Version 2.0.7 of Paid Memberships Pro is out with a handful of bug fixes and minor enhancements. These bugs have the potential to hinder sales, so be sure to upgrade.

We pushed out a security update in version 2.0.6. We are now using the wp_safe_redirect function when handling the redirect_to URL parameter on the login page. This prevents the login page from redirecting to unapproved hosts, i.e. other websites. More information on the wp_safe_redirect function why using it is important can be found in the WordPress developer reference here. Thank you for bringing this issue to our attention.

Please update Paid Memberships Pro from the plugins page of your WordPress dashboard. You can also get the latest version of PMPro here, version 2.0.6 specifically here, or version 2.0.7 specifically here.

The full list of updates is below.

= 2.0.7 – 2019-05-30 =

  • BUG FIX: Fixed issue where the profile start date would sometimes be set incorrectly on the Stripe subscription.
  • BUG FIX: Fixed issue where the membership shortcode would not work properly if more than one level name was given.
  • BUG FIX: Fixed issue where an incorrect email address was sometimes set in the confirm email field on the update billing page. (Thanks, Jessica Thomas)
  • BUG FIX/ENHANCEMENT: Fixed placement of the hr tag above the user fields at checkout for consistency.
  • ENHANCEMENT: Set the priority on the Require Membership meta box to “high” so it appears higher in the right sidebar.

= 2.0.6 – 2019-05-30 =

  • SECURITY: Now using wp_safe_redirect when possible, especially in includes/login.php where the user-provided redirect_to URL parameter is used. (Thanks

Comments (4)

I need functionality when user subscription auto renewed, i want to be notified on admin or have some option in back-end at user side where i will now that subscription auto renewed

I was hoping this update would fix the bug i am having

When setting it to use buddy press registration page they cannot chose a membership on registration

once they sign in if their plugin is activated even if i set unlock buddy press ,they keep getting sent back to their profile page…they are blocked off from everything
even though the option to give non buddy press members access to everything is checked..they do not get anything but access to their profile

and furthermore all the pages with your short codes except for the restricted short codes dont work unless they have a the plugin breaks the system

The BuddyPress registration process will not give them a membership level. You’ll need to use the PMPro checkout process in order to assign a user to a level. There is a custom code approach to assigning a default level but it requires development experience. See:

Your shortcode issue sounds like a setup misconfiguration. Make sure you have not set any levels in the “Require Membership” meta box for any page assigned under Memberships > Settings > Page Settings.

Leave a Reply

For faster support related to issues on your specific site please open a ticket in our members support area.

Your email address will not be published. Required fields are marked *