Title: A. Jones's Replies | WordPress.org --- # A. Jones [ ](https://wordpress.org/support/users/nomadcoder/) * [Profile](https://wordpress.org/support/users/nomadcoder/) * [Topics Started](https://wordpress.org/support/users/nomadcoder/topics/) * [Replies Created](https://wordpress.org/support/users/nomadcoder/replies/) * [Reviews Written](https://wordpress.org/support/users/nomadcoder/reviews/) * [Topics Replied To](https://wordpress.org/support/users/nomadcoder/replied-to/) * [Engagements](https://wordpress.org/support/users/nomadcoder/engagements/) * [Favorites](https://wordpress.org/support/users/nomadcoder/favorites/) Search replies: ## Forum Replies Created Viewing 15 replies - 1 through 15 (of 510 total) 1 [2](https://wordpress.org/support/users/nomadcoder/replies/page/2/?output_format=md) [3](https://wordpress.org/support/users/nomadcoder/replies/page/3/?output_format=md)… [32](https://wordpress.org/support/users/nomadcoder/replies/page/32/?output_format=md) [33](https://wordpress.org/support/users/nomadcoder/replies/page/33/?output_format=md) [34](https://wordpress.org/support/users/nomadcoder/replies/page/34/?output_format=md) [→](https://wordpress.org/support/users/nomadcoder/replies/page/2/?output_format=md) * Forum: [Plugins](https://wordpress.org/support/forum/plugins-and-hacks/) In reply to: [[Featured Image Thumbnail Grid] Version 7.10 – fatal error](https://wordpress.org/support/topic/version-7-10-fatal-error/) * Plugin Author [A. Jones](https://wordpress.org/support/users/nomadcoder/) * (@nomadcoder) * [9 months, 2 weeks ago](https://wordpress.org/support/topic/version-7-10-fatal-error/#post-18576597) * Thank you for reporting this issue. I need some additional information from you as I can not duplicate this. It’s possible that you have a conflict. * please install (but do not activate) the plugin. * [https://learn.wordpress.org/lesson/troubleshooting-your-site-plugin-and-theme-conflicts/](https://learn.wordpress.org/lesson/troubleshooting-your-site-plugin-and-theme-conflicts/) * Follow the instructions in the above link to test on your staging site or to enable troubleshooting mode. Do not do this on your live site. * In either case, while on your staging site or in troubleshooting mode, deactivate all of the plugins and activate this plugin. If it activates, try activating the other plugins one by one to identify the conflict. * If you still have an error when you activate the plugin, please let me know if it provides any information. - This reply was modified 9 months, 2 weeks ago by [A. Jones](https://wordpress.org/support/users/nomadcoder/). * Forum: [Plugins](https://wordpress.org/support/forum/plugins-and-hacks/) In reply to: [[(Simply) Guest Author Name] Name field unicode support](https://wordpress.org/support/topic/name-field-unicode-support/) * Plugin Author [A. Jones](https://wordpress.org/support/users/nomadcoder/) * (@nomadcoder) * [9 months, 4 weeks ago](https://wordpress.org/support/topic/name-field-unicode-support/#post-18563462) * Great! Thank you so much for bringing this to my attention. * Forum: [Plugins](https://wordpress.org/support/forum/plugins-and-hacks/) In reply to: [[(Simply) Guest Author Name] 4.36 is vulnerable to Cross Site Scripting (XSS)](https://wordpress.org/support/topic/4-36-is-vulnerable-to-cross-site-scripting-xss/) * Plugin Author [A. Jones](https://wordpress.org/support/users/nomadcoder/) * (@nomadcoder) * [9 months, 4 weeks ago](https://wordpress.org/support/topic/4-36-is-vulnerable-to-cross-site-scripting-xss/#post-18563195) * This should be resolved. * Forum: [Plugins](https://wordpress.org/support/forum/plugins-and-hacks/) In reply to: [[(Simply) Guest Author Name] (Simply) Guest Author Name Vulnerability](https://wordpress.org/support/topic/simply-guest-author-name-vulnerability/) * Plugin Author [A. Jones](https://wordpress.org/support/users/nomadcoder/) * (@nomadcoder) * [9 months, 4 weeks ago](https://wordpress.org/support/topic/simply-guest-author-name-vulnerability/#post-18563194) * This should be resolved. * Forum: [Plugins](https://wordpress.org/support/forum/plugins-and-hacks/) In reply to: [[(Simply) Guest Author Name] Name field unicode