that rule is too block such behavior because it might be used for injecting code into HTTP headers.

Viewing 3 replies - 1 through 3 (of 3 total)
  • The topic ‘Bug with WP Favorite Posts plugin’ is closed to new replies.