Changeset 2765251

badgeos/trunk/badgeos.php

-                      r2687784
+                      r2765251
 * Description: BadgeOS lets your site’s users complete tasks and earn badges, ranks, and points that recognize their achievement. Define achievements and choose from a range of options that determine when they're complete. Badges are Mozilla Open Badges (OBI) compatible so the users can easily validate the earned badges.
 * Author: LearningTimes
 * Version: 3.7.0
+* Version: 3.7.1
 * Author URI: https://credly.com/
 * License: GNU AGPL
 …
      * @var string
      */
     public static $version = '3.7.0';
+    public static $version = '3.7.1';
     /**
 …
         $badgeos_tools_email_tab = '';
         if( isset( $_REQUEST['badgeos_tools_email_tab'] ) && !empty( $_REQUEST['badgeos_tools_email_tab'] ) ) {
             $badgeos_tools_email_tab = $_REQUEST['badgeos_tools_email_tab'];
+            $badgeos_tools_email_tab = sanitize_text_field( $_REQUEST['badgeos_tools_email_tab'] );
+        }
 …
         $data = array(
+            'ajax_url'        => esc_url( admin_url( 'admin-ajax.php', 'relative' ) )
+            'ajax_url'        => esc_url( admin_url( 'admin-ajax.php', 'relative' ) ),
+            'security'        => wp_create_nonce( 'bos-security' ),
         );
         wp_localize_script( 'badgeos-achievements', 'BadgeosData', $data );

badgeos/trunk/css/admin.min.css

-                      r2687784
+                      r2765251
+#icon-badgeos_badgeos{background-image:url(../images/badgeos_screen_icon.png)}li.step-row{background:#fff;border-radius:5px;border:1px solid #ddd;padding:5px 10px}.badgeos-user-earned-achievements-admin-block,.badgeos-user-earned-ranks-admin-block{color:#444;font-family:-apple-system,BlinkMacSystemFont,"Segoe UI",Roboto,Oxygen-Sans,Ubuntu,Cantarell,"Helvetica Neue",sans-serif;font-size:13px;line-height:1.4em}li.step-row .step-handle{display:block;background:url(../images/ui_handle.png);width:7px;height:4em;margin:5px 10px 5px 0;position:relative;float:left}li.step-row .required-duration{text-align:right}li.step-row .step-title{display:block;padding-top:5px}li.step-row .title{width:300px}li.step-row .delete-step{position:relative;float:right;line-height:4.5em}.badgeos-table th{font-weight:700;padding:8px 10px;text-transform:uppercase}.badgeos-table a.error{color:#a00}.badgeos-license-status{background:#eee;color:#333;padding:3px 8px;border:1px solid #ddd;border-radius:3px}.badgeos-license-status.failed,.badgeos-license-status.invalid{background:#faa;border-color:#a55;color:#a00}.badgeos-license-status.active,.badgeos-license-status.valid{background:#ac7;border-color:#7a5;color:#250}.badgeos-addons .addon{display:block;background:#fafafa;border:1px solid #eee;padding:1em;margin:0 1em 1em 0;min-width:200px;max-width:25%;position:relative;float:left}.badgeos-addons .addon:nth-child(3n+4){clear:both}.badgeos-addons .addon .thumbnail-link{display:block;margin:0 auto;width:200px;height:200px;text-align:center}.badgeos-addons .addon img{max-width:100%}.wp-core-ui a.badgeos_media_link,.wp-core-ui a.badgeos_media_link:hover{background:url(../images/badgeos_icon.png) 4% 50% no-repeat;padding-left:1.8em}.badgeos_input{-moz-box-sizing:border-box;-webkit-box-sizing:border-box;box-sizing:border-box;padding:5px;width:50%}.badgeos_input>div{margin:5px 0}#shortcode_options{margin-top:10px;min-height:100%;overflow:auto;padding-top:10px;width:100%}#shortcode_options label{font-weight:700}#shortcode_options span{font-style:italic}.odd{clear:both}.clear{clear:both}#select2-drop{z-index:100051}#delete_log_entries{margin:2px 8px 0 0}.delete-log-entries.notice img{vertical-align:middle}#revoke-badges-loader{width:25px;margin-left:20px;display:none}.form-table td.bulk-delete-detail{padding-left:20px}.profile-php .earned-user-credits-wrapper,.user-edit-php .earned-user-credits-wrapper{width:100%;overflow:hidden;margin-bottom:30px;margin-top:30px}.profile-php .earned-user-credits-wrapper .badgeos-credits,.user-edit-php .earned-user-credits-wrapper .badgeos-credits{border:1px solid #e8e8e8;position:relative}.profile-php .earned-user-credits-wrapper .badgeos-credits .badgeos-credit-edit,.user-edit-php .earned-user-credits-wrapper .badgeos-credits .badgeos-credit-edit{position:absolute;right:15px;top:15px;cursor:pointer;color:#0073aa}.profile-php .earned-user-credits-wrapper .badgeos-credits .badgeos-edit-credit-wrapper,.user-edit-php .earned-user-credits-wrapper .badgeos-credits .badgeos-edit-credit-wrapper{padding:9px 0}.profile-php .earned-user-credits-wrapper .badgeos-credits .badgeos-earned-credit,.user-edit-php .earned-user-credits-wrapper .badgeos-credits .badgeos-earned-credit{padding:15px 0}.profile-php .earned-user-credits-wrapper .badgeos-credits h3,.user-edit-php .earned-user-credits-wrapper .badgeos-credits h3{margin:0}.profile-php .earned-user-credits-wrapper .badgeos-credits:nth-child(odd),.user-edit-php .earned-user-credits-wrapper .badgeos-credits:nth-child(odd){width:40%;margin:20px 2%;float:left;padding:1%;box-shadow:1px 1px 3px 2px #ccc;background-color:#fff}.profile-php .earned-user-credits-wrapper .badgeos-credits:nth-child(even),.user-edit-php .earned-user-credits-wrapper .badgeos-credits:nth-child(even){width:40%;margin:20px 2%;float:right;padding:1%;box-shadow:1px 1px 3px 2px #ccc;background-color:#fff}.profile-php .badgeos-rank-table .revoke-rank,.user-edit-php .badgeos-rank-table .revoke-rank{cursor:pointer;color:#a00}.profile-php .badgeos-rank-table .award-rank,.user-edit-php .badgeos-rank-table .award-rank{cursor:pointer;color:#0073aa}.profile-php .badgeos-achievement-table,.profile-php .badgeos-rank-table,.user-edit-php .badgeos-achievement-table,.user-edit-php .badgeos-rank-table{border-top:1px solid #e8e8e8;border-bottom:1px solid #e8e8e8;box-shadow:0 0 1px 2px #e8e8e8;margin-bottom:30px}.profile-php .badgeos-achievement-table thead,.profile-php .badgeos-rank-table thead,.user-edit-php .badgeos-achievement-table thead,.user-edit-php .badgeos-rank-table thead{border-bottom:1px solid #e8e8e8;padding:10px}.profile-php .badgeos-achievement-table tfoot,.profile-php .badgeos-rank-table tfoot,.user-edit-php .badgeos-achievement-table tfoot,.user-edit-php .badgeos-rank-table tfoot{border-top:1px solid #e8e8e8;padding:10px}.profile-php .badgeos-achievement-table th,.profile-php .badgeos-rank-table th,.user-edit-php .badgeos-achievement-table th,.user-edit-php .badgeos-rank-table th{padding:10px;background-color:#f6f6f6}.profile-php .badgeos-achievement-table td,.profile-php .badgeos-rank-table td,.user-edit-php .badgeos-achievement-table td,.user-edit-php .badgeos-rank-table td{padding:10px}.profile-php .badgeos-achievement-table tbody tr:nth-child(odd),.profile-php .badgeos-rank-table tbody tr:nth-child(odd),.user-edit-php .badgeos-achievement-table tbody tr:nth-child(odd),.user-edit-php .badgeos-rank-table tbody tr:nth-child(odd){background-color:#fff}.profile-php .badgeos-achievement-table .revoke-achievement,.profile-php .badgeos-rank-table .revoke-rank,.user-edit-php .badgeos-achievement-table .revoke-achievement,.user-edit-php .badgeos-rank-table .revoke-rank{cursor:pointer;color:#a00}.profile-php .badgeos-achievement-table .award-achievement,.profile-php .badgeos-rank-table .award-rank,.user-edit-php .badgeos-achievement-table .award-achievement,.user-edit-php .badgeos-rank-table .award-rank{cursor:pointer;color:#0073aa}.profile_ranks_last_award_field{font-size:20px!important;font-weight:bolder}.badgeos-migration-form-table td{margin-left:3px;padding:7px}.badgeos-migration-form-table h3{margin:0;padding:0}.ui-tabs-vertical{width:100%}.ui-tabs-vertical .ui-tabs-nav{float:left;width:25%}.ui-tabs-vertical .ui-tabs-nav li{clear:left;width:100%;border-bottom-width:1px!important;border-right-width:0!important;margin:0 -1px .2em 0;display:block}.ui-tabs-vertical .ui-tabs-nav li a{display:block;width:100%;padding:8px 0!important}.ui-tabs-vertical .ui-tabs-nav li.ui-tabs-active{padding-bottom:0;padding-right:.1em;border-right-width:1px}.ui-tabs-vertical .ui-tabs-panel{padding:1em;float:right;width:calc(75% - 2px)}#badgeos-setting-tabs .ui-tabs-panel{padding:1em;float:right;width:calc(72% - 3px)}#badgeos-setting-tabs td,th{font-size:14px;text-align:left;vertical-align:top}#achievement-tabs,#badgeos-setting-tabs,#credit-tabs,#email-tabs,#rank-tabs,#system-tabs{margin-top:20px;background-color:#f6f6f6;border-color:#ccc;box-shadow:0 0 1px 2px #e8e8e8;padding:0}#achievement-tabs .tab-title,#badgeos-setting-tabs .tab-title,#credit-tabs .tab-title,#email-tabs .tab-title,#rank-tabs .tab-title,#system-tabs .tab-title{padding:10px;font-size:15px;font-weight:700;border-bottom:1px solid #ccc;background-color:#f6f6f6}#achievement-tabs.ui-tabs-vertical .ui-tabs-nav,#badgeos-setting-tabs.ui-tabs-vertical .ui-tabs-nav,#credit-tabs.ui-tabs-vertical .ui-tabs-nav,#email-tabs.ui-tabs-vertical .ui-tabs-nav,#rank-tabs.ui-tabs-vertical .ui-tabs-nav,#system-tabs.ui-tabs-vertical .ui-tabs-nav{padding:0!important;margin:0!important;border:none!important;-webkit-border-radius:0!important;-moz-border-radius:0!important;border-radius:0!important}#achievement-tabs.ui-tabs-vertical .ui-tabs-nav li a,#badgeos-setting-tabs.ui-tabs-vertical .ui-tabs-nav li a,#credit-tabs.ui-tabs-vertical .ui-tabs-nav li a,#email-tabs.ui-tabs-vertical .ui-tabs-nav li a,#rank-tabs.ui-tabs-vertical .ui-tabs-nav li a,#system-tabs.ui-tabs-vertical .ui-tabs-nav li a{padding:8px 2%!important;width:96%!important}#achievement-tabs.ui-tabs-vertical .ui-tabs-nav li,#badgeos-setting-tabs.ui-tabs-vertical .ui-tabs-nav li,#credit-tabs.ui-tabs-vertical .ui-tabs-nav li,#email-tabs.ui-tabs-vertical .ui-tabs-nav li,#rank-tabs.ui-tabs-vertical .ui-tabs-nav li,#system-tabs.ui-tabs-vertical .ui-tabs-nav li{background-color:#f6f6f6;border:none;-webkit-border-radius:0;-moz-border-radius:0;border-radius:0;border-bottom:1px solid #ccc;padding:0;margin-bottom:0}#achievement-tabs.ui-tabs-vertical .ui-tabs-nav li.ui-tabs-active,#badgeos-setting-tabs.ui-tabs-nav li.ui-tabs-active,#credit-tabs.ui-tabs-vertical .ui-tabs-nav li.ui-tabs-active,#email-tabs.ui-tabs-vertical .ui-tabs-nav li.ui-tabs-active,#rank-tabs.ui-tabs-vertical .ui-tabs-nav li.ui-tabs-active,#system-tabs.ui-tabs-vertical .ui-tabs-nav li.ui-tabs-active{background-color:#fff;border:none;-webkit-border-radius:0;-moz-border-radius:0;border-radius:0;border-bottom:1px solid #ccc;padding:0}#achievement-tabs.ui-tabs-vertical .ui-tabs-nav li.ui-tabs-active a,#badgeos-setting-tabs.ui-tabs-vertical .ui-tabs-nav li.ui-tabs-active a,#credit-tabs.ui-tabs-vertical .ui-tabs-nav li.ui-tabs-active a,#email-tabs.ui-tabs-vertical .ui-tabs-nav li.ui-tabs-active a,#rank-tabs.ui-tabs-vertical .ui-tabs-nav li.ui-tabs-active a,#system-tabs.ui-tabs-vertical .ui-tabs-nav li.ui-tabs-active a{color:#000}#achievement-tabs.ui-tabs-vertical .ui-tabs-nav li:focus,#badgeos-setting-tabs.ui-tabs-vertical .ui-tabs-nav li:focus,#credit-tabs.ui-tabs-vertical .ui-tabs-nav li:focus,#email-tabs.ui-tabs-vertical .ui-tabs-nav li:focus,#rank-tabs.ui-tabs-vertical .ui-tabs-nav li:focus,#system-tabs.ui-tabs-vertical .ui-tabs-nav li:focus{border:none!important;outline:0!important;box-shadow:none!important}#achievement-tabs.ui-tabs-vertical .ui-tabs-nav li a:focus,#badgeos-setting-tabs.ui-tabs-vertical .ui-tabs-nav li a:focus,#credit-tabs.ui-tabs-vertical .ui-tabs-nav li a:focus,#email-tabs.ui-tabs-vertical .ui-tabs-nav li a:focus,#rank-tabs.ui-tabs-vertical .ui-tabs-nav li a:focus,#system-tabs.ui-tabs-vertical .ui-tabs-nav li a:focus{border:none!important;outline:0!important;box-shadow:none!important}#achievement_bulk_award,#achievement_bulk_revoke,#badgeos_info,#badgeos_tools_email_achievement_steps,#badgeos_tools_email_achievements,#badgeos_tools_email_general,#badgeos_tools_email_point_awards,#badgeos_tools_email_point_deducts,#badgeos_tools_email_rank_steps,#badgeos_tools_email_ranks,#credit_bulk_award,#credit_bulk_revoke,#php_config,#rank_bulk_award,#rank_bulk_revoke,#server_info,#wordpress_info{background-color:#fff;padding:0!important;border-left:1px solid #ccc}#achievement_bulk_award form,#achievement_bulk_revoke form,#badgeos_tools_email_achievement_steps,#badgeos_tools_email_achievements,#badgeos_tools_email_general,#badgeos_tools_email_point_awards,#badgeos_tools_email_point_deducts,#badgeos_tools_email_rank_steps,#badgeos_tools_email_ranks,#credit_bulk_award form,#credit_bulk_revoke form,#rank_bulk_award form,#rank_bulk_revoke form{padding:20px}#badgeos_info table,#php_config table,#server_info table,#wordpress_info table{padding:20px;width:100%;text-align:left}#badgeos_info table tr:nth-child(even),#php_config table tr:nth-child(even),#server_info table tr:nth-child(even),#wordpress_info table tr:nth-child(even){text-align:left;background:#fff}#badgeos_info table tr:nth-child(odd),#php_config table tr:nth-child(odd),#server_info table tr:nth-child(odd),#wordpress_info table tr:nth-child(odd){text-align:left;background:#f6f6f6}#badgeos_info table tr th,#php_config table tr th,#server_info table tr th,#wordpress_info table tr th{width:35%}#badgeos_info table tr td,#badgeos_info table tr th,#php_config table tr td,#php_config table tr th,#server_info table tr td,#server_info table tr th,#wordpress_info table tr td,#wordpress_info table tr th{padding:10px}#achievement_bulk_award form table,#achievement_bulk_revoke form table,#credit_bulk_award form table,#credit_bulk_revoke form table,#rank_bulk_award form table,#rank_bulk_revoke form table{width:100%}.badgeos-wp_page_badgeos_tools form table tr th{width:35%!important}.badgeos-wp_page_badgeos_tools form table tr td{width:65%!important}.badgeos-wp_page_badgeos_tools form table tr td span input,.badgeos-wp_page_badgeos_tools form table tr td span>span.selection{width:100%!important}.badgeos-wp_page_badgeos_tools form table tr td>input,.badgeos-wp_page_badgeos_tools form table tr td>select{width:80%;padding:20px;-webkit-border-radius:4px;-moz-border-radius:4px;border-radius:4px;height:45px!important}.badgeos-wp_page_badgeos_tools form table tr td,.badgeos-wp_page_badgeos_tools form table tr th{border-bottom:1pt solid #e5e5e5;padding:20px 0}#achievement-tabs .button,#badgeos-setting-tabs .button,#credit-tabs .button,#email-tabs .button,#rank-tabs .button{margin:20px 0;float:right}#achievement-tabs .tool-hint,#badgeos-setting-tabs .tool-hint,#credit-tabs .tool-hint,#email-tabs .tool-hint,#rank-tabs .tool-hint{display:block;color:#aaa;margin:5px 0}.badgeos-wp_page_badgeos_tools .select2-container .select2-search--inline .select2-search__field{margin-top:12px}#credit_types_to_award,#credit_types_to_revoke{padding:12px;line-height:normal;height:auto}#achievement_bulk_award form table tr td,#achievement_bulk_revoke form table tr th,#badgeos_tools_email_achievement_steps form table tr th,#badgeos_tools_email_achievements form table tr th,#badgeos_tools_email_general form table tr th,#badgeos_tools_email_point_awards form table tr th,#badgeos_tools_email_point_deducts form table tr th,#badgeos_tools_email_rank_steps form table tr th,#badgeos_tools_email_ranks form table tr th,#credit_bulk_award form table tr td,#credit_bulk_award form table tr th,#credit_bulk_revoke form table tr td,#credit_bulk_revoke form table tr th,#rank_bulk_award form table tr th,#rank_bulk_revoke