- Getting Started With Notifications in PublishPress
- Understanding the Notification Workflow Options
- Get PublishPress Notifications by Email or Slack
- How to Customize PublishPress Notifications With Shortcodes
- How to Use Reminder Notifications
- Notify Me: How to Manually Add Yourself to Notifications
- The PublishPress Notifications Log
- Hooks and Filters for Notifications
- Troubleshooting Email Notifications in PublishPress
- How to Debug Errors on PublishPress Screens
- How to Use the Debug Feature in PublishPress
- Troubleshooting PublishPress Permissions
- Troubleshooting Email Notifications in PublishPress
- Slow-loading Notification screens
- Shortcodes Aren't Working in Emails
- PublishPress Can Sometimes Change Publishing Dates
- Control Access to Custom Post Types
- Control Access to Specific Categories
- Allow Editing of Specific Pages
- Content Creation: Limit Category or Page Parent
- Block Users from Seeing Non-Editable Posts
- Control Viewing Permissions for WordPress Content
- Control Editing Permissions for WordPress Content
- Content Creation Permissions in WordPress
- Block Access to WordPress Categories and Tags
- Does My Plugin Support PublishPress Revisions?
- A List of Some Plugins Supported by PublishPress Revisions
- PublishPress Revisions Pro and The Events Calendar
- PublishPress Revisions Pro and WooCommerce
- PublishPress Revisions Pro and Advanced Custom Fields
- PublishPress Revisions Pro and Beaver Builder
- PublishPress Revisions Pro and WPML
- PublishPress Revisions Pro and Custom Post Type UI
- PublishPress Revisions Pro and Yoast SEO
- PublishPress Revisions Pro and the PODS Framework
- Submit and Moderate Revisions with the Divi Theme
- Advanced Accordion Block
- Advanced Button Block
- Advanced Image Block
- Advanced List Block
- Advanced Table Block
- Advanced Tabs Block
- Advanced Video Block
- Columns Manager Block
- Contact Form Block
- Count Up Block
- Images Slider Block
- Info Box Block
- Login / Register Form Block
- Map Block
- Newsletter Block
- Recent Posts Block
- Search Bar Block
- Social Links Block
- Summary Block
- Testimonial Block
- Woo Products Block
- Show all articles ( 6 ) Collapse Articles
- How to Find the Latest Versions of PublishPress Plugins
- Changelogs for PublishPress Authors Pro
- Changelogs for PublishPress Capabilities Pro
- Changelogs for PublishPress Checklists Pro
- Changelogs for PublishPress Permissions Pro
- Changelogs for PublishPress Pro
- Changelogs for PublishPress Revisions Pro
- Changelogs for Free PublishPress Plugins
- Changelogs for Advanced Gutenberg
- A WordPress Editorial Workflow for Writing, Reviewing and Publishing
- A WordPress Workflow for Editing and Reviewing
- Create a Workflow for University Departments in WordPress with PublishPress
- Create a Multi-Step Workflow in WordPress
- How to Create a Publishing Workflow for Authors in WordPress
- How to Get 2 People to Approve Content in WordPress
- Create WooCommerce Users Who Can Only View Reports
- Allow WooCommerce Users to Edit Only One Product
- How to Control Who Can Access WooCommerce Coupons
- How to Create WooCommerce Users Who Can Only View and Edit Orders
- How to Allow WordPress Admin Area Access for WooCommerce Users
- How to Create and Schedule Revisions for WooCommerce Products
- How to Manage Permissions for WooCommerce Orders
- How to Approve and Schedule Changes to WooCommerce Products
- How to Control Permissions for WooCommerce Refunds
- How to Control Who Can Duplicate WooCommerce Products
- How to Create Checklists with WooCommerce
Security Issues and How to Report Them
We do our best at PublishPress to solve all security issues. We aim to develop, test, release and announce patches as quickly as possible after issues have been discovered.
Full details are available to customers and other trusted parties on request.
How to report a security issue
If you have discovered a vulnerability in a PublishPress plugin, we want to hear from you as soon as possible.
Please gather as much information together as you can so we can work quickly to address it. Here’s a checklist of the details we’d like to see.
- Severity (high, medium, low)
- Vulnerability type: e.g., DoS, Overflow, XSS, CSRF, etc
- Exploitation Requires Authentication?: yes/no
- Which plugin is vulnerable and which version numbers.
- A description of the vulnerability
- Do you have reason to believe the vulnerability is being exploited?
- Are details of an exploit publicly available? If so, please provide us with a URL.
- What is the potential impact? How do you envisage it being used in an attack scenario?
- DREAD score, if known.
- CVE Identifier / Reference / Advisory Number, if applicable.
- If you wish to be credited for the responsible disclosure in the release announcement and the change log, please let us know. If you plan to disclose details of the vulnerability, please do let us know so we can coordinate the timing of the disclosure together.
- Any additional comments.
If you are a customer please open a support ticket as soon as possible and make it clear in the subject that your are reporting a security vulnerability.
If you are not a customer send all the details to security@publishpress.com.
We’ll acknowledge receipt as soon as we’ve read it. If confirmed we’ll plan a patch and let you know when we plan to release it.
Responsible disclosure of issues
Sometimes security researchers have contacted us to disclose a security vulnerability. In these cases, it’s understandable that the researcher might want to publish details of the discovery themselves.
We do expect researchers to respect the principles of responsible disclosure and to work with us to coordinate the content and timing of the public disclosure so customers are given a reasonable opportunity to update their sites.