templateinvaders
Forum Replies Created
-
Forum: Plugins
In reply to: [TI WooCommerce Wishlist] Security vulnerabilityWe have updated the plugin to version 2.11.1, which includes fixes for the mentioned issue. We strongly recommend updating to the latest version!
Forum: Plugins
In reply to: [TI WooCommerce Wishlist] Security vulnerabilityWe have updated the plugin to version 2.11.1, which includes fixes for the mentioned issue. We strongly recommend updating to the latest version!
We have updated the plugin to version 2.11.1, which includes fixes for deprecated warnings in PHP. We strongly recommend updating to the latest version!
Forum: Plugins
In reply to: [TI WooCommerce Wishlist] Security vulnerability flagged up by WordfenceHi @carterkay and @nixatan
The reported code is only executed if the third-party plugin WC Fields Factory is installed and the integration with it is enabled in our plugin settings.
If you’re not using this integration, the relevant code is never called, and there is no need to delete or modify any plugin files manually.
We will include a fix for this case in the upcoming update to avoid further confusion.Forum: Plugins
In reply to: [TI WooCommerce Wishlist] Security vulnerabilityThe reported code is only executed if the third-party plugin WC Fields Factory is installed and the integration with it is enabled in our plugin settings.
If you’re not using this integration, the relevant code is never called, and there is no need to delete or modify any plugin files manually.
We will include a fix for this case in the upcoming update to avoid further confusion.Hi @darius_fx
We respect the importance of security work, but the way this issue was presented creates unnecessary panic around a vulnerability with near-zero real-world impact.
Instead of clearly communicating this to users, Patchstack chose to exaggerate the issue and use it as an opportunity to promote its commercial services within the open-source community.
This approach feels more like a PR tactic than a constructive contribution to WordPress security.We will address the technical detail in the next release — as we always take security seriously — but we also encourage responsible disclosure that prioritizes real impact and honest communication over visibility and marketing.
Forum: Plugins
In reply to: [TI WooCommerce Wishlist] Another vulnerabilityFixed: SQL Injection vulnerability related to multilingual plugins in the plugin version 2.9.1
Forum: Plugins
In reply to: [TI WooCommerce Wishlist] Add parent product in variable productsTo allow adding parent products without choosing a variation, you can use this snippet:
add_filter( 'tinvwl_allow_add_parent_variable_product', '__return_true' );This will enable the option to add parent variable products without selecting a variation.
Forum: Plugins
In reply to: [TI WooCommerce Wishlist] Clean uninstallOur plugin has the “Erase All Data on Uninstall” option you’re looking for. You can find it at the bottom of the settings page.
Forum: Plugins
In reply to: [TI WooCommerce Wishlist] Some translations gone after updateIt’s possible your translations were overwritten after a plugin update if you saved them in the plugin or language folder, as updates reset these to default.
You can check all available strings for translation here:
https://translate.wordpress.org/projects/wp-plugins/ti-woocommerce-wishlist/stable/de/default/If you’re missing any strings, let us know. However, it seems all strings should already support translation.
Forum: Plugins
In reply to: [TI WooCommerce Wishlist] String not detectedIt looks like the string might be translatable. You can check it here:
Check translatable strings.Also, try syncing the strings from the plugin’s sources to the translation plugin in your setup. This should help detect everything properly! It depends on your plugin for translations.
Forum: Plugins
In reply to: [TI WooCommerce Wishlist] Migrate data to another pluginWe have updated this plugin to version 2.9.0, which includes fixes for SQL injection vulnerabilities. We strongly recommend updating your setup to the latest version!
Forum: Plugins
In reply to: [TI WooCommerce Wishlist] Plugin <= 2.8.2 is vulnerable to SQL InjectionWe have updated this plugin to version 2.9.0, which includes fixes for SQL injection vulnerabilities. We strongly recommend updating your setup to the latest version!
We have updated this plugin to version 2.9.0, which includes fixes for SQL injection vulnerabilities. We strongly recommend updating your setup to the latest version!
Forum: Plugins
In reply to: [TI WooCommerce Wishlist] Vulnerability AlertWe have updated this plugin to version 2.9.0, which includes fixes for SQL injection vulnerabilities. We strongly recommend updating your setup to the latest version!
We have updated this plugin to version 2.9.0, which includes fixes for SQL injection vulnerabilities. We strongly recommend updating your setup to the latest version!