Title: anotherdave's Replies | WordPress.org --- # anotherdave [ ](https://wordpress.org/support/users/anotherdave/) * [Profile](https://wordpress.org/support/users/anotherdave/) * [Topics Started](https://wordpress.org/support/users/anotherdave/topics/) * [Replies Created](https://wordpress.org/support/users/anotherdave/replies/) * [Reviews Written](https://wordpress.org/support/users/anotherdave/reviews/) * [Topics Replied To](https://wordpress.org/support/users/anotherdave/replied-to/) * [Engagements](https://wordpress.org/support/users/anotherdave/engagements/) * [Favorites](https://wordpress.org/support/users/anotherdave/favorites/) Search replies: ## Forum Replies Created Viewing 15 replies - 1 through 15 (of 82 total) 1 [2](https://wordpress.org/support/users/anotherdave/replies/page/2/?output_format=md) [3](https://wordpress.org/support/users/anotherdave/replies/page/3/?output_format=md) [4](https://wordpress.org/support/users/anotherdave/replies/page/4/?output_format=md) [5](https://wordpress.org/support/users/anotherdave/replies/page/5/?output_format=md) [6](https://wordpress.org/support/users/anotherdave/replies/page/6/?output_format=md) [→](https://wordpress.org/support/users/anotherdave/replies/page/2/?output_format=md) * Forum: [Plugins](https://wordpress.org/support/forum/plugins-and-hacks/) In reply to: [[WooCommerce] Bug: Latest version of Woo disabling Save in Payment Gateway Changes on PHP 8.0+](https://wordpress.org/support/topic/bug-latest-version-of-woo-disabling-save-in-payment-gateway-changes-on-php-8-0/) * [anotherdave](https://wordpress.org/support/users/anotherdave/) * (@anotherdave) * [1 year, 3 months ago](https://wordpress.org/support/topic/bug-latest-version-of-woo-disabling-save-in-payment-gateway-changes-on-php-8-0/#post-18351258) * Please ignore my previous post. I found that AngellEye has an updater plugin to update their PayPal plugin / fix the PHP 8.x code issue. I would post the link, but I don’t think that’s allowed, and it’s easy enough to find on their website. * Forum: [Plugins](https://wordpress.org/support/forum/plugins-and-hacks/) In reply to: [[WooCommerce] Bug: Latest version of Woo disabling Save in Payment Gateway Changes on PHP 8.0+](https://wordpress.org/support/topic/bug-latest-version-of-woo-disabling-save-in-payment-gateway-changes-on-php-8-0/) * [anotherdave](https://wordpress.org/support/users/anotherdave/) * (@anotherdave) * [1 year, 3 months ago](https://wordpress.org/support/topic/bug-latest-version-of-woo-disabling-save-in-payment-gateway-changes-on-php-8-0/#post-18351172) * [@delaner](https://wordpress.org/support/users/delaner/) – If you don’t mind sharing, did you ever get a response from Angell Eye? Were they able to provide either an patched version, or perhaps some code lines to change? * Thanks very much for any update you’d be willing to share. * Forum: [Plugins](https://wordpress.org/support/forum/plugins-and-hacks/) In reply to: [[Social Media Share Buttons & Social Sharing Icons] Solid Security is reporting an issue](https://wordpress.org/support/topic/solid-security-is-reporting-an-issue/) * Thread Starter [anotherdave](https://wordpress.org/support/users/anotherdave/) * (@anotherdave) * [1 year, 11 months ago](https://wordpress.org/support/topic/solid-security-is-reporting-an-issue/#post-17883818) * Thank you for the reply. Yes, I do see on Patchstack that it’s low severity. I’ll tell my clients not to worry and that an update is in the works. * Kudos for the excellent support you provide here on the boards! I see that you are very responsive to user questions, which is really great. * Forum: [Plugins](https://wordpress.org/support/forum/plugins-and-hacks/) In reply to: [[Kadence Security – Password, Two Factor Authentication, and Brute Force Protection] Not Found error on multiple sites/hosts](https://wordpress.org/support/topic/not-found-error-on-multiple-sites-hosts/) * [anotherdave](https://wordpress.org/support/users/anotherdave/) * (@anotherdave) * [2 years, 3 months ago](https://wordpress.org/support/topic/not-found-error-on-multiple-sites-hosts/#post-17459651) * Hi [@shanedelierrr](https://wordpress.org/support/users/shanedelierrr/) * I can confirm that the issue is still happening as of even just a few minutes ago. * Additionally, on many sites the Security > Dashboard (e.g. [https://www.example.com/wp-admin/admin.php?page=itsec-dashboard](https://www.example.com/wp-admin/admin.php?page=itsec-dashboard)) now just loads a