The Support Forums will be in read-only mode for a scheduled maintenance window on 01 September 2016 14:00 UTC - 20:00 UTC. More information.

[resolved] JS injection issue (2 posts)

  1. Lucas Balzer
    Posted 3 years ago #

    It appears that the plugin is hooking into content display (and excerpt display) to inject the following code:

    <script type="text/javascript">
    jQuery(document).ready(function($) {
    $('.add_one').append('<div class=\"guest_blank\">First Name: <input type=\"text\" name=\"guestfirst[]\" style=\"width:30%\" /> Last Name: <input type=\"text\" name=\"guestlast[]\" style=\"width:30%\"/><input type=\"hidden\" name=\"guestid[]\" value=\"0\" /></div>');});

    which means that the add_guests object is bound to several times if multiple posts are displayed on a page. The code should be added to the page using the wp_footer hook, and probably should be added only if the post type being displayed is an RSVPmaker post type.

    Just my thoughts -- the script is showing up everywhere in the HTML source code.


  2. davidfcarr
    Plugin Author

    Posted 3 years ago #

    The part about it showing up in posts/pages other than rsvpmaker events is fixed in the latest release. I caught that independently. But I see what you mean about it also appearing multiple times in an event listing. I will post a bug fix tonight. It will be version 2.7.3

Topic Closed

This topic has been closed to new replies.

About this Plugin

About this Topic