I received a notification today about a detected vulnerability in this plugin. For now, I’ve disabled the plugin. Please verify the validity of the vulnerability. Since I use this plugin for my own security, I’d like to re-enable it, if it is itself secure.

Subject: Alert: Vulnerabilities detected on your application

Email body:

We are writing to inform you about a critical matter related to your website’s security. Our vulnerability detection system (powered by patchstack.com) has detected potential security vulnerabilities in your application that require immediate attention.

We strongly recommend implementing the following steps immediately:

Take a backup of your application.
Update the identified core, theme, or plugin (listed below) to a newer version
If an update is unavailable for a theme or plugin component, we recommend deleting it and replacing it with an alternative.

Here are the detected vulnerabilities in your application:
WordPress Customer Email Verification for WooCommerce plugin <= 2.8.10 – SQL Injection vulnerability

I get verification link in inbox but it is redirecting me to wp-admin page instead of my-account page. Please help to fix the issue. it should redirect to my account page instead of wp-admin page.

Dear Support Team,

I am experiencing an issue where the entire site page refreshes after users log in or register, which results in improper or unexpected outcomes. This problem is occurring frequently across the site. Please assist in resolving this issue as soon as possible.

Thank you for your prompt attention to this matter.

After the user verifies their email address, I would like to re-direct them to set their new password. How can I achieve this?

After these steps, I would like to send them an email with their credentials and a link where they can access their account information.

Version 2.6.1: Verification email is sent automatically after entering email at the checkout page

I want to disable this feature. Is it possible to display the text Send verification email instead of automatically sending the email?

• When entering an incomplete email “[email protected]” or “[email protected]”, the email has been sent and an error message is sent to the host email

Hello,

Can I set skipping verification when admin add users in the wp backend?
If yes, how?

Thank you.

Version 2.6.1: Verification email is sent automatically after entering email at the checkout page

I want to disable this feature. Is it possible to display the text Send verification email instead of automatically sending the email?

How to add a Email Verification link in the woocommerce new member notification letter? Is there a sample ?

We have PHP version 8.2.19 and 1024 MB memory, but when we go to Users and try filter to show unverified users, we get a fatal error saying: “PHP message: PHP Fatal error: Allowed memory size of 1073741824 bytes exhausted”

Hello, we are testing and evaluating the purchase of your plugin, in our tests we observed that, once the user returns to the site (after clicking the verification link), they find the cart empty.

We need the customer to find the contents of their cart again after validation.

Is this possible with your plugin? Is there any setting that controls this situation?

I tried everything from the dev issue Forum, but nothing made the messages appear to the users.

• The message asking them to activate the account after registering
• Message asking them to activate the account when trying to log in

I tried Authenticate Filter on all options, Force Redirect with and without custom redirect (to pages that show messages), Prevent login after register, Custom logout functions. I’m not keeping caches because this is a staging server. The message is not hidden with CSS

I can see the woocommerce messages (woocommerce-notices-wrapper div) are being printed empty when there should be errors (it shows errors when not entering a valid account). I even printed a second [shop_messages] shortcode to see if it was a lack of message on the template, but it just duplicated the errors from the form (while still not showing messages from this plugin).

I have a custom template for the form-login.php that is being used as a shortcode block(the woocommerce default [woocommerce_my_account] in a guttenberg page. It shows both the Login and the Register forms in the same page.

Please share some light.

1. Is there a hook I might be using that overwrites yours?
2. Does the message doesn’t show because the page is refreshed a couple of times? (Login + message, logout + message gone)
3. Do I need to print any code on my TPL in order for the messages to appear?

Thanks

Hi,
I updated yesterday, since than new registered customer see below message.
Activation failed, please contact our administrator. You can resend the email with verification link by clicking here.

Is there any way to set a cooldown after the verification email is sent?

To prevent spam of verification link being re-sent multiple times within a short period of time.

Would be better if by default, users would need to wait at least 2 mins before they can re-send the verification email, and then it gradually increases, from 2 to 5 to 10 mins and so on, the more they try to re-send it in the same day, the cooldown gets longer.