blank page. * All of the other functions, such as Security > Settings etc… all display their respective pages correctly, but the Security Dashboard just shows a blank page. * I manage hundreds of sites and this just started happening with the latest update. Tested with Solid Security Pro 8.4.0 * Forum: [Plugins](https://wordpress.org/support/forum/plugins-and-hacks/) In reply to: [[Custom Form Builder, Contact Forms, Payment Forms, Surveys, Polls] Security vulnerability.](https://wordpress.org/support/topic/security-vulnerability-114/) * [anotherdave](https://wordpress.org/support/users/anotherdave/) * (@anotherdave) * [2 years, 5 months ago](https://wordpress.org/support/topic/security-vulnerability-114/#post-17343163) * While I can’t speak on behalf of the OP, this should probably be marked as Resolved since the new POWR version 2.2.1 fixes the issue. * Forum: [Plugins](https://wordpress.org/support/forum/plugins-and-hacks/) In reply to: [[Custom Form Builder, Contact Forms, Payment Forms, Surveys, Polls] Security vulnerability.](https://wordpress.org/support/topic/security-vulnerability-114/) * [anotherdave](https://wordpress.org/support/users/anotherdave/) * (@anotherdave) * [2 years, 5 months ago](https://wordpress.org/support/topic/security-vulnerability-114/#post-17330323) * Good to see 2.2.1 is now in the repository and scans clean now. Thanks devs. * Forum: [Plugins](https://wordpress.org/support/forum/plugins-and-hacks/) In reply to: [[Custom Form Builder, Contact Forms, Payment Forms, Surveys, Polls] Security vulnerability.](https://wordpress.org/support/topic/security-vulnerability-114/) * [anotherdave](https://wordpress.org/support/users/anotherdave/) * (@anotherdave) * [2 years, 5 months ago](https://wordpress.org/support/topic/security-vulnerability-114/#post-17319711) * That is a bit confusing, since the version at [https://wordpress.org/plugins/powr-pack/](https://wordpress.org/plugins/powr-pack/) is still 2.1.0 and there appears to be no 2.2.1 update available at [https://wordpress.org/plugins/powr-pack/](https://wordpress.org/plugins/powr-pack/) nor with the WordPress Dashboard > Plugins section of websites running 2.1.0 * Is 2.2.1 only available via special means? * Forum: [Plugins](https://wordpress.org/support/forum/plugins-and-hacks/) In reply to: [[Custom Form Builder, Contact Forms, Payment Forms, Surveys, Polls] Security vulnerability.](https://wordpress.org/support/topic/security-vulnerability-114/) * [anotherdave](https://wordpress.org/support/users/anotherdave/) * (@anotherdave) * [2 years, 5 months ago](https://wordpress.org/support/topic/security-vulnerability-114/#post-17290321) * This is still an issue and being reported in email alerts from Solid Security( formerly iThemes Security) twice a day for some time now. I hope that [@powr](https://wordpress.org/support/users/powr/) will please take a look at this. It’s never fun to tell a client that they need to find a replacement plugin for one that they have relied on for so long. * Forum: [Plugins](https://wordpress.org/support/forum/plugins-and-hacks/) In reply to: [[Futurio Extra] Security Threat Cross Site Forgery Request per iThemes](https://wordpress.org/support/topic/security-threat-cross-site-forgery-request-per-ithemes/) * [anotherdave](https://wordpress.org/support/users/anotherdave/) * (@anotherdave) * [2 years, 10 months ago](https://wordpress.org/support/topic/security-threat-cross-site-forgery-request-per-ithemes/#post-16988633) * I was watching for 1.8.3 to be released also, as I could see it in their development log at [https://plugins.trac.wordpress.org/log/futurio-extra/](https://plugins.trac.wordpress.org/log/futurio-extra/), but iThemes Security and PatchStack are both reporting 1.8.3 as still having the CSRF. * I’m hoping that this is just a misnomer – [https://patchstack.com/database/vulnerability/futurio-extra/wordpress-futurio-extra-plugin-1-8-2-cross-site-request-forgery-csrf](https://patchstack.com/database/vulnerability/futurio-extra/wordpress-futurio-extra-plugin-1-8-2-cross-site-request-forgery-csrf)– but yeah, as long as it’s listed there then iThemes just keeps on sending me the email alerts about it. * Forum: [Plugins](https://wordpress.org/support/forum/plugins-and-hacks/) In reply to: [[Membership Plugin - Kadence Memberships] iThemes Security reports XSS vulnerability in this plugin](https://wordpress.org/support/topic/ithemes-security-reports-xss-vulnerability-in-this-plugin/) * Thread Starter [anotherdave](https://wordpress.org/support/users/anotherdave/) * (@anotherdave) * [2 years, 10 months ago](https://wordpress.org/support/topic/ithemes-security-reports-xss-vulnerability-in-this-plugin/#post-16964940) * Thanks so much for the update and releasing the patch. On August 7th iThemes finally stopped the warnings and marked the plugin as clean. * Forum: [Plugins](https://wordpress.org/support/forum/plugins-and-hacks/) In reply to: [[Membership Plugin - Kadence Memberships] iThemes Security reports XSS vulnerability in this plugin](https://wordpress.org/support/topic/ithemes-security-reports-xss-vulnerability-in-this-plugin/) * Thread Starter [anotherdave](https://wordpress.org/support/users/anotherdave/) * (@anotherdave) * [2 years, 10 months ago](https://wordpress.org/support/topic/ithemes-security-reports-xss-vulnerability-in-this-plugin/#post-16929963) * I must admit, it seems a bit ironic that iThemes Security basically promotes / is part of this plugin – [https://help.ithemes.com/hc/en-us/categories/360004039733-Restrict-Content-Pro](https://help.ithemes.com/hc/en-us/categories/360004039733-Restrict-Content-Pro)– and yet iThemes Security itself is still sending email alerts from it’s scans twice a day that this is Reflected XSS Vulnerable. * Forum: [Plugins](https://wordpress.org/support/forum/plugins-and-hacks/) In reply to: [[Membership Plugin - Kadence Memberships] iThemes Security reports XSS vulnerability in this plugin](https://wordpress.org/support/topic/ithemes-security-reports-xss-vulnerability-in-this-plugin/) * Thread Starter [anotherdave](https://wordpress.org/support/users/anotherdave/) * (@anotherdave) * [2 years, 10 months ago](https://wordpress.org/support/topic/ithemes-security-reports-xss-vulnerability-in-this-plugin/#post-16915082) * [@reedyseth](https://wordpress.org/support/users/reedyseth/) thanks for the response. We’re looking forward to the update and the security alert notices to stop. * Forum: [Plugins](https://wordpress.org/support/forum/plugins-and-hacks/) In reply to: [[Easy Appointments] Version 3.11.9 CSRF detected](https://wordpress.org/support/topic/version-3-11-9-csrf-detected/) * Thread Starter [anotherdave](https://wordpress.org/support/users/anotherdave/) * (@anotherdave) * [3 years ago](https://wordpress.org/support/topic/version-3-11-9-csrf-detected/#post-16758942) * Hi Nikola, * I’m sure you are extremely busy and I know these things take time, but was just wondering if there’s possibly an ETA on update for this maybe? * Thank you. * Forum: [Plugins](https://wordpress.org/support/forum/plugins-and-hacks/) In reply to: [[Easy Appointments] Version 3.11.9 CSRF detected](https://wordpress.org/support/topic/version-3-11-9-csrf-detected/) * Thread Starter [anotherdave](https://wordpress.org/support/users/anotherdave/) * (@anotherdave) * [3 years, 1 month ago](https://wordpress.org/support/topic/version-3-11-9-csrf-detected/#post-16716525) * Thanks for the quick response! I could see the rank of “medium” with 4.3 score and no exploits known, so obviously nothing to panic over, but really great to know you’ll be releasing a patch since I have a client who uses your plugin a lot. * Cheers, * Dave * Forum: [Plugins](https://wordpress.org/support/forum/plugins-and-hacks/) In reply to: [[OoohBoi Steroids for Elementor] Security vulnerability](https://wordpress.org/support/topic/security-vulnerability-56/) * [anotherdave](https://wordpress.org/support/users/anotherdave/) * (@anotherdave) * [3 years, 2 months ago](https://wordpress.org/support/topic/security-vulnerability-56/#post-16602731) * [@ooohboi](https://wordpress.org/support/users/ooohboi/) – You might find this helpful – [https://wpscan.com/vulnerability/ac74df9a-6fbf-4411-a501-97eba1ad1895](https://wpscan.com/vulnerability/ac74df9a-6fbf-4411-a501-97eba1ad1895) * Says current version 2.1.4 and lower are vulnerable and shows proof of concept code. Viewing 15 replies - 1 through 15 (of 82 total) 1 [2](https://wordpress.org/support/users/anotherdave/replies/page/2/?output_format=md) [3](https://wordpress.org/support/users/anotherdave/replies/page/3/?output_format=md) [4](https://wordpress.org/support/users/anotherdave/replies/page/4/?output_format=md) [5](https://wordpress.org/support/users/anotherdave/replies/page/5/?output_format=md) [6](https://wordpress.org/support/users/anotherdave/replies/page/6/?output_format=md) [→](https://wordpress.org/support/users/anotherdave/replies/page/2/?output_format=md)