About deactivated plugin in WP

YujinTan

BANNED
Joined
Jan 7, 2018
Messages
4,975
Reaction score
969
currently kinda got conflict issues with this plugin Ninja form . I happen do update plugin as usual and got error.
Not sure what happen, I suspect Ninja form side maybe code wrongly or what so , currently I just deactivated never remove.

So my question, if they come out update will I get noticafication on it? as the plugin now is not active but under inactive plugin.
 
if its installed you should get a notification
 
if its installed you should get a notification
yes install but currently i deactivated it , now under inactive so wonder will get update on it ?
I suspect they code wrongly or what first time encounter error . make my site got error notication display on the site so currently I temp disable it
 
Nopes. If it is not enabled, it's just the files sitting on your server, nothing more. Think what would happen if this wasn't the case. ;)
 
Nopes. If it is not enabled, it's just the files sitting on your server, nothing more. Think what would happen if this wasn't the case. ;)
geee, anyway do you all encounter some error after updated the ninja form plugin? Actually just now they come out update for it.
 
geee, anyway do you all encounter some error after updated the ninja form plugin? Actually just now they come out update for it.
I don't use wp much these days, sorry. :P

Wait for others to reply may be. How about @Festinger? He knows a thing or two about wp for sure.
 
Ha, just checked , it does show updates despite you deactivate , under inactive plugin. I just updated as they come out update again , guess they know the error . After updated is fine back again.
 
Ha, just checked , it does show updates despite you deactivate , under inactive plugin. I just updated as they come out update again , guess they know the error . After updated is fine back again.
Huh? That's crazy if wp did it. I wouldn't probably use it ever again for anything serious. If I deactivated the plugin, it should detach from the site it is in. If this feature is really got introduced, it can/will do more harm than good.
 
Huh? That's crazy if wp did it. I wouldn't probably use it ever again for anything serious. If I deactivated the plugin, it should detach from the site it is in. If this feature is really got introduced, it can/will do more harm than good.
Well why in the first place I de activated the ninja form plugin because got usual plugin update which is from them, so I just update as per normal and saw got error. I go my site check , the error openly been display on my site at the top , so I disable first, suspect they might code wrongly or what i don't know thus the plugin under inactive plugin side.

Later after few mins, I go WP dashboard , plugin side check again and happen to see they will display there is an update under inactive plugin , so I updated, activate again and it ok.

hmm why you said do more harm than good? As mention I saw the update cause the plugin got error so I temp disable it , so it go under inactive plugin . I never remove.
and it does show got update later despite i never activate. Which I find it not bad at least , if any plugin got error etc, after updated , Now i know I temp dis able the plugin , under inactive plugins , it will show got any latest update to correct the error .
 
hmm why you said do more harm than good?
Probably has nothing to do with your case, but deactivated plugins should never have access to the website (i.e., it shouldn't be loaded in the memory). For example, I could make a plugin with a POST call with options for RFI (quite common for file upload plugins, for example. Oh, and it is pretty much undetectable to the anti virus softwares.). Even if you disabled my plugin, if I had access to the api; I could still (possibly) upload a shell on the site. From security perspective, it seems like a bad thing. I don't know what wp did, but I hope they "only" allowed messages to be shown; and not the plugin itself to be executed.
 
Last edited:
Probably has nothing to do with your case, but deactivated plugins should never have access to the website (i.e., it shouldn't be loaded in the memory). For example, I could make a plugin with a POST call with options for RFI (quite common for file upload plugins, for example. Oh, and it is pretty much undetectable to the anti virus softwares.). Even if you disabled my plugin, if I had access to the api; I could still (possibly) upload a shell on the site. From security perspective, it seems like a bad thing. I don't know what wp did, but I hope they "only" allowed messages to be shown; and not the plugin itself to be executed.
hmm interest, actually if I recall correctly I update the plugin while still under inactive plugin side than I activate
 
hmm interest, actually if I recall correctly I update the plugin while still under inactive plugin side than I activate
Upgrading shouldn't be an issue. It's your action (the fact that you clicked the button). The problem happens when your plugin tells your users that "this site is using outdated plugins. Tell YujinTan to upgrade, or I will start crying" (remember, you have it disabled). If that makes any sense. :p
 
Back
Top