Security issues – more sanitizing please

This topic contains 7 replies, has 2 voices, and was last updated by  Stiofan O’Connor 7 years, 8 months ago.

We have moved to a support ticketing system and our forums are now closed.

Open Support Ticket

Tagged: 

  • Author
    Posts
  • July 26, 2016 at 3:10 pm #233692

    Rainer Lang
    Expired Member
    Post count: 33

    Hello,
    after our site had been compromised with GeoPlaces theme, we succesfully migrated everything for use with GeoDirectory plugin, theme and addons. It is very important for us to secure our site as best as possible, so we looked through your code for potential security issues. Happily we experienced a really good and clean coding, congratulations!
    But we also found some code pieces that need more attention. We’ll mention them below in private answers. Would you please take a look at it to get it even more secure?

    –GeoDirectory 1.6.4, WP 4.5.3, PHP 5.6–

    July 26, 2016 at 3:14 pm #233694

    Rainer Lang
    Expired Member
    Post count: 33
    This reply has been marked as private.
    July 26, 2016 at 3:17 pm #233695

    Rainer Lang
    Expired Member
    Post count: 33
    This reply has been marked as private.
    July 26, 2016 at 3:21 pm #233697

    Rainer Lang
    Expired Member
    Post count: 33
    This reply has been marked as private.
    July 26, 2016 at 3:26 pm #233698

    Rainer Lang
    Expired Member
    Post count: 33
    This reply has been marked as private.
    July 26, 2016 at 4:05 pm #233709

    Stiofan O’Connor
    Site Admin
    Post count: 22956

    Hi Rainer,

    Firstly let me assure you we are very security conscious, GP was/is a security nightmare, i gave the devs several patches before but they kept adding more problems, last time i checked there was 3 ways any GP site could be compromised…

    It looks like you might be using some sort of security scanner, which can often produce false positives however i will review all your points.

    Thanks,

    Stiofan

    September 6, 2016 at 9:47 am #260834

    Rainer Lang
    Expired Member
    Post count: 33

    Hi Stiofan,
    we really appreciate your security consciousness and hope to go best with GeoDirectory.
    No, we don’t use a scanner, just own eyes on the monitor of our WordPress security experienced developer.
    We’re looking forward to read your review. Do you have any results yet?

    September 6, 2016 at 10:30 am #260842

    Stiofan O’Connor
    Site Admin
    Post count: 22956

    Nothing i have checked from you so far has been any real concern, it’s all been semantics, when i find time i will go over it but if you find anything that is an actual concern then feel free to point it out.

    Thanks,

    Stiofan

  • Author
    Posts
Viewing 8 posts - 1 through 8 (of 8 total)

We have moved to a support ticketing system and our forums are now closed.

Open Support Ticket