form table tr td{padding-bottom:20px}#achievement_bulk_award form table tr th,#achievement_bulk_revoke form table tr th,#badgeos_tools_email_achievement_steps form table tr th,#badgeos_tools_email_achievements form table tr th,#badgeos_tools_email_general form table tr th,#badgeos_tools_email_point_awards form table tr th,#badgeos_tools_email_point_deducts form table tr th,#badgeos_tools_email_rank_steps form table tr th,#badgeos_tools_email_ranks form table tr th,#credit_bulk_award form table tr th,#credit_bulk_revoke form table tr th,#rank_bulk_award form table tr th,#rank_bulk_revoke form table tr th{vertical-align:top;text-align:left;width:40%}#achievement_bulk_award form table tr td .select2-selection,#achievement_bulk_revoke form table tr td .select2-selection,#badgeos_tools_email_achievement_steps form table tr td .select2-selection,#badgeos_tools_email_achievements form table tr td .select2-selection,#badgeos_tools_email_general form table tr td .select2-selection,#badgeos_tools_email_point_awards form table tr td .select2-selection,#badgeos_tools_email_point_deducts form table tr td .select2-selection,#badgeos_tools_email_rank_steps form table tr td .select2-selection,#badgeos_tools_email_ranks form table tr td .select2-selection,#credit_bulk_award form table tr td .select2-selection,#credit_bulk_revoke form table tr td .select2-selection,#rank_bulk_award form table tr td .select2-selection,#rank_bulk_revoke form table tr td .select2-selection{border:1px solid #ddd;max-width:70%;padding:6px 8px}#badgeos_tools_email_achievement_steps form,#badgeos_tools_email_achievements form,#badgeos_tools_email_general form,#badgeos_tools_email_point_awards form,#badgeos_tools_email_point_deducts form,#badgeos_tools_email_rank_steps form,#badgeos_tools_email_ranks form{padding:20px}#TB_window.badgeos-shortcode-thickbox #TB_ajaxContent{overflow-y:auto!important;overflow-x:hidden}#TB_window.badgeos-shortcode-thickbox #TB_ajaxContent .wrap{padding:10px}#TB_window.badgeos-shortcode-thickbox #TB_ajaxContent .wrap .select2-selection__rendered{border:1px solid #ddd;box-shadow:0 0 5px 0 #ddd}#TB_window.badgeos-shortcode-thickbox #TB_ajaxContent .wrap .badgeos_input:nth-child(even){clear:left}#TB_window.badgeos-shortcode-thickbox #TB_ajaxContent #shortcode_options,#TB_window.badgeos-shortcode-thickbox #TB_ajaxContent #shortcode_options>div{clear:left;width:100%}#ldqie_normal_progress_loader{margin:10px auto}#badgeos_ob_normal_progress_bar{width:50%;margin:10px auto}.ui-progressbar{position:relative}.progress-label{position:absolute;left:43%;top:4px;font-weight:700;text-shadow:1px 1px 0 #fff}.badgeos_settings_license_tab{vertical-align:top;padding:10px}.badgeos_item{box-shadow:0 8px 38px 0 rgba(16,16,16,.07);background:#fff;max-width:30%;margin:auto;padding:15px 20px 0;text-align:center;font-family:inherit;width:27%;margin:20px 22px 0 0;float:left}.badgeos_item button{border:none;outline:0;padding:12px;color:#0073aa;background-color:transparent;text-align:center;cursor:pointer;width:100%;font-size:18px}.badgeos_item button:hover{opacity:.7}.badgeos_assets_info_log_content a{display:none}.badgeos_assets_info_log{display:none;margin:10px}.badgeos_assets_info_log_content{padding:10px;overflow:scroll;width:400px;height:300px}.badgeos_download_asset_success_message{font-size:11px;background-color:green;color:#fff;border-radius:5px;padding:5px;margin:5px}.badgeos_download_asset_failed_message{font-size:11px;background-color:red;color:#fff;border-radius:5px;padding:5px;margin:5px}.badgeos_item .badgeos-item-description{text-align:left;font-weight:300;padding:10px;max-height:60px;height:60px}.badgeos-assets-message-divs{max-height:90px;height:90px;overflow:hidden}.badgeos_item .badgeos-item-button{text-align:center}.badgeos-assets-image{display:-webkit-box;display:-moz-box;display:-ms-flexbox;display:-webkit-flex;display:flex;-webkit-align-items:center;-ms-flex-align:center;align-items:center;max-height:180px;overflow:hidden;height:180px;width:200px;margin-left:auto;margin-right:auto}.badgeos-welcome-container{max-width:calc(100% - 161px);width:100%;margin-left:80px;margin-top:32px}.badgeos-welcome-site-inner{max-width:1290px;margin:0 auto;overflow:hidden}.badgeos_dashboard_heading{display:flex;margin:35px 0;align-items:center}.badgeos_dashboard_heading .badgeos_dashboard_title{display:flex;align-items:baseline}.badgeos_dashboard_heading .badgeos_dashboard_title h1{margin:0 20px;font-size:48px}.badgeos_dashboard_heading .badgeos_dashboard_title span{font-size:22px}.badgeos_dashboard_heading img{width:89px}.badgeos_welcome_addons_list .badgeos_welcome_addons_list_ul{margin:0;padding:0}.badgeos_welcome_addons_list .multiple{list-style-type:none;background:#fff;width:30%;display:inline-block}.badgeos_welcome_addons_list .slick-prev{display:block!important;position:absolute;right:100px!important;top:-27px;left:auto}.badgeos_welcome_addons_list .slick-prev:before{color:#222;font-size:20px;content:"\f053";font-family:fontAwesome}.badgeos_welcome_addons_list .slick-next{display:block!important;position:absolute;right:24px;top:-27px}.badgeos_welcome_addons_list .slick-next:before{color:#222;font-size:20px;content:"\f054";font-family:fontAwesome}.badgeos_welcome_addon img{width:100%}.badgeos_welcome_addon{display:flex;padding:1em;border:1px solid #ccc;min-height:17em;height:17em}.badgeos_welcome_addons_panel{margin-bottom:55px}.badgeos_welcome_on_content{font-family:Arial,Helvetica,sans-serif;padding-left:20px}.badgeos_welcome_on_content .badgeos_add-on_name{color:#ed1f6e;font-size:20px;line-height:1.5}.badgeos_addon_welcome_btn{text-align:center}.badgeos_addon_welcome_btn a{font-family:Open Sans,sans-serif;padding:.5em 1em;font-size:12px;white-space:nowrap;background-color:#f7f7f7;color:#000;border:1px solid #adadad}.badgeos_assets_list .slick-prev{display:block!important;position:absolute;right:100px!important;top:-27px;left:auto}.badgeos_assets_list .slick-prev:before{color:#222;font-size:20px;content:"\f053";font-family:fontAwesome}.badgeos_assets_list .slick-next{display:block!important;position:absolute;right:24px;top:-27px}.badgeos_assets_list .slick-next:before{color:#222;font-size:20px;content:"\f054";font-family:fontAwesome}.badgeos_assets_panel{margin-bottom:55px}.badgeos_assets_list ul{margin:0;padding:0}.badgeos_asset{text-align:center;padding:2em 0;border:1px solid #ccc;background-color:#fff}.badgeos_asset img{width:65%}.badgeos_asset_content{font-family:Arial,Helvetica,sans-serif;padding:20px}.badgeos_asset_content .badgeos_asset_name{font-size:22px;line-height:2.2}.badgeos_asset_desc button{font-family:Open Sans,sans-serif;padding:.5em 2em}.badgeos_quick_links{background:#fff;padding:1em;border:1px solid #000;margin-bottom:55px}.badgeos_quick_links ul{padding:0;margin:0}.badgeos_quick_links ul li{list-style-type:none;line-height:2.2}.badgeos_need_help,.badgeos_please_rate{background:#fff;padding:1em;border:1px solid #000;margin-bottom:55px}.bos-need-help{width:120px}.badgeos_need_help p,.badgeos_please_rate p{font-size:inherit}.badgeos_please_rate{background:#fff;padding:1em;border:1px solid #000;margin-bottom:55px}.badgeos_please_rate p{font-size:inherit}@media only screen and (min-width:180px) and (max-width:759px){.badgeos-welcome-container{max-width:calc(100% - 0px);margin-left:0}.badgeos_welcome_addon{display:block;height:auto}.badgeos_welcome_on_content{margin-top:25px}.badgeos_dashboard_heading{margin-bottom:35px}.badgeos_dashboard_heading .badgeos_dashboard_title{display:block;margin:0 20px}.badgeos_dashboard_heading .badgeos_dashboard_title span{line-height:4;margin:0 20px}}.badgeos_please_rate .badgeos-btn-need-help{width:140px}@media only screen and (min-width:1200px) and (max-width:1300px){.badgeos_welcome_addon .badgeos_add_on_desc p{font-size:11px}.badgeos_welcome_addon{height:17em}}
