Frank Corso
Forum Replies Created
-
Hey @brigadier272
Thanks for using Popup Maker. It’s been a few days since we heard from you, so we are closing this issue. Feel free to come back if you still need assistance.
Hey @flymaneger44
Thanks for using Popup Maker. It’s been a few days since we heard from you, so we are closing this issue. Feel free to come back if you still need assistance.
Hey @steph413
Thanks for using Popup Maker. It’s been a few days since we heard from you, so we are closing this issue. Feel free to come back if you still need assistance.
Hey @cybentixen,
Thanks for using Popup Maker. It’s been a few days since we heard from you, so we are closing this issue. Feel free to come back if you still need assistance.
Hey @mikkelcrunch,
Thanks for using Popup Maker. It’s been a few days since we heard from you, so we are closing this issue. Feel free to come back if you still need assistance.
Hey @dumel,
Thanks for using Popup Maker. It’s been a few days since we heard from you so we are going to go ahead and close this issue. Feel free to come back and reply if you still need assistance.
Hey @giampietro,
Thanks for using Popup Maker. We are going to go ahead and close this ticket for now but feel free to come back to us if you still need assistance.
Hey @colewebdev
Thanks for using Popup Maker and for reaching out concerning this compliance issue.
I did a bit of research yesterday to look into this and can now provide a bit more information.
Popup Maker, like most plugins should, uses the default JavaScript libraries that are built into WordPress itself. This is done so that plugins can be compatible with each other rather than sites having multiple different versions of any particular library. If each plugin handled its own popular libraries, then there would be many plugins and themes that would not be compatible with each other and could even cause issues on sites.
You can view the default JavaScript libraries, and their version, by looking at the documentation for the wp_enqueue_script here: https://developer.www.ads-software.com/reference/functions/wp_enqueue_script/#default-scripts-and-js-libraries-included-and-registered-by-wordpress
Now, the version of jQuery UI that is within WordPress itself is currently 1.11.4, which is less than 1.12 which is why you are getting the notice about the compliance issue.
Luckily, WordPress is already in the middle of a multi-release plan to update all aspects of jQuery with the first step taken in 5.5 to remove some of the older, no longer used systems. In WordPress 5.6, scheduled for release next month, the plan is to update many of the jQuery libraries, including jQuery UI, as discussed in their Trac ticket here: https://core.trac.www.ads-software.com/ticket/50564
Since Popup Maker uses the built-in functions and systems, it will automatically use the newer version as soon as it’s available in WordPress.
So, your site should be using the latest version as soon as WordPress 5.6 is released within the next month.
That said, I also dug into the specific issue with the version cited in your scan. This reported issue is that, in certain situations, jQuery UI below 1.12 could potentially be used by XSS attacks to inject scripts or HTML into the page.
Since Popup Maker only uses the jQuery UI within our own admin areas in only a handful of places, only in certain ways that do not affect any admin-capable functionalities, and use the proper security protocols, such as nonces when submitting any data and properly filtering data before sending data to the browser, there should not be any actual risk coming from Popup Maker for using jQuery UI 1.11.4.
Sorry for the lengthy response but I hope that explains the situation clearly enough. Feel free to let me know if you have any follow-up questions or concerns that I can answer.
Forum: Reviews
In reply to: [SiteAlert - Uptime, Speed, and Security Monitoring for WordPress] WP HealthHey @wrngwy
Thanks for choosing to use WP Health and for taking the time to leave this review! If you have a moment, can you let me know what improvements or new features you would like to see in future updates?
Hey @gregwallace15
Thanks for choosing to use WP Health and for taking the time to leave this review! If you have a moment, can you let me know what improvements or new features you would like to see in future updates?
Hey @raisaraisa
Thanks for choosing to use WP Health and for taking the time to leave this review! If you have a moment, can you let me know what improvements or new features you would like to see in future updates?
Hey @strarsis
Thanks for using Popup Maker! We actually already support the block editor but have it turned off by default due to some compatibility concerns we are still working through.
If you go to the “Settings” page in the “Popup Maker” menu, you can turn on the “Enable Block Editor Support”. This will allow you to use the block editor when creating your popups.
Hey @maxinegreaves
Thanks for choosing to use WP Health and for taking the time to leave this review! If you have a moment, can you let me know what improvements or new features you would like to see in future updates?
Hey @cinnamonlou
Thanks for choosing to use Popup Maker and for taking the time to leave this review! If you have a moment, can you let me know what improvements or new features you would like to see in future updates?
Hey @viva121
Thanks for choosing to use Popup Maker and for taking the time to leave this review! If you have a moment, can you let me know what improvements or new features you would like to see in future updates?