I will def ping back here when I hear back and its live again.
Hoping it was just a weekend thing and they get to it as the weekdays begin now.
that other plugin is unrelated and was clearly not maintained. I still maintain mine, I just missed the notice emails before it was temporarily closed unfortunately.
the plugins team has said they will reopen once they’ve reviewed the update, as soon as possible.
and we are back!
thanks for your support and patience, everyone.
Thank you very much the great support!
Tnx @benbodhi, just updated 40 sites 🙂
Thanks for the continued support and patience through this last couple of weeks!
I received another email from Wordfence 3+ hours ago.
“SVG Support <= 2.5.6 – Authenticated (Author+) Cross-Site Scripting via SVG” on wordfence.com
-
This reply was modified 1 month, 1 week ago by flyzilla.
-
This reply was modified 1 month, 1 week ago by flyzilla.
Looking into this and will have another update shortly that also addresses some other php issues.
I had the same mail from Wordfence.
yeah I think anyone with both SVG support and wordfence installed, with email notifications on would get it.
if you trust your site users with author permissions or above, there won’t be a problem. But this will be addressed asap.
Andy
(@weibpopmed2020)
I’ve been working on a more extensive update that hopefully addresses their warning. A couple more things to do and I’ll push it out.
this should be fully addressed now.
if any further issues, please start a new topic specifically for it.