tharmann

I’d like to add something that may help on your end as well: we have 3 sites running your plugin and all 3 are on WP Engine. Only 2 of the 3 are experiencing the fatal error issue. Those 2 are both on version 2.8.2 of your plugin and 8.7.0 of WooCommerce. The 1 that isn’t experiencing the fatal error is on version 2.8.1 of your plugin and 8.6.1 of WooCommerce.

All 3 are running version version 6.4.3 of WordPress. Hope this helps!

Sure thing, here’s line 121 of wp-includes/plugin.php:

function add_filter( $hook_name, $callback, $priority = 10, $accepted_args = 1 ) {

And I’ll send over the site health info straight away.

Thanks!

For anyone else looking for a solution to this without hacking the plugin core files, I’ll post my solution here (this was intended for removing the capture for orders moving to the complete status and not processing, just FYI):

function dont_capture_stripe_charge_check_pay() {
	$tag = 'woocommerce_order_status_completed';
	$method_name = 'capture_payment';
	$class_name = 'WC_Stripe_Order_Handler';
	$priority = 10;
	global $wp_filter;
	if ( isset( $wp_filter[ $tag ] ) ) {
		if ( is_object( $wp_filter[ $tag ] ) && isset( $wp_filter[ $tag ]->callbacks ) ) {
			$fob = $wp_filter[ $tag ];
			$callbacks = &$wp_filter[ $tag ]->callbacks;
			if ( isset( $callbacks[ $priority ] ) ) {
				foreach ( (array) $callbacks[ $priority ] as $filter_id => $filter ) {
					if ( ! isset( $filter['function'] ) || ! is_array( $filter['function'] ) ) {
						continue;
					}
					if ( ! is_object( $filter['function'][0] ) ) {
						continue;
					}
					if ( $filter['function'][1] !== $method_name ) {
						continue;
					}
					if ( get_class( $filter['function'][0] ) === $class_name ) {
						if ( isset( $fob ) ) {
							$fob->remove_filter( $tag, $filter['function'], $priority );
						}
					}
				}
			}
		}
	}
}
add_action( 'init', 'dont_capture_stripe_charge_check_pay' );

I modified the code for a user-provided function called ‘remove_class_filter’ here: https://developer.www.ads-software.com/reference/functions/remove_action/

• This reply was modified 1 year, 8 months ago by tharmann.

I wonder if you’re running PHP 8.0 or greater? I just posted a support topic here because this plugin throws a fatal error when I try to go from PHP 7.4 -> 8.0

It runs fine in 7.4, though.

Oops, I posted this for the wrong plugin. I will repost on the toolbar plugin here: https://www.ads-software.com/plugins/accessibility-toolbar/

Thanks for that! I’ve just submitted a feature request there.

Yes it linked up successfully now – thanks!

Thanks! In the meantime I will let you know what I’ve tried so far (unsuccessfully) as far as troubleshooting:

1. Completely deactivate/delete the plugin and reinstall
2. Clear all cookies for the site in question
3. Remove access for muzaara in Google account: Third-party apps with account access
4. Disable a caching plugin we have active on the site

The strange thing is that we’ve had your plugin installed and working more or less fine. We were getting a memory exhaustion error on saving new feeds so we upped the memory to clear that error. We weren’t getting the error any more but upon saving the feed it still wasn’t populating a total number of products so I figured I’d uninstall/reinstall the plugin and that’s when we started getting this error.

Thanks again,
Tate

I was getting the same error as the OP with version 5.4.6 of the plugin. I downgraded to 5.4.2 and everything started working again. Maybe there’s a bug in this newest version?

Most likely it wasn’t working because of an error in the code of the plugin. The same happened to me when I installed and activated the first time, it wasn’t finding the CSS or JS to run the expandable menu. When I dug in I found that in the main plugin PHP file, around line 16 there was a constant defined like this:
define( "NETGO_NAVIGATION_URL", plugins_url() . '/netgo-expandable-collapsible-menu/include/');

But the plugin was being installed in a dir called: netgo-expandablecollapsible-menu

I changed the constant to point to the correct dir name and it works great now.

Thanks!

Yes, this is possible. I think this is a great plugin that has a lot of potential. You can pull in the title of the carousel by getting the post title in the shortcodes.php file here (around line 55 for me):

$carousel_caption = get_the_title( $post->ID );

And then you can call it in wherever you’d like. I put mine as an <h3> in the carousel_img <div> like this (about line 76):

<h3><?php echo $carousel_caption; ?></h3>

I’m thinking of forking this plugin and adding some of these options graphically in the back-end. I would have another that adds margin between each image in the carousel. Anyways, hope this helps.

I guess as a way to nail down which files have been infected you could use findstr on Windows. Just download your whole site and from cli CD into the root directory and run:

findstr /s /i visitorTracker *.*

You can filter by file type to check only PHP, js, CSS …etc:

findstr /s /i visitorTracker *.php
findstr /s /i visitorTracker *.js
findstr /s /i visitorTracker *.css

I have my site back up and running now from a backup, but I tested with this tool on the infected dir and found tons of infected js on the site. My active theme’s js was hit and a plugin called essentials grid was too. I’m curious to see how this originated…maybe we will have a report from Sucuri soon?

Yea, one of the reasons Wordfence has an option to scan image files as executables :/

I’m working through a site that was hacked with these same symptoms as well. It seems as though Wordfence doesn’t detect this one yet? Has anyone had better success with Sucuri?

I’m going to just restore from a backup – but for those who don’t have a backup I wonder what the best course of action is…

Whatever did this wrote the code in question in all of the header.php and footer.php of all of my installed themes files AND injected code in nearly every js file in the same themes.

Did you remember to escape the single quotes?

Try like this:

<?php echo do_shortcode('[all-nivoslider theme=\'light\' animation_speed=\'500\' pause_time=\'3000\']'); ?>

I’m using do_shortcode() with this plugin on 4.2 and it runs fine.

I’m having the same problem. In my case I just deleted the .schedule-default-X-running file and refreshed my backup page. The previously hung backup then showed up in the list and I was able to download it and restore. It looks like it was indeed a complete backup FWIW.

Tate