where has TDO Mini Forms gone?

There was a problem with it. We contacted the author who said there will be a fix but gave us no date for that.

It’s probably a good thing I didn’t give you date because I still haven’t fix it. I guess I better get round to it.

If you have it already installed and are worried about it – I did a blog post here: https://thedeadone.net/blog/where-has-tdo-mini-forms-plugin-gone/

****How can we recover author information on posts submitted using TDO Mini forms?

We recently found that all posts submitted using TDO Mini Forms are missing the author information. Whereas the posts used to display “By <author name>” and optionally the <author email>, the post authors have default to admin. New posts that were submitted using the TDO Mini Form have “tdomf_<number>” as the author instead of the author information.

Our site depends heavily on TDO Mini forms and wish we were informed of the exploit and other problems or at least were given information about recovering data submitted using the form.

Would you please tell us how we can fix this problem asap? We have angry readers waiting for their posts to be published!

FYI I posted on my blog as soon as I was informed about the exploit. That feed gets pulled into the plugin’s admin page. Not sure how I could inform anyone earlier then I knew.

We recently found that all posts submitted using TDO Mini Forms are missing the author information. Whereas the posts used to display “By <author name>” and optionally the <author email>, the post authors have default to admin. New posts that were submitted using the TDO Mini Form have “tdomf_<number>” as the author instead of the author information.

That sounds like the posts were submitted from not logged in users, i.e. anonymous. The “tdomf_<number>” is a default author created to allow anonymous posting because every post needs to be associated with an a user. However, the info is not lost. The name and email is in the “Content Fields” (which should be called Author Email, Author Name and Author Website). So you can use the WordPress content fields API to display the name on your theme pretty easily.

Just for the record, you should be fairly safe to continue using the plugin if you don’t have uploads. And even if you do have uploads, your webserver configuration would have to allow jpgs to be executed as scripts to have an effect.

wondering what the Command to execute on file after file uploaded successfully to make an image the feature image.

can you help?

Is there anything out there that does the same that TDO Mini Forms did? I need a platform that will allow a reader to add a new post (that will go as ‘pending’) and not just respond to a post.