zuda

Did it break one of your tools? We prefer the style we use, which is also widely used. If it is breaking tools used by large organizations, then we will revist the matter.

We would like to make it clear that we adopted this plugin with security flaws and fixed them, we didn’t make the security holes, we patched them.

We made it so logged in users and logged out users will now be affected by the redirects. The reason this was hard to diagnose is that you were never supposed to have been able to see them when you were logged in. The only reason it worked that way for so long was due to a security flaw that we patched. Now that we tightened up the security, since we are a cyber security firm we made it also possible to safely redirect while logged out or logged in.

We would like to discuss this in detail with you. We are certainly concerned about the https downgrading to http. The external link issue is also a problem that we want solved. Any more details you would like to provide us would be helpful.

1.5.1 may have solved this issue. Please let us know if it did.

Hi awestbha,
Sorry for the inconvenience. We released an unscheduled patch to fix this issue. Thank you for reporting this edge-case. Everything should work fine now.

• This reply was modified 7 years, 4 months ago by zuda. Reason: Fixing a typo
• This reply was modified 7 years, 4 months ago by zuda.
• This reply was modified 7 years, 4 months ago by zuda.