Andrew M

As was I. Especially concerned as the text in the vulnerability report saying:

“2023-02-08 – vendor (YIKES) notified about the vulnerability 2023-05-11 – we tried to notify the vendor (YIKES) again and got the answer that the plugin/business is sold to another company (EH Dev Shop). We notified the new vendor the same day. 2023-05-17 – still no reply from the vendor (EH Dev Shop).”

I would like to understand (like I suspect others would) whether this plugin is still being actively maintained or has now been abandoned — so I can make decisions on whether to migrate to alternatives.

Please can someone at the developers at least confirm that work on a new update to address this vulnerability is being done.

The announcement about the plugins is here https://www.yikesinc.com/eh-dev-shop-acquires-yikes-plugins and the new developer’s website showing the plugins in their catalog is here https://www.evan-herman.com/wordpress/plugins/

• This reply was modified 1 year, 10 months ago by Andrew M.
• This reply was modified 1 year, 10 months ago by Andrew M.

Same as above – fails after this message

I had also fed back the issue to the wayfarer team. I will try to add this additional info for them, so that they also have all the info.

OK, was not aware of the experiments and had not been using any.

Have tested as requested and found that this problem is being caused by the Landing Pages experimental feature – with all others active and this one Inactive, the non-Elementor pages are working fine in PHP 8.1.12. As soon as I switch this feature back on, even if all the others are off, then non-Elementor pages break again immediately.

As I want to block large IPv6 ranges, can you also use the CIDR format e.g. 2100::/8 for 2100:: to 21ff:ffff:ffff:ffff:ffff:ffff:ffff:fff or for smaller ranges e.g. 2001:4d48:cd21:8500::/56 for 2001:4d48:cd21:8500:: to 2001:4d48:cd21:85ff:ffff:ffff:ffff:ffff?

If not CIDR, can you provide examples of how to map CIDR addresses to the format that can be used in the plugin settings.

OR would 2100::/8 be 2100/21ff:0/ffff:0/ffff:0/ffff:0/ffff:0/ffff:0/ffff:0/ffff

Thanks

• This reply was modified 2 years, 7 months ago by Andrew M.

Thanks. Deleted and reinstalled the plugin (it was already on the sub-site) and when going through setup complains that “working but some issues” on REST API, specifically:

URL: /modules/index.php/wp-json/
GET POST rest_no_route: No route was found matching the URL and request method.
No route was found matching the URL and request method. (rest_no_route)
Your REST API is returning a 404 page. This is almost certainly an external plugin or server configuration issue.

whilset the other two tests work OK.

After this, the newly created redirects seem to work, but older ones from /modules/…. to /modules/index.php/…. are still coming back with an error.

Still confused about what is happening with this – is the REST API error message anything that points to a specific issue?

Thanks – played with it a bit myself using your suggestions and have managed to get it looking better now.

Thanks – I’ll have a look at this in the coming days.

Ideal would be bottom line of checkbox lining up to natural bottom of first line (i.e. Bottom of e.g. A) but top lining up would certainly be better than it is now.