I was alerted yesterday that Relevanssi Premium has a XSS vulnerability. If you are using the “Did you mean” feature, it is possible to construct a search query that contains scripts that are automatically run on the page if the “Did you mean” feature runs. See DXWSecurity report on the vulnerability. Version 1.14.9 fixes this…
Relevanssi Premium 1.14.8 includes one major bug fix, few smaller improvements and a new feature. An improved version of the sorting function will not throw notices when Intuitive Custom Post Order plugin is used. New filter: relevanssi_missing_sort_key can be used to adjust the result sorting when using keys that are not present in all posts…
This is a small maintenance fix, solving problems related to old and very new versions of PHP. If you are using a PHP version that’s newer than 5.4 and older than 7, this update is not necessary. Relevanssi threw a fatal error with PHP 7.1 thanks to a wrong variable declaration. The accidental PHP 5.4+…
Looks like Relevanssi is compatible with WordPress 4.7, but one problem has been found so far: admin dashboard search for pages doesn’t work with Relevanssi. Other post types seem to work just fine. I wasn’t able to fix the problem, so this version circumvents it by disabling Relevanssi in the admin page search. This version…
Relevanssi Premium 1.14.6 and Relevanssi 3.5.6 are important security updates. There’s a SQL injection vulnerability in Relevanssi. It’s not terribly dangerous, as it requires admin access, but it is possible to exploit. Premium also has another security vulnerability: the option import option can be exploited. That exploit also requires admin access. Both of these vulnerabilities…
Relevanssi 3.5.5 is out now and available from the plugin repository. 500 errors caused by arrays in custom fields should be gone now. Improvements to the ACF “select” field support. Relevanssi will not break when frontend plugins insert posts. relevanssi_match filter has a new parameter, which contains the search term. Polylang support has been improved.…
Relevanssi Premium 1.14.5 is a recommended release, as it fixes significant bugs that caused failures when custom fields contained arrays and when front-end plugins created posts. Multisite users are happy to find out meta_query support has been added to multisite searches and the post type filters work better. Relevanssi had problems with plus signs in…
Relevanssi Premium 1.14.4 includes a bug fix in multisite searching, fixes a small glitch in highlighting and includes a new filter. Fixed a small glitch that could happen if a highlighted term is next to a starting square bracket. Bug fixes in the multisite searching: post type weights work now, and relevancy scores are properly…
Version 3.5.4 is a significant maintenance update. It includes the following fixes or updates, and is a recommended update: Relevanssi had a bug that lead to inflated relevancy scores for posts. Relevanssi can now index the human-readable labels of ACF “select” fields. (Thanks to Raphaël Droz.) New filter: relevanssi_30days can be used to adjust the…
Version 1.14.3 of Relevanssi Premium is out. This version includes small bug fixes. One of the bugs affects relevancy values of posts, which can be significant, so I would recommend updating. Fix for a small bug that caused inflated relevancy values. relevanssi_didyoumean_url has two more parameters (uncorrected query and the suggestion). The Did you mean…