Hi, I keep getting this error on my checkout page after I place an order for my free product priced Rs 0 – “Sorry your session has expired. Return to shop”. And to avoid this message, if I disable the “Prevent auth cookies from being sent to unverified users” and also disable the “Prevent login notice” in the section entitled “Prevent login after checkout”, then the error message disappears but the checkedout product is easily available, as it is redirected to the MY Account section which is automatically logged in after checkout, even without activating the link.

My only problem is that I want to disable the display of the ERROR MESSAGE “Sorry your session has expired. Return to shop”. But it keeps displaying. How to disable this error message and allow access to the “My Account” Dashboard only after activating the link.

May I know how to change the sender email? Because it shows [email protected] as the sender email but what I set is [email protected]. This is only happen when sending the email verification. (https://snipboard.io/qhwIE6.jpg).

I received an email from WordPress indicating an error with your plugin. Here is the automated email WordPress sent me:

Howdy!

WordPress has a built-in feature that detects when a plugin or theme causes a fatal error on your site, and notifies you with this automated email.

In this case, WordPress caught an error with one of your plugins, emails-verification-for-woocommerce.

First, visit your website (https://www.mcmo.is/) and check for any visible issues. Next, visit the page where the error was caught (https://www.mcmo.is/wp-login.php) and check for any visible issues.

Please contact your host for assistance with investigating this issue further.

If your site appears broken and you can't access your dashboard normally, WordPress now has a special "recovery mode". This lets you safely login to your dashboard and investigate further.

https://www.mcmo.is/wp-login.php?action=enter_recovery_mode&rm_token=AW9qaHBPBVDoRoYSA3UfFn&rm_key=HYt5qqOdIRnG8zAPpOfFZb

To keep your site safe, this link will expire in 1 day. Don't worry about that, though: a new link will be emailed to you if the error occurs again after it expires.

When seeking help with this issue, you may be asked for some of the following information:
OS version: Ubuntu Server 22.04.4 LTS for Raspberry Pi 4 (aarch64)
Nginx (Version 1.25.4 Mainline)
WordPress version 6.4.3
Active theme: H-Code (version 2.9)
Current plugin: ?(version 2.7.3)
PHP version 8.1.2-1ubuntu2.14

Error Details
=============
An error of type E_ERROR was caused in line 183 of the file /var/www/mcmo.is/wp-content/plugins/emails-verification-for-woocommerce/email-verification-for-woocommerce.php. Error message: Uncaught Error: Failed opening required '/var/www/mcmo.is/wp-content/plugins/emails-verification-for-woocommerce/includes/class-alg-wc-ev-core.php'?(include_path='.:/usr/share/php') in /var/www/mcmo.is/wp-content/plugins/emails-verification-for-woocommerce/email-verification-for-woocommerce.php:183
Stack trace:
#0 /var/www/mcmo.is/wp-content/plugins/emails-verification-for-woocommerce/email-verification-for-woocommerce.php(120): Alg_WC_Email_Verification->includes()
#1 /var/www/mcmo.is/wp-content/plugins/emails-verification-for-woocommerce/email-verification-for-woocommerce.php(309): Alg_WC_Email_Verification->init()
#2 /var/www/mcmo.is/wp-includes/class-wp-hook.php(324): {closure}()
#3 /var/www/mcmo.is/wp-includes/class-wp-hook.php(348): WP_Hook->apply_filters()
#4 /var/www/mcmo.is/wp-includes/plugin.php(517): WP_Hook->do_action()
#5 /var/www/mcmo.is/wp-settings.php(506): do_action()
#6 /var/www/mcmo.is/wp-config.php(197): require_once('...')
#7 /var/www/mcmo.is/wp-load.php(50): require_once('...')
#8 /var/www/mcmo.is/wp-login.php(12): require('...')
#9 {main}
?thrown

Could someone please explain to me what is going on, how I can fix this, and if/when you will be issuing a fix for this in an update? Thanks for any help.

Hello,

I tried to translated the plugin, but I can’t find and translated text in checkout page > (under)email fields.
https://ibb.co/PxL0WnZ
I tried to use javascript, added the javscript in footer, to replace text, but still no luck.

(function($) {
$(document).ready(function(){
$(“#alg_wc_ev_send_verify”).text(“new text XXXXX”);
$(“#alg_wc_ev_resend_verify”).text(“new text XXXXX”);
})
})(jQuery);

Would you take a look and check whether the javascript is correct or not?
Would you add those tex to language file(pot) in the near future?

