Please pass this along to your developers:
In the ProSites plugin version 3.5.4, the file
pro-sites/pro-sites-files/lib/ProSites/Helper/Registration.php contains an error. The definition for the function
activate_blog calls the WordPress core function
wp_signon using an array with an incorrect value for the 'user_login'. The 'user_login' should be the username; but in this function, the 'user_login' is incorrectly set to the numerical user_id on line 119.
As a result, after signing up for the first time and successfully making a payment, the auto-login fails, and depending on the site's security settings, the user may be locked out!
wp_signon is called three times in the file
Helper/Registration.php and in the other two instances, it is called correctly. The error only occurs in the function,
I would appreciate a fix ASAP.