+.ldqie_settings_wrapper {
+    display: none;
+    max-width: 95%;
+}
+.input-row {
+    margin-bottom: 15px;
+}
+.cs_ld_tabs  .hint {
+    display: block;
+    margin: 5px 0;
+    color: #000;
+    opacity: 0.5;
+}
+.cs_ld_tabs td{
+    vertical-align: top;
+}
+.ldqie_settings_wrapper table tr td {
+    padding-bottom: 15px;
+    padding-right: 15px;
+}
+.label-textarea {
+    display: block;
+    font-size: 15px;
+    margin-bottom: 5px;
+    font-weight: 500;
+}
+.label {
+    font-size: 15px;
+    margin-bottom: 5px;
+    font-weight: 500;
+}
+.ldqie_settings_wrapper input,
+.ldqie_settings_wrapper textarea,
+.ldqie_settings_wrapper button {
+    vertical-align: bottom;
+}
+.submit-button {
+    margin: 20px 0;
+}
+.hidden {
+    display: none;
+}
+.import-form-wrapper {
+    background: #2F4F4F;
+    padding: 20px;
+    box-shadow: 0 0 1px 3px #dddddd;
+    color: #fff;
+    margin-top: 50px;
+    max-width: 95%;
+}
+.import-form-wrapper h2 {
+    color: #fff;
+}
+#ldqie_import_file::-webkit-file-upload-button {
+    visibility: hidden;
+}
+#ldqie_import_file:hover::before {
+    border-color: #0073aa;
+}
+#ldqie_import_file:active::before {
+    background: #0073aa;
+}
+#ldqie_import_file:focus {
+    outline: none;
+}
+.import-form-wrapper input[type="submit"] {
+    background: #0073aa;
+    color: #fff;
+    outline: none;
+    border: 1px solid #0073aa;
+    border-radius: 2px;
+    padding: 8px;
+    cursor: pointer;
+}
+.ldqie-notice-success {
+    border: 1px solid #333;
+    border-radius: 4px;
+    background-color: #296b2f;
+    box-shadow: inset 0 0 1px 1px #fff;
+    padding: 4px 8px;
+    color: #fff;
+}
+.ldqie-notice-warning {
+    border: 1px solid #333;
+    border-radius: 4px;
+    background-color: #B22222;
+    box-shadow: inset 0 0 1px 1px #fff;
+    padding: 4px 8px;
+    color: #fff;
+}
+.ldqie-notice-success .notice-dismiss:active:before,
+.ldqie-notice-success .notice-dismiss:focus:before,
+.ldqie-notice-success .notice-dismiss:hover:before,
+.ldqie-notice-warning .notice-dismiss:active:before,
+.ldqie-notice-warning .notice-dismiss:focus:before,
+.ldqie-notice-warning .notice-dismiss:hover:before {
+    color: #fff;
+}
+.ldqie-notice-success a {
+    color: #fff;
+}
+.ldqie-notice-success a:hover,
+.ldqie-notice-success a:active,
+.ldqie-notice-success a:focus {
+    color: #fff;
+}
+.ldqie-btn {
+    background: #0073aa;
+    color: #fff;
+    outline: none;
+    border: 1px solid #0073aa;
+    border-radius: 4px;
+    padding: 5px 8px;
+    cursor: pointer;
+}
+.ldqie-btn:focus,
+.ldqie-btn:hover,
+.ldqie-btn:active {
+    background: #0073aa;
+    color: #fff;
+    outline: none;
+    border: 1px solid #0073aa;
+    border-radius: 4px;
+    padding: 5px 8px;
+    cursor: pointer;
+}
+td.column-export,
+td.column-import {
+    vertical-align: middle;
+}
+/* File Upload page CSS */
+*,
+.box :after,
+.box :before {
+    -webkit-box-sizing: border-box;
+    box-sizing: border-box;
+}
+.clearfix:before,
+.clearfix:after {
+    display: table;
+    content: '';
+}
+.clearfix:after {
+    clear: both;
+}
+.import-excel-page a {
+    outline: none;
+    color: #d3394c;
+    text-decoration: none;
+}
+.import-excel-page a:hover,
+.import-excel-page a:focus {
+    color: #722040;
+}
+.submit .import-btn
+{
+    width: 476px;
+    font-size: 18px;
+    height: 46px;
+}
+.import-excel-page .hidden {
+    position: absolute;
+    overflow: hidden;
+    width: 0;
+    height: 0;
+    pointer-events: none;
+}
+.import-excel-page .box {
+    background-color: rgba(0, 115, 170, 0.35);
+    padding: 4.25rem 0.1rem;
+}
+.import-excel-page .box + .box {
+    margin-top: 2.5rem;
+}
+/* Content */
+.import-excel-page .content {
+    width: 80%;
+    text-align: center;
+    margin: 0 auto;
+}
+.import-excel-page .content-full {
+    width: 100%;
+    text-align: center;
+    margin: 0 auto;
+}
+div.ld_qie_shared_question_default_message {
+    padding: 2em 0px;
+}
+.js .inputfile {
+    width: 0.1px;
+    height: 0.1px;
+    opacity: 0;
+    overflow: hidden;
+    position: absolute;
+    z-index: -1;
+}
+.inputfile + label {
+    max-width: 80%;
+    font-size: 1.25rem;
+    /* 20px */
+    font-weight: 700;
+    text-overflow: ellipsis;
+    white-space: nowrap;
+    cursor: pointer;
+    display: inline-block;
+    overflow: hidden;
+    padding: 0.625rem 1.25rem;
+    /* 10px 20px */
+}
+.no-js .inputfile + label {
+    display: none;
+}
+.inputfile:focus + label,
+.inputfile.has-focus + label {
+    outline: 1px dotted #000;
+    outline: -webkit-focus-ring-color auto 5px;
+}
+.inputfile + label * {
+    /* pointer-events: none; */
+    /* in case of FastClick lib use */
+}
+.inputfile + label svg {
+    width: 1em;
+    height: 1em;
+    vertical-align: middle;
+    fill: currentColor;
+    margin-top: -0.25em;
+    /* 4px */
+    margin-right: 0.25em;
+    /* 4px */
+}
+/* style 6 */
+.inputfile-6 + label {
+    color: #0073aa;
+}
+.inputfile-6 + label {
+    border: 1px solid #0073aa;
+    background-color: #f1e5e6;
+    padding: 0;
+}
+.inputfile-6:focus + label,
+.inputfile-6.has-focus + label,
+.inputfile-6 + label:hover {
+    border-color: #722040;
+}
+.inputfile-6 + label span,
+.inputfile-6 + label strong {
+    padding: 0.625rem 1.25rem;
+    /* 10px 20px */
+}
+.inputfile-6 + label span {
+    width: 200px;
+    min-height: 2em;
+    display: inline-block;
+    text-overflow: ellipsis;
+    white-space: nowrap;
+    overflow: hidden;
+    vertical-align: top;
+}
+.inputfile-6 + label strong {
+    height: 100%;
+    color: #f1e5e6;
+    background-color: #0073aa;
+    display: inline-block;
+}
+.inputfile-6:focus + label strong,
+.inputfile-6.has-focus + label strong,
+.inputfile-6 + label:hover strong {
+    background-color: #0073aa;
+}
+@media screen and (max-width: 50em) {
+    .inputfile-6 + label strong {
+        display: block;
+    }
+}
+#setting_tabs {
+    padding: 0px;
+    background: none;
+    border-width: 0px;
+}
+#setting_tabs.cs_ld_tabs {
+    padding: 20px 0;
+}
+#setting_tabs input,
+#setting_tabs textarea,
+#setting_tabs button {
+    vertical-align: bottom;
+    padding: 10px 12px;
+    -webkit-border-radius: 4px;
+    -moz-border-radius: 4px;
+    border-radius: 4px;
+}
+#setting_tabs .hint {
+    display: block;
+    margin: 5px 0;
+    color: #000;
+    opacity: 0.5;
+}
+#setting_tabs input.button-primary {
+    padding: 0 10px 1px;
+}
+#setting_tabs .setting-table-wrapper > table > tbody > tr > td {
+    padding-bottom: 15px;
+    padding-right: 15px;
+    vertical-align: top;
+}
+#setting_tabs .setting-table-wrapper > table > tbody > tr > td:first-child {
+    width: 30%;
+}
+#setting_tabs select[multiple] {
+    width: 40%;
+    padding: 8px;
+}
+.columns {
+    float: left;
+    width: 33.3%;
+    padding: 8px;
+}
+.price {
+    list-style-type: none;
+    border: 1px solid #eee;
+    margin: 0;
+    padding: 0;
+    -webkit-transition: 0.3s;
+    transition: 0.3s;
+}
+.price:hover {
+    box-shadow: 0 8px 12px 0 rgba(0,0,0,0.2);
+    cursor: pointer;
+}
+.price .header {
+    background-color: #111;
+    color: white;
+    font-size: 25px;
+}
+.price div {
+    border-bottom: 1px solid #eee;
+    padding: 20px;
+    text-align: center;
+    margin-bottom:0px !important;
+}
+.price .grey {
+    background-color: #eee;
+    font-size: 20px;
+}
+@media only screen and (max-width: 600px) {
+    .columns {
+        width: 100%;
+    }
+}