Thank you.

• This topic was modified 7 months, 3 weeks ago by kamhang.

Hi,
As per stated in the title above, I’m unable to login my test account due to wrong password (which supposed to be the right one). I reset the password for this test account twice, directly send password reset link in User list and by forgetting password. I even tried login using username instead of email address. Still receiving ‘failed login attempts’ notice until I deactivate this plugin.

Currently on WP 6.4.3, woodmart theme, using plugins:
Woocommerce
BBQ Firewall
WP Super Cache
Wordfence
Limit Login Attempts Reloaded
Login No Captcha reCAPTCHA (Google)

Really hope I didn’t have to encounter this issue to combat against unverified/spam accounts. Otherwise this plugin would be perfect!

• This topic was modified 8 months ago by danoobdev.

Hi,

we’re using Email Verification for WooCommerce Pro and we’re experiencing issues with new customer registrations. Customers are not receiving the email address verification email and/or being frustrated in a minutes long loop with the registration/login/password reset pages in combination with all kinds of errors. The UX can be seen in Hotjar, but for some reason we cannot replicate the issue.. and it’s happening a lot.

can you please advise how we can solve this issue?

Best Stefan

We have a pro version of the plugin, I have tried reaching support on email, but no response yet.

We are a marketplace using woocommerce. We have noticed that when a new user signs up using Google Onetap they also receive an email for account activation in their inbox which is not required, can you please guide me how we can disable sending account activation email for Onetap signup.

We only want this activation email to be sent when a new user signs-up by filling the signup form.

Hi, i’m trying to create a custom registration. I want to send a confirmation link after that the user has been registered in the database. I tried to search online and in the documentation but i didn’t find anything. Is there any way to achieve this?

Very good and fast support system! keep up the good work

• This topic was modified 8 months, 2 weeks ago by rateb2k.

Hi i have this question.

If setting daily the user is not verified and automatically deletes it.

What would be the exact setting?

This link IMG https://ibb.co/ykpDvvs

Hello,

I want to know how to set email templates for a new user registration.

Hello, I am using the free version of your plugin.

The default registration to our site is in the “Customer” role.

However, customers who purchase products must be automatically approved.

This way, users who register to our site without purchasing a product can only pass the verification stage.

Can we configure your plugin to automatically verify customers who have purchased products?

hello,

I am using the Free version and want to prevent visitors placing an order until they have created a user account and the admin has manually approved the account. Can this be done with your plugin?

After checkout order received page doesnt load
and the urls get parameeter like: vhttps://www.mountemart.com/checkout/order-received/48803/?key=wc_order_H8n9jmTZPBL79&alg_wc_ev_activate_account_message=111

Hello, whenever we enter email id on register my-account form, it resets the cart and customer loose all its items in the cart. I tried to resolve the issue by enabling “Custom logout function” option available on the Advanced section, as mentioned here. But the issue is still there. Kindly assist further.

Thank You.

I am writing to bring to your attention a critical issue we are currently facing on our WordPress website regarding email verification.

The problem is that neither users nor administrators are receiving the email verification links. This is affecting the user registration process and is a significant hurdle for our site’s functionality.

When a new user registers on our site, the expected email verification link is not being sent to their registered email address.

Similarly, administrators are also not receiving any email verification links when they attempt to perform actions that require verification.

We have checked spam/junk folders, and the emails are not there.

Our WordPress installation, plugins, and themes are up to date.

We have reviewed the email settings in the WordPress admin area, and they appear to be configured correctly.

We kindly request your urgent assistance in resolving this matter.

Please check the below image

• This topic was modified 10 months, 1 week ago by jagrutiparihar1712.

Hello, I’ve done everything to improve email deliverability and I’ve tested it with mxtoolbox and it seems everything is perfect and the verification email no longer is flagged as Spam based on my testing with alternate account.

But here’s the main issue now:-

1. If a user creates their account at WC Checkout page, their order is placed and order invoice sent immediately. Even though the email has not been verified and they’re still on the same page with the message that their account is registered but has to be verified.
2. If user clicks “Send Verify Email” at WC Checkout page, it says “Email id verified !” even though it is not verified and no verification link is re-sent.
3. After Login/Logout, the user is redirected to the home page even though I’ve set redirection to the My-Account page.