The following vulnerability was found in the plugin and has to be addressed as soon as possible please.

Userback plugin <= 1.0.13 – Cross Site Request Forgery (CSRF) vulnerability.

Hi,
Does the plugin work with multi sites installations?

Because I installed it and enabled it for all my sites… When I go to a site, I enable it and enter my key, but it doesn’t show on the page… When I go back to my site’s Userback settings, it is disabled again (I.e. checkbox is not checked) and key is empty…

When I try to activate the plugin I get the error “The plugin does not have a valid header.”

I see the other support thread for this same issue and a comment that it can be installed in the child theme header. I have no idea how to go about that, but more importantly, why I should have to do that. As a WP plugin, it should just be installable. Can you get this fixed?

Thanks.

I’m trying to install this plugin on WordPress 5.4.2, and I get “The plugin does not have a valid header.” when trying to activate. It does this when downloading the ZIP from here or searching and adding from the plugin directory.

Any help is appreciated.

• This topic was modified 4 years, 3 months ago by successamp.