+.custom-fields-wrapper {
+    margin-top: 10px;
+    padding: 10px;
+    border: 1px solid #C2C2C2;
+}
+.custom-field-table {
+    width: 100%;
+    text-align: left;
+}
+.custom-field_dropDownEditBox {
+    position: absolute;
+    border: 1px solid #AFAFAF;
+    background: #EBEBEB;
+    padding: 5px;
+    bottom: 0;
+    right: 0;
+    box-shadow: 1px 1px 1px 1px #AFAFAF;
+    display: none;
+}
+.form_move {
+    cursor:move;
+}
+#setting_tabs .custom-fields-wrapper .button-secondary {
+    height: auto;
+    padding: 2px 8px;
+    vertical-align: middle;
+}
+#resultTextGrade{
+    height: auto;
+}
+#results_text_activation textarea {
+    width:100% !important;
+}
+.ldqi_bottom_bar{
+    margin-bottom: 5px;
+    background-color: rgb(207, 207, 207);
+    padding: 10px;
+    vertical-align: top !important;
+    line-height: 25px;
+}
+.ldqie_small_text{
+    height: 14px;
+    width: 50px;
+    border:1px solid #000;
+}
+.ldqie_lnk_btns{
+    float: right;
+    margin-left:5px !important
+}
+.ldqie-switch {
+    position: relative;
+    display: inline-block;
+    width: 50px;
+    height: 24px;
+}
+.ldqie-switch input {
+    opacity: 0;
+    width: 0;
+    height: 0;
+}
+.ldqie-switch .slider {
+    position: absolute;
+    cursor: pointer;
+    top: 0;
+    left: 0;
+    right: 0;
+    bottom: 0;
+    background-color: #ccc;
+    -webkit-transition: .4s;
+    transition: .4s;
+}
+.ldqie-switch .slider:before {
+    position: absolute;
+    content: "";
+    height: 16px;
+    width: 16px;
+    left: 4px;
+    bottom: 4px;
+    background-color: white;
+    -webkit-transition: .4s;
+    transition: .4s;
+}
+.ldqie-switch input:checked + .slider {
+    background-color: green;
+}
+.ldqie-switch input:focus + .slider {
+    box-shadow: 0 0 1px green;
+}
+.ldqie-switch input:checked + .slider:before {
+    -webkit-transform: translateX(26px);
+    -ms-transform: translateX(26px);
+    transform: translateX(26px);
+}
+/* Rounded sliders */
+.ldqie-switch .slider.round {
+    border-radius: 34px;
+}
+.ldqie-switch .slider.round:before {
+    border-radius: 50%;
+}
+#frm_ldqie input[type=number] {
+    height: auto;
+}
+.ldqie_sub_table {
+    width:100%;
+}
+body.ld-quiz-import_page_ldqie-settings .nav-tab-wrapper > a {
+    margin-left: 0 !important;
+}
+#setting_tabs .setting-table-wrapper .ldqie_sub_table table tr > td:first-child {
+    width: 30%;
+    padding-bottom: 15px;
+}
+#setting_tabs .setting-table-wrapper #showReviewQuestion_detail > table {
+    width: 100%;
+}
+#setting_tabs .setting-table-wrapper #showReviewQuestion_detail table tr > td:first-child {
+    width: 30%;
+}
+#setting_tabs .setting-table-wrapper #custom_sorting_detail > table {
+    width: 100%;
+}
+#setting_tabs .setting-table-wrapper #custom_sorting_detail table tr > td:first-child {
+    width: 30%;
+}
+#setting_tabs .setting-table-wrapper #custom_question_elements_detail > table {
+    width: 100%;
+}
+#setting_tabs .setting-table-wrapper #custom_question_elements_detail table tr > td:first-child {
+    width: 30%;
+}
+#setting_tabs .setting-table-wrapper #custom_result_data_display_detail > table {
+    width: 100%;
+}
+#setting_tabs .setting-table-wrapper #custom_result_data_display_detail table tr > td:first-child {
+    width: 30%;
+}
+#setting_tabs .setting-table-wrapper #custom_answer_feedback_detail > table {
+    width: 100%;
+}
+#setting_tabs .setting-table-wrapper #custom_answer_feedback_detail table tr > td:first-child {
+    width: 30%;
+}
+#setting_tabs .setting-table-wrapper #toplistActivated_detail > table {
+    width: 100%;
+}
+#setting_tabs .setting-table-wrapper #toplistActivated_detail table tr > td:first-child {
+    width: 30%;
+}
+#setting_tabs .setting-table-wrapper #statisticsOn_detail > table {
+    width: 100%;
+}
+#setting_tabs .setting-table-wrapper #statisticsOn_detail table tr > td:first-child {
+    width: 30%;
+}
+#setting_tabs .setting-table-wrapper #email_enabled_admin_detail {
+    width: 250px;
+}
+#setting_tabs .setting-table-wrapper #email_enabled_detail > table {
+    width: 100%;
+}
+#setting_tabs .setting-table-wrapper #email_enabled_detail table tr > td:first-child {
+    width: 30%;
+}
+#setting_tabs .setting-table-wrapper #advanced_settings_detail > table {
+    width: 100%;
+}
+#setting_tabs .setting-table-wrapper #advanced_settings_detail table tr > td:first-child {
+    width: 30%;
+}
+#setting_tabs .setting-table-wrapper #toplistDataShowIn_enabled_detail > table {
+    width: 100%;
+}
+#setting_tabs .setting-table-wrapper #toplistDataShowIn_enabled_detail table tr > td:first-child {
+    width: 30%;
+}
+#setting_tabs .setting-table-wrapper #ldqie_certificate_extra_opts > table {
+    width: 100%;
+}
+#setting_tabs .setting-table-wrapper #ldqie_certificate_extra_opts table tr > td:first-child {
+    width: 30%;
+}
+#setting_tabs .setting-table-wrapper #ldqie_retry_restrictions_extra_opts > table {
+    width: 100%;
+}
+#setting_tabs .setting-table-wrapper #ldqie_retry_restrictions_extra_opts table tr > td:first-child {
+    width: 30%;
+}
+.ld-quiz-import_page_ldqie-settings .wrap {
+    display: flex;
+    flex-wrap: wrap;
+}
+.ld-quiz-import_page_ldqie-settings .wrap .error {
+    width: 100%;
+}
+.ld-quiz-import_page_ldqie-settings .wrap .notice.is-dismissible {
+    width: 100%;
+}
+.ld-quiz-import_page_ldqie-settings .nav-tab-wrapper {
+    flex-direction: column;
+    display: flex;
+    flex-wrap: nowrap;
+    padding-top: 0;
+    width: 23%;
+}
+.ld-quiz-import_page_ldqie-settings .nav-tab-wrapper a.nav-tab {
+    border: none;
+    background: linear-gradient(to left, #00A0D2, #0073aa);
+    margin-bottom: 15px;
+    padding: 10px;
+    color: #fff;
+    text-transform: uppercase;
+    transition: 0.3s;
+    font-size: 12px;
+}
+.ld-quiz-import_page_ldqie-settings .nav-tab-wrapper a.nav-tab:hover {
+    background-color: #6741d9;
+    box-shadow: 0px 0px 10px #999;
+}
+.ld-quiz-import_page_ldqie-settings .nav-tab-wrapper a.nav-tab.nav-tab-active {
+    background: linear-gradient(to right, #eee, #fff);
+    color: #444;
+    box-shadow: 0px 0px 10px #999;
+}
+.ld-quiz-import_page_ldqie-settings #setting_tabs.cs_ld_tabs {
+    padding: 20px !important;
+    width: 75%;
+    background: #f9f9f9;
+    margin: 0 9px;
+}
+#setting_tabs.cs_ld_tabs .ldqie-switch input:checked + .slider {
+    background-color: #428bca;
+}
+#ld_qie_loader_spinner > p > img {
+    width: 50px;
+}
+#ld_qie_import_messages > .notice {
+    background-color: #f1f1f1;
+    color: #000;
+    width: 79%;
+    margin: 10px auto;
+}
+#ld_qie_import_messages > .notice > p > span > a {
+    margin-right: 10px;
+}
+#ld_qie_import_messages > .notice > p > span {
+    float: right;
+    font-weight: bold;
+    margin-left: 10px;
+}
+.box-wide{
+    width:100% !important;
+    margin:auto;
+    padding:1px !important;
+}
+#add_questions_table {
+    border: 1px solid #ccd0d4;
+}
+.ld_qie_table {
+    font-family: "Trebuchet MS", Arial, Helvetica, sans-serif;
+    border-collapse: collapse;
+    width: 100%;
+    font-size: 13px;
+}
+.ld_qie_table td, .ld_qie_table th {
+    border-bottom: 1px solid #999;
+    padding: 8px;
+    text-align: left;
+}
+.ld_qie_table tr:last-child > td{
+    border-bottom: 0px;
+}
+.ld_qie_table tr:nth-child(even){background-color: #f2f2f2;}
+.ld_qie_table tr:hover {background-color: #ddd;}
+.ld_qie_table th {
+    padding-top: 12px;
+    padding-bottom: 12px;
+    text-align: left;
+    background-color: #DDD;
+}
+.ld_qie_float_right {
+    float: right;
+}
+.ld_qie_float_left {
+    float: right;
+}
+.ld_qie_clear {
+    clear: both;
+}
+/**SPINNER START**/
+.ld_qie_spinner {
