💎 PREMIUM: Changeset/ - High Quality

Get WordPress

Plugin Directory

Changeset 2901738


Ignore:
Timestamp:
04/20/2023 10:46:21 AM (3 years ago)
Author:
jchristopher
Message:

Version 1.6.7

Location:
cms-tree-page-view/trunk
Files:
3 edited

Legend:

Unmodified
Added
Removed

  • cms-tree-page-view/trunk/functions.php

    r2750438 r2901738  
    101101    */
    102102
    103     $post_position  = $_POST["cms_tpv_add_type"];
    104     $post_status    = $_POST["cms_tpv_add_status"];
     103    $post_position  = sanitize_text_field($_POST["cms_tpv_add_type"]);
     104    $post_status    = sanitize_text_field($_POST["cms_tpv_add_status"]);
    105105    $post_names     = (array) $_POST["cms_tpv_add_new_pages_names"];
    106     $ref_post_id    = (int) $_POST["ref_post_id"];
    107     $lang           = $_POST["lang"];
     106    $ref_post_id    = (int) sanitize_text_field($_POST["ref_post_id"]);
     107    $lang           = sanitize_text_field($_POST["lang"]);
     108
     109    for ($i = 0; $i < count($post_names); $i++) {
     110        $post_names[$i] = sanitize_text_field($post_names[$i]);
     111    }
    108112
    109113    // Check nonce
     
    281285    global $cms_tpv_view;
    282286    if (isset($_GET["cms_tpv_view"])) {
    283         $cms_tpv_view = htmlspecialchars($_GET["cms_tpv_view"]);
     287        $cms_tpv_view = htmlspecialchars(sanitize_text_field($_GET["cms_tpv_view"]));
    284288    } else {
    285289        $cms_tpv_view = "all";
     
    891895    $post_type = NULL;
    892896    if (isset($_GET["post_type"])) {
    893         $post_type = $_GET["post_type"];
     897        $post_type = sanitize_text_field($_GET["post_type"]);
    894898    }
    895899    if (!$post_type) {
    896900        // no post type, happens with ozh admin drop down, so get it via page instead
    897         $page = isset($_GET["page"]) ? $_GET["page"] : "";
     901        $page = isset($_GET["page"]) ? sanitize_text_field($_GET["page"]) : "";
    898902        $post_type = str_replace("cms-tpv-page-", "", $page);
    899903    }
     
    15941598    check_ajax_referer('cms-tpv-ajax', 'cms-tpv-nonce');
    15951599
    1596     $action = $_GET["action"];
    1597     $view = $_GET["view"]; // all | public | trash
    1598     $post_type = (isset($_GET["post_type"])) ? $_GET["post_type"] : null;
    1599     $search = (isset($_GET["search_string"])) ? trim($_GET["search_string"]) : ""; // exits if we're doing a search
     1600    $action = sanitize_text_field($_GET["action"]);
     1601    $view = sanitize_text_field($_GET["view"]); // all | public | trash
     1602    $post_type = (isset($_GET["post_type"])) ? sanitize_text_field($_GET["post_type"]) : null;
     1603    $search = (isset($_GET["search_string"])) ? sanitize_text_field(trim($_GET["search_string"])) : ""; // exits if we're doing a search
    16001604
    16011605    // Check if user is allowed to get the list. For example subscribers should not be allowed to
     
    16701674            // regular get
    16711675
    1672             $id = (isset($_GET["id"])) ? $_GET["id"] : null;
     1676            $id = (isset($_GET["id"])) ? sanitize_text_field($_GET["id"]) : null;
    16731677            $id = (int) str_replace("cms-tpv-", "", $id);
    16741678
     
    17031707    global $wpdb;
    17041708
    1705     $node_id = $_POST["node_id"]; // the node that was moved
    1706     $ref_node_id = $_POST["ref_node_id"];
    1707     $type = $_POST["type"];
     1709    $node_id = sanitize_text_field($_POST["node_id"]); // the node that was moved
     1710    $ref_node_id = sanitize_text_field($_POST["ref_node_id"]);
     1711    $type = sanitize_text_field($_POST["type"]);
    17081712
    17091713    $node_id = str_replace("cms-tpv-", "", $node_id);

  • cms-tree-page-view/trunk/index.php

    r2750438 r2901738  
    66Text Domain: cms-tree-page-view
    77Domain Path: /languages/
    8 Version: 1.6.6
     8Version: 1.6.7
    99Author: Jon Christopher
    1010Author URI: https://jonchristopher.us/
     
    3030#require("functions.php");
    3131
    32 define( "CMS_TPV_VERSION", "1.6.6");
     32define( "CMS_TPV_VERSION", "1.6.7");
    3333define( "CMS_TPV_NAME", "CMS Tree Page View");
    3434

  • cms-tree-page-view/trunk/readme.txt

    r2750438 r2901738  
    55Text Domain: cms-tree-page-view
    66Requires at least: 3.8
    7 Tested up to: 6.0.0
    8 Stable tag: 1.6.6
     7Tested up to: 6.2.0
     8Stable tag: 1.6.7
    99
    1010Adds a tree view of all pages & custom posts. Get a great overview + options to drag & drop to reorder & option to add multiple pages.
     
    118118== Changelog ==
    119119
     120= 1.6.7 (April 2023) =
     121
     122Security update, fixes RXSS vulnerability.
     123
    120124= 1.6.6 (May 2022) =
    121125
Note: See TracChangeset for help on using the changeset viewer.
🔥 TRENDING HENTAI
Updates loading...
© 2024 Sarada Gallery - 18+ Only