+ES

HI+

Thank you for the quick response! I did update to v 3.8.2 and this issue is fixed – hooray! Have a great weekend!

Thanks!

Hi, @curtisbrownlee, it looks like your team may have removed a class that you used to use for that section of code to show up properly on the front-end. Please update us on your findings and when to expect the corrected & working version?

Thanks, +ES

Hi+

Thank you for all of the replies. I appreciate the work-around, but would prefer the Plugin Author to fix the issue ASAP as I manage a lot of websites (besides my own) that I use this plugin on. I do not want to have to force a resolution for all of those websites if there is going to be a fix put out in the next update. Please do let us know as soon as possible (in this thread) when that update is out.

Thanks, +ES

Okay, since the plugin author is not responding and I could not wait any longer, I did a deep dive into this issue. I discovered that when the plugin was updated to v2.6.1 the following item was automatically reset to a different ‘default’ setting and when I changed that, this plugin worked.

go to User Access > Edit access level > look for “settings” with a gear on the right side of the page (below the name of the access level) > click that > under “meet all of these conditions” > “Page types” > change the default setting from ‘archive pages’ to “all” > click “save” …that is a setting that is not mentioned in the set-up or shown in the screenshots, but it was changed during the update to “archive pages” and when I set it to ‘all’ then this plugin works as expected.

Hi+

Thank you for the quick response and clarifications! I will reach out to them about this. Please consider this issue ‘resolved’…Have a great day!

Hi+

Thank you for the super quick response. We have an eCommerce site and your redirection ONLY works if people login via the *sitename*/wp-login.php Page, and does not work if people login via the *sitename*/my-account/ Page (which is the Woocommerce Login Page)….. Since we are using this plugin to redirect certain logged in clients and they will use the /my-account/ login page to log into their accounts (and not the /wp-login.php page) we really need this redirection to work on BOTH types of login pages. Is that possible? If so, please tell me the steps to make it happen.

Thank you for your time and efforts on this. +ES

Hi+

Thank you for the super quick response and suggestions! I disabled the JS, but kept the CSS as that is why I’m using this plugin and the forms are all there – yay! Please consider this ticket resolved and have a great day!

Thanks!

Hi+ Thank you for the super-quick response and clarifications! Have a great day!

Hi+

Thank you so much! I appreciate your time & efforts on this!

Hi, @jawada, thank you for the detailed response. Do you have an ETA for when this plugin will be secured again? Please advise.

Hi, @boblindner, thank you for the perspective and clarifications. I do understand that this specific issue that WordFence has flagged may not be a “big concern” for you (or others), my concern is that this is not the 1st issue that WF flagged for this plugin. The previous issue (in the link I provided for my other post) was fixed but now ANOTHER problem is being flagged by WF. And, my main concern is that I was actually about to upgrade this Free Plugin to one of their Paid Extensions (which is built on this free version), but I do not have confidence at this point in time with doing a paid upgrade from a free plugin that is compromised.

The continued and/or additional compromises that keep being found by WF is what I am concerned about, specifically (and not this specific issue in this particular instance). If the Plugin Author(s) are not able to maintain a secure plugin, then I will have to not upgrade to their Paid Extension and remove this Free version – however, I am trying to be patient with them and have been waiting for over a week for a response on this specific thread….I do want them to fix this issue (and maintain a secure plugin) so that I can have peace-of-mind that when I pay for the Paid Extension, it will also be maintained and secure. Right now, my confidence is waning…

Hooray! I just updated! Thank you very, very much! ??

Hi+

Glad to hear that! Please let me know when the update is available.

Thanks!

Hi+

I am also getting that same Critical Alert about this plugin. Please advise when we can expect a patched version to be released?

Thanks!

Fantastic! Thanks!