+    position: absolute;
+    left: 45%;
+    top: 50%;
+    height:100px;
+    width:100px;
+    margin:0px auto;
+    -webkit-animation: rotation .6s infinite linear;
+    -moz-animation: rotation .6s infinite linear;
+    -o-animation: rotation .6s infinite linear;
+    animation: rotation .6s infinite linear;
+    border-left:6px solid rgba(0,174,239,.15);
+    border-right:6px solid rgba(0,174,239,.15);
+    border-bottom:6px solid rgba(0,115,170,.8);
+    border-top:6px solid rgba(0,174,239,.8);
+    border-radius:100%;
+}
+@-webkit-keyframes rotation {
+    from {-webkit-transform: rotate(0deg);}
+    to {-webkit-transform: rotate(359deg);}
+}
+@-moz-keyframes rotation {
+    from {-moz-transform: rotate(0deg);}
+    to {-moz-transform: rotate(359deg);}
+}
+@-o-keyframes rotation {
+    from {-o-transform: rotate(0deg);}
+    to {-o-transform: rotate(359deg);}
+}
+@keyframes rotation {
+    from {transform: rotate(0deg);}
+    to {transform: rotate(359deg);}
+}
+/**SPINNER END**/
+#ld_qie_search_box {
+    width: 50%;
+    margin: 10px auto;
+}
+#ld_qie_content_wrap {
+    position: relative;
+    padding: 10px;
+}
+#ld_qie_loader_spinner {
+    position: absolute;
+    top:0px;
+    left:0px;
+    width: 100%;
+    height: 100%;
+    opacity: .5;
+    z-index: 999999;
+}
+/* Quiz listing table elements width */
+#ld_qie_quiz_listing_table .ld_qie_table td, .ld_qie_table th {
+    padding: 8px;
+}
+#ld_qie_quiz_listing_table .ld_qie_table td {
+    width: 20%;
+}
+#ld_qie_quiz_listing_table .ld_qie_table td:first-child {
+    width: 3%;
+}
+#ld_qie_quiz_listing_table .ld_qie_table td:nth-child(3), #ld_qie_quiz_listing_table .ld_qie_table tr td:last-child {
+    width: 5%;
+}
+#ld_qie_quiz_listing_table .ld_qie_table td:nth-child(3) input, #ld_qie_quiz_listing_table .ld_qie_table tr td:last-child input {
+    width: 60px;
+}
+#ld_qie_quiz_listing_table .ld_qie_table .select2.select2-container.select2-container--default {
+    width: 229px !important;
+}
+/* Quiz listing table elements width */
+/* Pagination Classes */
+.ld_qie_pagination {
+    display:inline-block;
+    padding-left:0;
+    margin:20px 0;
+    border-radius:4px
+}
+.ld_qie_pagination>li {
+    display:inline
+}
+.ld_qie_pagination>li>a,
+.ld_qie_pagination>li>span {
+    position:relative;
+    float:left;
+    padding:6px 12px;
+    margin-left:-1px;
+    line-height:1.42857143;
+    color:#337ab7;
+    text-decoration:none;
+    background-color:#fff;
+    border:1px solid #ddd
+}
+.ld_qie_pagination>li:first-child>a,
+.ld_qie_pagination>li:first-child>span {
+    margin-left:0;
+    border-top-left-radius:4px;
+    border-bottom-left-radius:4px
+}
+.ld_qie_pagination>li:last-child>a,
+.ld_qie_pagination>li:last-child>span {
+    border-top-right-radius:4px;
+    border-bottom-right-radius:4px
+}
+.ld_qie_pagination>li>a:focus,
+.ld_qie_pagination>li>a:hover,
+.ld_qie_pagination>li>span:focus,
+.ld_qie_pagination>li>span:hover {
+    z-index:2;
+    color:#23527c;
+    background-color:#eee;
+    border-color:#ddd
+}
+.ld_qie_pagination>.active>a,
+.ld_qie_pagination>.active>a:focus,
+.ld_qie_pagination>.active>a:hover,
+.ld_qie_pagination>.active>span,
+.ld_qie_pagination>.active>span:focus,
+.ld_qie_pagination>.active>span:hover {
+    z-index:3;
+    color:#fff;
+    cursor:default;
+    background-color:#337ab7;
+    border-color:#337ab7
+}
+.ld_qie_pagination>.disabled>a,
+.ld_qie_pagination>.disabled>a:focus,
+.ld_qie_pagination>.disabled>a:hover,
+.ld_qie_pagination>.disabled>span,
+.ld_qie_pagination>.disabled>span:focus,
+.ld_qie_pagination>.disabled>span:hover {
+    color:#777;
+    cursor:not-allowed;
+    background-color:#fff;
+    border-color:#ddd
+}
+.ld_qie_pagination-lg>li>a,
+.ld_qie_pagination-lg>li>span {
+    padding:10px 16px;
+    font-size:18px;
+    line-height:1.3333333
+}
+.ld_qie_pagination-lg>li:first-child>a,
+.ld_qie_pagination-lg>li:first-child>span {
+    border-top-left-radius:6px;
+    border-bottom-left-radius:6px
+}
+.ld_qie_pagination-lg>li:last-child>a,
+.ld_qie_pagination-lg>li:last-child>span {
+    border-top-right-radius:6px;
+    border-bottom-right-radius:6px
+}
+.ld_qie_pagination-sm>li>a,
+.ld_qie_pagination-sm>li>span {
+    padding:5px 10px;
+    font-size:12px;
+    line-height:1.5
+}
+.ld_qie_pagination-sm>li:first-child>a,
+.ld_qie_pagination-sm>li:first-child>span {
+    border-top-left-radius:3px;
+    border-bottom-left-radius:3px
+}
+.ld_qie_pagination-sm>li:last-child>a,
+.ld_qie_pagination-sm>li:last-child>span {
+    border-top-right-radius:3px;
+    border-bottom-right-radius:3px
+}
+.ld_qie_pagination li:hover{
+    cursor: pointer;
+}
+/* Pagination Classes */
+/* Buttons Classes */
+.ld-qie-button {
+    font-size: 1rem !important;
+}
+.ld-qie-button span.dashicons {
+    line-height: 38px;
+    margin-left: -5px;
+}
+.ld-qie-button span.dashicons.no-left-margin {
+    margin-left: 0 !important;
+}
+/* Buttons Classes */
+/* Add existing questions table elements width */
+#add_questions_table .ld_qie_table td, .ld_qie_table th {
+    padding: 8px;
+}
+#add_questions_table .ld_qie_table td {
+    width: 15%;
+}
+#add_questions_table .ld_qie_table td:first-child, #add_questions_table .ld_qie_table td:last-child {
+    width: 3%;
+}
+#add_questions_table .ld_qie_table td:nth-child(3), #add_questions_table .ld_qie_table td:nth-child(5) {
+    width: 5%;
+}
+#add_questions_table .ld_qie_table td:nth-child(6) {
+    width: 52%;
+}
+#add_questions_table .ld_qie_table .select2.select2-container.select2-container--default {
+    width: 100% !important;
+}
+#add_questions_table abbr {
+    cursor: help;
+}
+/* Quiz listing table elements width */
+/* Import progress elements */
+#ld_qie_progress_bar {
+    display: none;
+    height: 50px;
+    background-color: #2f7900;
+}
+#ld_qie_progress {
+    width: 100%;
+    background-color: #ddd;
+    height: 30px;
+}
+#ld_qie_bar {
+    height: 30px;
+    background-color: #4CAF50;
+    text-align: center; /* To center it horizontally (if you want) */
+    line-height: 30px; /* To center it vertically */
+    color: white;
+}
+#ld_qie_bar > span {
+    padding: 0px 5px;
+}
+#ld_qie_import_logs {
+    font-family: Consolas,Monaco,monospace;
+    background: #e0e0e0;
+    width: 100%;
+    height: 300px;
+    padding: 5px;
+    margin-top: 10px;
+    overflow-y: auto;
+}
+span.ld_qie_import_log_error {
+    color: red;
+}
+/* Import progress elements */
+/** Debug Log **/
+.ld-qie-error-logs .copy-button-wrapper {
+    margin: 10px 0;
+}
+.ld-qie-error-logs .ld-qie-code-box {
+    background: rgba(255,255,255,.5);
+    border-color: rgba(220,220,222,.75);
+    box-shadow: inset 0 1px 2px rgba(0,0,0,.04);
+    color: rgba(44,51,56,.5);
+}
+/** Debug Log **/
+/** Highlight Error Effect **/
+.wn-notice-error.wn-license-error {
+    animation: wn-notice-error-highlight 500ms ease-out 500ms;
+}
+@keyframes wn-notice-error-highlight {
+    from {
+        background-color: red;
+    }
+}
+/** Highlight Error Effect **/
+/** License Tab **/
+.wn-license-activated-icon {
+    color: green; font-size:2em
+}
+/** License Tab **/
+/** Select2 **/
+#ld_qie_setting_quiz_select,
+#ld_qie_question_search,
+#ld_qie_search_box .select2.select2-container.select2-container--default {
+    width: 80% !important;
+    max-width: 80% !important;
+}
+/** Select2 **/
