Chris
Forum Replies Created
-
PPS: Another backdoor I stumbled apon a few years ago, and wordfence could potentially warn about: In wordpress-settings “Membership – Anyone can register” was checked and “New User Default Role” was “Administrator”. I even think wordpress should prevent this setting in its core…
Hi Tim,
thanks for the good idea, weren’t that many, opening the ticket was definitely only for the others with the same problem ??
Chris ??
Forum: Fixing WordPress
In reply to: OpenBugBounty Security Vulnerability NotificationHi all,
I just looked into the reports (they become available after three months) (all are from ‘Cyber_India’ or ‘Cyber_World’).
On one site it was a “info.php”, on two others the reachable “xmlrpc.php” from wordpress. So no hard security issues, I think.
ChrisForum: Fixing WordPress
In reply to: OpenBugBounty Security Vulnerability Notification@mat8iou They write to webmaster@, admin@ and some other administrative addresses @your-domain. So you never had to subscribe. I have got some mails from them (all findings by cyber_india) and since all sites are up-to-date, have wordfence running and there are no findings from scans (I checked via detectify com and immuniweb com) I just wait for the three months to pass by and am curious, wheter the result will be interesting.
Forum: Plugins
In reply to: [Broken Link Checker] Relative Links in ShortcodesOK, sounds good to me ?? Thank you ??
Chris
Forum: Plugins
In reply to: [Broken Link Checker] Percent EncodingHi Nastia,
that sounds great, thank you ??
Cheers, Chris
Forum: Plugins
In reply to: [Broken Link Checker] Percent EncodingHi,
I use the wpbakery UI to add a button and there I use a link in https://…-form.
When I look at the revisions the shortcodes are already in percent-encoding (the text-editor is disabled).Cheers,
ChrisForum: Plugins
In reply to: [Broken Link Checker] Percent EncodingHi Predrag,
we are using wpbakery in a theme, that was built for us, so perhaps the elements have other names than usual.
Here an example of a “button”
[feg_button text=”Go on to” url=”url:https%3A%2F%2Fexample.com%2F|title:Here%20is%20a%20titel|target:%20_blank|” target_blank=”true” icon=”md-arrow-forward”]When I search the entire db for “https%3A%2F%2F” I find the links in wp_posts in the column post_content.
PS. I didn’t know of the forum rule, and since I am working with webdeveloper (ok, mostly companies, where I paid for support) on a daily basis (where it is absolutely usual to give them access to your site or dev-site) I find it a bit hard to understand – but thanks for the heads up ?? )
Cheers,
ChrisForum: Plugins
In reply to: [Broken Link Checker] Percent EncodingHi Jorge,
it is wpbakery page builder 6.0.5 which comes integrated into our theme. If you need the plugin-zip for testing, please let me know.
Chris
Forum: Plugins
In reply to: [Verify Email for Caldera Forms] 1.0.1 with caldera forms 1.4.9 doesn’t work@boybawang Thanks for the heads up ?? This should be manageable ??
Forum: Plugins
In reply to: [Download Manager] All Download Links lead to error 500Thank you very much. Works again. On the support-Site it looks as if you had a lot to do with 2.8.9. I’ll just keep the 2.8.3 and wait until the next update.