#wordpress 2022-03-07

2022-03-07 UTC
# 00:08 
cambridgeport90[ Interesting. Then again, It probably didn't have any credits whre you were mentioned. That's probably why you didn't see it. 
# 00:27 
GWG cambridgeport90[: Always happy to look at anything that works with something I worked on.
[tantek] and IntriguedWow[d] joined the channel
# 02:14 
cambridgeport90[ Has anyone in here heard of a negative security landscape for Wordpress? As mentioned earlier? I was advised that the issues are related to plugins. 
# 02:15 
GWG cambridgeport90[: Every system has possible security issues. That's why you have to keep it up to date
# 02:15 
cambridgeport90[ There are four vulnerabilities that have supposedly occurred in 2022 alone in the core CMS. 
# 02:16 
cambridgeport90[ I'm only asking because I was advised against using it in its latest incarnation. 
# 02:16 
GWG cambridgeport90[: It's not a yes/no question, to be honest
# 02:16 
GWG WordPress powers 40% of the identifiable web.
# 02:16 
GWG It's a large target
# 02:16 
GWG So people are always looking for exploits
# 02:16 
GWG When they find them, they get patched.
# 02:17 
GWG Wouldn't you be more worried if they weren't?
# 02:17 
GWG Some projects aren't as diligent?
# 02:17 
GWG And I'm not defending WordPress, I have issues with it also
# 02:18 
GWG I just think on a security level, it is unfair to suggest it is more insecure than other platforms.
# 02:18 
GWG Admittedly, a static site generator is much more secure, but that's because there is nothing to log into
# 02:18 
GWG But it has its own problems
# 02:19 
cambridgeport90[ I definitely would be more worried, honestly. But I'm trying to find some definitive articles regarding which plugins were affected by whatever issues were cited. 
# 02:20 
cambridgeport90[ Did you guys hear of anything plugin related?
# 02:22 
GWG cambridgeport90[: Yes, it wasn't one I used, and they patched it
# 02:22 
cambridgeport90[ Which one was it?
# 02:24 
GWG Updraft Plus
# 02:25 
GWG It allowed someone to download a backup of the site
# 02:25 
GWG But to do so, they still needed a login, just one of insufficient permissions
# 02:25 
cambridgeport90[ What the heck is that? LOL No wonder I missed the memo. 
# 02:25 
cambridgeport90[  * Makes sense, then, that I missed it considering I only used the XML backups via manual export.
# 02:30 
GWG cambridgeport90[: It's a basic plugin with a premium option for extra automatic backup functionality
# 02:32 
cambridgeport90[ Oh... yeah. I never used it. 
# 02:36 
GWG cambridgeport90[: What do you want to do with your site?
# 02:40 
cambridgeport90[ It's mainly a blog, with lots of notes, and some other post types as well. This previous question was in light of somebody suggesting that I stay away from Wordpress do to security issues and the number of plugins that I have. 
# 02:40 
GWG cambridgeport90[: I'm not saying I don't understand their point of view, just that it isn't nuanced.
# 02:41 
cambridgeport90[ I think I'm going to have to get some more details. 
# 02:44 
GWG cambridgeport90[: They temporarily shut down one of my plugins over improper santization. I think it was an overreaction, but I fixed it. So, the repo does scan plugins regularly.
# 02:45 
cambridgeport90[ I think that might have been what my friend was referring to, actually. But in a much more general way.
# 02:45 
GWG Tell me if I can help in any way
# 02:50 
cambridgeport90[ I will once I figure out what's happening. Thanks, though!
[fluffy], angelo, kimberlyhirsh[d], jsbach, Silicon[d], corenominal[d], sayanarijit[d], firfe, Asaf_Agranat[d], [KevinMarks], [snarfed], Ramon[d] and mossymaker[d] joined the channel
# 17:24 
[snarfed] interesting failure case here, the webmention display on this site ended up inside the h-entry, which confused Bridgy Publish. https://pin13.net/mf2/?url=https://www.digisal.com/2022/03/i-need-to-eat-better/ , https://github.com/snarfed/bridgy/issues/1140
# 17:25 
[snarfed] hah it has h-entry on the body element. so yeah they're going to have a bad time
Milana22 joined the channel
# 18:35 
Milana22 Hello everyone. I am a newbie here and to wordpress. I recently wanted to change the description of some cta buttons, and change the shape and size. When I opened the site in incognito, they changes were not refelcted and one of the pages looked static. I spoke to someone on siteground and they mention that I have json errors which I don
# 18:35 
Milana22 know how to view or fix
# 18:35 
Milana22 I was making button changes in elementor. Can anyone help with this issue? Thank you all for your time
[aciccarello], shaunix[d], MarkJR84[d], P1000[d] and maxwelljoslyn[d] joined the channel