+#icon-badgeos_badgeos{background-image:url('../images/badgeos_screen_icon.png')}li.step-row{background:#fff;border-radius:5px;border:1px solid #ddd;padding:5px 10px}.badgeos-user-earned-achievements-admin-block,.badgeos-user-earned-ranks-admin-block{color:#444;font-family:-apple-system,BlinkMacSystemFont,"Segoe UI",Roboto,Oxygen-Sans,Ubuntu,Cantarell,"Helvetica Neue",sans-serif;font-size:13px;line-height:1.4em}li.step-row .step-handle{display:block;background:url('../images/ui_handle.png');width:7px;height:4em;margin:5px 10px 5px 0;position:relative;float:left}li.step-row .required-duration{text-align:right}li.step-row .step-title{display:block;padding-top:5px}li.step-row .title{width:300px}li.step-row .delete-step{position:relative;float:right;line-height:4.5em}.badgeos-table th{font-weight:700;padding:8px 10px;text-transform:uppercase}.badgeos-table a.error{color:#a00}.badgeos-license-status{background:#eee;color:#333;padding:3px 8px;border:1px solid #ddd;border-radius:3px}.badgeos-license-status.failed,.badgeos-license-status.invalid{background:#faa;border-color:#a55;color:#a00}.badgeos-license-status.active,.badgeos-license-status.valid{background:#ac7;border-color:#7a5;color:#250}.badgeos-addons .addon{display:block;background:#fafafa;border:1px solid #eee;padding:1em;margin:0 1em 1em 0;min-width:200px;max-width:25%;position:relative;float:left}.badgeos-addons .addon:nth-child(3n+4){clear:both}.badgeos-addons .addon .thumbnail-link{display:block;margin:0 auto;width:200px;height:200px;text-align:center}.badgeos-addons .addon img{max-width:100%}.wp-core-ui a.badgeos_media_link,.wp-core-ui a.badgeos_media_link:hover{background:url('../images/badgeos_icon.png') 4% 50% no-repeat;padding-left:1.8em}.badgeos_input{-moz-box-sizing:border-box;-webkit-box-sizing:border-box;box-sizing:border-box;padding:5px;width:50%}.badgeos_input>div{margin:5px 0}#shortcode_options{margin-top:10px;min-height:100%;overflow:auto;padding-top:10px;width:100%}#shortcode_options label{font-weight:700}#shortcode_options span{font-style:italic}.odd{clear:both}.clear{clear:both}#select2-drop{z-index:100051}#delete_log_entries{margin:2px 8px 0 0}.delete-log-entries.notice img{vertical-align:middle}#revoke-badges-loader{width:25px;margin-left:20px;display:none}.form-table td.bulk-delete-detail{padding-left:20px}.profile-php .earned-user-credits-wrapper,.user-edit-php .earned-user-credits-wrapper{width:100%;overflow:hidden;margin-bottom:30px;margin-top:30px}.profile-php .earned-user-credits-wrapper .badgeos-credits,.user-edit-php .earned-user-credits-wrapper .badgeos-credits{border:1px solid #e8e8e8;position:relative}.profile-php .earned-user-credits-wrapper .badgeos-credits .badgeos-credit-edit,.user-edit-php .earned-user-credits-wrapper .badgeos-credits .badgeos-credit-edit{position:absolute;right:15px;top:15px;cursor:pointer;color:#0073aa}.profile-php .earned-user-credits-wrapper .badgeos-credits .badgeos-edit-credit-wrapper,.user-edit-php .earned-user-credits-wrapper .badgeos-credits .badgeos-edit-credit-wrapper{padding:9px 0}.profile-php .earned-user-credits-wrapper .badgeos-credits .badgeos-earned-credit,.user-edit-php .earned-user-credits-wrapper .badgeos-credits .badgeos-earned-credit{padding:15px 0}.profile-php .earned-user-credits-wrapper .badgeos-credits h3,.user-edit-php .earned-user-credits-wrapper .badgeos-credits h3{margin:0}.profile-php .earned-user-credits-wrapper .badgeos-credits:nth-child(odd),.user-edit-php .earned-user-credits-wrapper .badgeos-credits:nth-child(odd){width:40%;margin:20px 2%;float:left;padding:1%;box-shadow:1px 1px 3px 2px #ccc;background-color:#fff}.profile-php .earned-user-credits-wrapper .badgeos-credits:nth-child(even),.user-edit-php .earned-user-credits-wrapper .badgeos-credits:nth-child(even){width:40%;margin:20px 2%;float:right;padding:1%;box-shadow:1px 1px 3px 2px #ccc;background-color:#fff}.profile-php .badgeos-rank-table .revoke-rank,.user-edit-php .badgeos-rank-table .revoke-rank{cursor:pointer;color:#a00}.profile-php .badgeos-rank-table .award-rank,.user-edit-php .badgeos-rank-table .award-rank{cursor:pointer;color:#0073aa}.profile-php .badgeos-achievement-table,.profile-php .badgeos-rank-table,.user-edit-php .badgeos-achievement-table,.user-edit-php .badgeos-rank-table{border-top:1px solid #e8e8e8;border-bottom:1px solid #e8e8e8;box-shadow:0 0 1px 2px #e8e8e8;margin-bottom:30px}.profile-php .badgeos-achievement-table thead,.profile-php .badgeos-rank-table thead,.user-edit-php .badgeos-achievement-table thead,.user-edit-php .badgeos-rank-table thead{border-bottom:1px solid #e8e8e8;padding:10px}.profile-php .badgeos-achievement-table tfoot,.profile-php .badgeos-rank-table tfoot,.user-edit-php .badgeos-achievement-table tfoot,.user-edit-php .badgeos-rank-table tfoot{border-top:1px solid #e8e8e8;padding:10px}.profile-php .badgeos-achievement-table th,.profile-php .badgeos-rank-table th,.user-edit-php .badgeos-achievement-table th,.user-edit-php .badgeos-rank-table th{padding:10px;background-color:#f6f6f6}.profile-php .badgeos-achievement-table td,.profile-php .badgeos-rank-table td,.user-edit-php .badgeos-achievement-table td,.user-edit-php .badgeos-rank-table td{padding:10px}.profile-php .badgeos-achievement-table tbody tr:nth-child(odd),.profile-php .badgeos-rank-table tbody tr:nth-child(odd),.user-edit-php .badgeos-achievement-table tbody tr:nth-child(odd),.user-edit-php .badgeos-rank-table tbody tr:nth-child(odd){background-color:#fff}.profile-php .badgeos-achievement-table .revoke-achievement,.profile-php .badgeos-rank-table .revoke-rank,.user-edit-php .badgeos-achievement-table .revoke-achievement,.user-edit-php .badgeos-rank-table .revoke-rank{cursor:pointer;color:#a00}.profile-php .badgeos-achievement-table .award-achievement,.profile-php .badgeos-rank-table .award-rank,.user-edit-php .badgeos-achievement-table .award-achievement,.user-edit-php .badgeos-rank-table .award-rank{cursor:pointer;color:#0073aa}.profile_ranks_last_award_field{font-size:20px!important;font-weight:bolder}.badgeos-migration-form-table td{margin-left:3px;padding:7px}.badgeos-migration-form-table h3{margin:0;padding:0}.ui-tabs-vertical{width:100%}.ui-tabs-vertical .ui-tabs-nav{float:left;width:25%}.ui-tabs-vertical .ui-tabs-nav li{clear:left;width:100%;border-bottom-width:1px!important;border-right-width:0!important;margin:0 -1px .2em 0;display:block}.ui-tabs-vertical .ui-tabs-nav li a{display:block;width:100%;padding:8px 0!important}.ui-tabs-vertical .ui-tabs-nav li.ui-tabs-active{padding-bottom:0;padding-right:.1em;border-right-width:1px}.ui-tabs-vertical .ui-tabs-panel{padding:1em;float:right;width:calc(75% - 2px)}#badgeos-setting-tabs .ui-tabs-panel{padding:1em;float:right;width:calc(72% - 3px)}#badgeos-setting-tabs td,th{font-size:14px;text-align:left;vertical-align:top}#achievement-tabs,#badgeos-setting-tabs,#credit-tabs,#email-tabs,#rank-tabs,#system-tabs{margin-top:20px;background-color:#f6f6f6;border-color:#ccc;box-shadow:0 0 1px 2px #e8e8e8;padding:0}#achievement-tabs .tab-title,#badgeos-setting-tabs .tab-title,#credit-tabs .tab-title,#email-tabs .tab-title,#rank-tabs .tab-title,#system-tabs .tab-title{padding:10px;font-size:15px;font-weight:700;border-bottom:1px solid #ccc;background-color:#f6f6f6}#achievement-tabs.ui-tabs-vertical .ui-tabs-nav,#badgeos-setting-tabs.ui-tabs-vertical .ui-tabs-nav,#credit-tabs.ui-tabs-vertical .ui-tabs-nav,#email-tabs.ui-tabs-vertical .ui-tabs-nav,#rank-tabs.ui-tabs-vertical .ui-tabs-nav,#system-tabs.ui-tabs-vertical .ui-tabs-nav{padding:0!important;margin:0!important;border:none!important;-webkit-border-radius:0!important;-moz-border-radius:0!important;border-radius:0!important}#achievement-tabs.ui-tabs-vertical .ui-tabs-nav li a,#badgeos-setting-tabs.ui-tabs-vertical .ui-tabs-nav li a,#credit-tabs.ui-tabs-vertical .ui-tabs-nav li a,#email-tabs.ui-tabs-vertical .ui-tabs-nav li a,#rank-tabs.ui-tabs-vertical .ui-tabs-nav li