support](https://wordpress.org/support/topic/name-field-unicode-support/) * Plugin Author [A. Jones](https://wordpress.org/support/users/nomadcoder/) * (@nomadcoder) * [9 months, 4 weeks ago](https://wordpress.org/support/topic/name-field-unicode-support/#post-18563193) * Should be resolved in 4..41 * Forum: [Plugins](https://wordpress.org/support/forum/plugins-and-hacks/) In reply to: [[(Simply) Guest Author Name] Name field unicode support](https://wordpress.org/support/topic/name-field-unicode-support/) * Plugin Author [A. Jones](https://wordpress.org/support/users/nomadcoder/) * (@nomadcoder) * [9 months, 4 weeks ago](https://wordpress.org/support/topic/name-field-unicode-support/#post-18563189) * That’s not good! It looks like the security fix that I put in caused a new issue. * Forum: [Plugins](https://wordpress.org/support/forum/plugins-and-hacks/) In reply to: [[(Simply) Guest Author Name] 4.36 is vulnerable to Cross Site Scripting (XSS)](https://wordpress.org/support/topic/4-36-is-vulnerable-to-cross-site-scripting-xss/) * Plugin Author [A. Jones](https://wordpress.org/support/users/nomadcoder/) * (@nomadcoder) * [10 months ago](https://wordpress.org/support/topic/4-36-is-vulnerable-to-cross-site-scripting-xss/#post-18560288) * Hello, I was able to reach patchstack and see the very obscure security issue which … I have not been able to duplicate. I will attempt to patch it ASAP. * Forum: [Plugins](https://wordpress.org/support/forum/plugins-and-hacks/) In reply to: [[(Simply) Guest Author Name] (Simply) Guest Author Name Vulnerability](https://wordpress.org/support/topic/simply-guest-author-name-vulnerability/) * Plugin Author [A. Jones](https://wordpress.org/support/users/nomadcoder/) * (@nomadcoder) * [10 months ago](https://wordpress.org/support/topic/simply-guest-author-name-vulnerability/#post-18560287) * Hello, I was able to reach patchstack and see the very obscure security issue which … I have not been able to duplicate. I will attempt to patch it ASAP. * Forum: [Plugins](https://wordpress.org/support/forum/plugins-and-hacks/) In reply to: [[(Simply) Guest Author Name] (Simply) Guest Author Name Vulnerability](https://wordpress.org/support/topic/simply-guest-author-name-vulnerability/) * Plugin Author [A. Jones](https://wordpress.org/support/users/nomadcoder/) * (@nomadcoder) * [10 months ago](https://wordpress.org/support/topic/simply-guest-author-name-vulnerability/#post-18554997) * Update: I was able to reach out to patchstack. They say that they have attempted to reach. me via slack and via our contact page (which was broken). There is no message in slack. I have reached out to them again, fixed the contact page and will keep looking for an update in slack [@nomadcoder](https://wordpress.org/support/users/nomadcoder/) * Forum: [Plugins](https://wordpress.org/support/forum/plugins-and-hacks/) In reply to: [[(Simply) Guest Author Name] (Simply) Guest Author Name Vulnerability](https://wordpress.org/support/topic/simply-guest-author-name-vulnerability/) * Plugin Author [A. Jones](https://wordpress.org/support/users/nomadcoder/) * (@nomadcoder) * [10 months, 1 week ago](https://wordpress.org/support/topic/simply-guest-author-name-vulnerability/#post-18551209) * This seems like an excellent plan. I have tried to exploit almost every possible input field and have not been able to cause any cross scripting errors so whatever this is, it’s pretty obscure. I am going to try to reach out to patch stack today to see if I can find out what the issue is before I send out an update. * Forum: [Plugins](https://wordpress.org/support/forum/plugins-and-hacks/) In reply to: [[(Simply) Guest Author Name] (Simply) Guest Author Name Vulnerability](https://wordpress.org/support/topic/simply-guest-author-name-vulnerability/) * Plugin Author [A. Jones](https://wordpress.org/support/users/nomadcoder/) * (@nomadcoder) * [10 months, 1 week ago](https://wordpress.org/support/topic/simply-guest-author-name-vulnerability/#post-18549606) * Thank you. I am still waiting for the expected email from patchstack telling me how to duplicate the issue. I will keep testing and I can guess as to the cause and perhaps fix something but it may not be the something that I need to fix. I hope that makes sense. Wordfence has this listed as medium security and patchstack has it listed as low severity. Either way, there is no risk to you from your users and this will be resolved as soon as possible. * Forum: [Plugins](https://wordpress.org/support/forum/plugins-and-hacks/) In reply to: [[(Simply) Guest Author Name] 4.36 is vulnerable to Cross Site Scripting (XSS)](https://wordpress.org/support/topic/4-36-is-vulnerable-to-cross-site-scripting-xss/) * Plugin Author [A. Jones](https://wordpress.org/support/users/nomadcoder/) * (@nomadcoder) * [10 months, 1 week ago](https://wordpress.org/support/topic/4-36-is-vulnerable-to-cross-site-scripting-xss/#post-18546581) * Just to follow up, my testing has not shown what the issue is. WPScan does not reflect the issue and I do not have the ability to test it without specifics. Again, this is a low risk issue and will be fixed as soon as I get the report. * Forum: [Plugins](https://wordpress.org/support/forum/plugins-and-hacks/) In reply to: [[(Simply) Guest Author Name] (Simply) Guest Author Name Vulnerability](https://wordpress.org/support/topic/simply-guest-author-name-vulnerability/) * Plugin Author [A. Jones](https://wordpress.org/support/users/nomadcoder/) * (@nomadcoder) * [10 months, 1 week ago](https://wordpress.org/support/topic/simply-guest-author-name-vulnerability/#post-18546578) * Just to follow up, my testing has not shown what the issue is. WPScan does not reflect the issue and I do not have the ability to test it. Again, this is a low risk issue and will be fixed as soon as I get the report. * Forum: [Plugins](https://wordpress.org/support/forum/plugins-and-hacks/) In reply to: [[(Simply) Guest Author Name] (Simply) Guest Author Name Vulnerability](https://wordpress.org/support/topic/simply-guest-author-name-vulnerability/) * Plugin Author [A. Jones](https://wordpress.org/support/users/nomadcoder/) * (@nomadcoder) * [10 months, 1 week ago](https://wordpress.org/support/topic/simply-guest-author-name-vulnerability/#post-18544423) * Hello, * Thank you for pointing this out. I checked the database and I do see that there was an issue reported. The issue has not propagated yet and I have not yet received the email from them that would allow me to duplicate the issue and report to them that it has been fixed. (Therefore, I know that there is an issue but do not know what the issue is ). * I am investigating and believe that all of my output properly escaped. I have not been able to determine what the issue is and am waiting for a report. If you have details beyond “cross script”, please let me know. The issue would almost 100% be on the admin side and is reported to be “low risk”. * You indicated that there is more than one issue. I only see one issue reported. If you have details that would enable me to duplicate them, I would appreciate it. * Forum: [Plugins](https://wordpress.org/support/forum/plugins-and-hacks/) In reply to: [[(Simply) Guest Author Name] 4.36 is vulnerable to Cross Site Scripting (XSS)](https://wordpress.org/support/topic/4-36-is-vulnerable-to-cross-site-scripting-xss/) * Plugin Author [A. Jones](https://wordpress.org/support/users/nomadcoder/) * (@nomadcoder) * [10 months, 1 week ago](https://wordpress.org/support/topic/4-36-is-vulnerable-to-cross-site-scripting-xss/#post-18542783) * Patchstack hasn’t posted any details yet. Did they give you any details? It doesn’t look like a high priority issue and as far as I know, everything is escaped properly. I will probably have to wait for their email unless they gave you specific details. Viewing 15 replies - 1 through 15 (of 510 total) 1 [2](https://wordpress.org/support/users/nomadcoder/replies/page/2/?output_format=md) [3](https://wordpress.org/support/users/nomadcoder/replies/page/3/?output_format=md)… [32](https://wordpress.org/support/users/nomadcoder/replies/page/32/?output_format=md) [33](https://wordpress.org/support/users/nomadcoder/replies/page/33/?output_format=md) [34](https://wordpress.org/support/users/nomadcoder/replies/page/34/?output_format=md) [→](https://wordpress.org/support/users/nomadcoder/replies/page/2/?output_format=md)