a,#system-tabs.ui-tabs-vertical .ui-tabs-nav li a{padding:8px 2%!important;width:96%!important}#achievement-tabs.ui-tabs-vertical .ui-tabs-nav li,#badgeos-setting-tabs.ui-tabs-vertical .ui-tabs-nav li,#credit-tabs.ui-tabs-vertical .ui-tabs-nav li,#email-tabs.ui-tabs-vertical .ui-tabs-nav li,#rank-tabs.ui-tabs-vertical .ui-tabs-nav li,#system-tabs.ui-tabs-vertical .ui-tabs-nav li{background-color:#f6f6f6;border:none;-webkit-border-radius:0;-moz-border-radius:0;border-radius:0;border-bottom:1px solid #ccc;padding:0;margin-bottom:0}#achievement-tabs.ui-tabs-vertical .ui-tabs-nav li.ui-tabs-active,#badgeos-setting-tabs.ui-tabs-nav li.ui-tabs-active,#credit-tabs.ui-tabs-vertical .ui-tabs-nav li.ui-tabs-active,#email-tabs.ui-tabs-vertical .ui-tabs-nav li.ui-tabs-active,#rank-tabs.ui-tabs-vertical .ui-tabs-nav li.ui-tabs-active,#system-tabs.ui-tabs-vertical .ui-tabs-nav li.ui-tabs-active{background-color:#fff;border:none;-webkit-border-radius:0;-moz-border-radius:0;border-radius:0;border-bottom:1px solid #ccc;padding:0}#achievement-tabs.ui-tabs-vertical .ui-tabs-nav li.ui-tabs-active a,#badgeos-setting-tabs.ui-tabs-vertical .ui-tabs-nav li.ui-tabs-active a,#credit-tabs.ui-tabs-vertical .ui-tabs-nav li.ui-tabs-active a,#email-tabs.ui-tabs-vertical .ui-tabs-nav li.ui-tabs-active a,#rank-tabs.ui-tabs-vertical .ui-tabs-nav li.ui-tabs-active a,#system-tabs.ui-tabs-vertical .ui-tabs-nav li.ui-tabs-active a{color:#000}#achievement-tabs.ui-tabs-vertical .ui-tabs-nav li:focus,#badgeos-setting-tabs.ui-tabs-vertical .ui-tabs-nav li:focus,#credit-tabs.ui-tabs-vertical .ui-tabs-nav li:focus,#email-tabs.ui-tabs-vertical .ui-tabs-nav li:focus,#rank-tabs.ui-tabs-vertical .ui-tabs-nav li:focus,#system-tabs.ui-tabs-vertical .ui-tabs-nav li:focus{border:none!important;outline:0!important;box-shadow:none!important}#achievement-tabs.ui-tabs-vertical .ui-tabs-nav li a:focus,#badgeos-setting-tabs.ui-tabs-vertical .ui-tabs-nav li a:focus,#credit-tabs.ui-tabs-vertical .ui-tabs-nav li a:focus,#email-tabs.ui-tabs-vertical .ui-tabs-nav li a:focus,#rank-tabs.ui-tabs-vertical .ui-tabs-nav li a:focus,#system-tabs.ui-tabs-vertical .ui-tabs-nav li a:focus{border:none!important;outline:0!important;box-shadow:none!important}#achievement_bulk_award,#achievement_bulk_revoke,#badgeos_info,#badgeos_tools_email_achievement_steps,#badgeos_tools_email_achievements,#badgeos_tools_email_general,#badgeos_tools_email_point_awards,#badgeos_tools_email_point_deducts,#badgeos_tools_email_rank_steps,#badgeos_tools_email_ranks,#credit_bulk_award,#credit_bulk_revoke,#php_config,#rank_bulk_award,#rank_bulk_revoke,#server_info,#wordpress_info{background-color:#fff;padding:0!important;border-left:1px solid #ccc}#achievement_bulk_award form,#achievement_bulk_revoke form,#badgeos_tools_email_achievement_steps,#badgeos_tools_email_achievements,#badgeos_tools_email_general,#badgeos_tools_email_point_awards,#badgeos_tools_email_point_deducts,#badgeos_tools_email_rank_steps,#badgeos_tools_email_ranks,#credit_bulk_award form,#credit_bulk_revoke form,#rank_bulk_award form,#rank_bulk_revoke form{padding:20px}#badgeos_info table,#php_config table,#server_info table,#wordpress_info table{padding:20px;width:100%;text-align:left}#badgeos_info table tr:nth-child(even),#php_config table tr:nth-child(even),#server_info table tr:nth-child(even),#wordpress_info table tr:nth-child(even){text-align:left;background:#fff}#badgeos_info table tr:nth-child(odd),#php_config table tr:nth-child(odd),#server_info table tr:nth-child(odd),#wordpress_info table tr:nth-child(odd){text-align:left;background:#f6f6f6}#badgeos_info table tr th,#php_config table tr th,#server_info table tr th,#wordpress_info table tr th{width:35%}#badgeos_info table tr td,#badgeos_info table tr th,#php_config table tr td,#php_config table tr th,#server_info table tr td,#server_info table tr th,#wordpress_info table tr td,#wordpress_info table tr th{padding:10px}#achievement_bulk_award form table,#achievement_bulk_revoke form table,#credit_bulk_award form table,#credit_bulk_revoke form table,#rank_bulk_award form table,#rank_bulk_revoke form table{width:100%}.badgeos-wp_page_badgeos_tools form table tr th{width:35%!important}.badgeos-wp_page_badgeos_tools form table tr td{width:65%!important}.badgeos-wp_page_badgeos_tools form table tr td span input,.badgeos-wp_page_badgeos_tools form table tr td span>span.selection{width:100%!important}.badgeos-wp_page_badgeos_tools form table tr td>input,.badgeos-wp_page_badgeos_tools form table tr td>select{width:80%;padding:20px;-webkit-border-radius:4px;-moz-border-radius:4px;border-radius:4px;height:45px!important}.badgeos-wp_page_badgeos_tools form table tr td,.badgeos-wp_page_badgeos_tools form table tr th{border-bottom:1pt solid #e5e5e5;padding:20px 0}#achievement-tabs .button,#badgeos-setting-tabs .button,#credit-tabs .button,#email-tabs .button,#rank-tabs .button{margin:20px 0;float:right}#achievement-tabs .tool-hint,#badgeos-setting-tabs .tool-hint,#credit-tabs .tool-hint,#email-tabs .tool-hint,#rank-tabs .tool-hint{display:block;color:#aaa;margin:5px 0}.badgeos-wp_page_badgeos_tools .select2-container .select2-search--inline .select2-search__field{margin-top:12px}#credit_types_to_award,#credit_types_to_revoke{padding:12px;line-height:normal;height:auto}#achievement_bulk_award form table tr td,#achievement_bulk_revoke form table tr th,#badgeos_tools_email_achievement_steps form table tr th,#badgeos_tools_email_achievements form table tr th,#badgeos_tools_email_general form table tr th,#badgeos_tools_email_point_awards form table tr th,#badgeos_tools_email_point_deducts form table tr th,#badgeos_tools_email_rank_steps form table tr th,#badgeos_tools_email_ranks form table tr th,#credit_bulk_award form table tr td,#credit_bulk_award form table tr th,#credit_bulk_revoke form table tr td,#credit_bulk_revoke form table tr th,#rank_bulk_award form table tr th,#rank_bulk_revoke form table tr td{padding-bottom:20px}#achievement_bulk_award form table tr th,#achievement_bulk_revoke form table tr th,#badgeos_tools_email_achievement_steps form table tr th,#badgeos_tools_email_achievements form table tr th,#badgeos_tools_email_general form table tr th,#badgeos_tools_email_point_awards form table tr th,#badgeos_tools_email_point_deducts form table tr th,#badgeos_tools_email_rank_steps form table tr th,#badgeos_tools_email_ranks form table tr th,#credit_bulk_award form table tr th,#credit_bulk_revoke form table tr th,#rank_bulk_award form table tr th,#rank_bulk_revoke form table tr th{vertical-align:top;text-align:left;width:40%}#achievement_bulk_award form table tr td .select2-selection,#achievement_bulk_revoke form table tr td .select2-selection,#badgeos_tools_email_achievement_steps form table tr td .select2-selection,#badgeos_tools_email_achievements form table tr td .select2-selection,#badgeos_tools_email_general form table tr td .select2-selection,#badgeos_tools_email_point_awards form table tr td .select2-selection,#badgeos_tools_email_point_deducts form table tr td .select2-selection,#badgeos_tools_email_rank_steps form table tr td .select2-selection,#badgeos_tools_email_ranks form table tr td .select2-selection,#credit_bulk_award form table tr td .select2-selection,#credit_bulk_revoke form table tr td .select2-selection,#rank_bulk_award form table tr td .select2-selection,#rank_bulk_revoke form table tr td .select2-selection{border:1px solid #ddd;max-width:70%;padding:6px 8px}#badgeos_tools_email_achievement_steps form,#badgeos_tools_email_achievements form,#badgeos_tools_email_general form,#badgeos_tools_email_point_awards form,#badgeos_tools_email_point_deducts form,#badgeos_tools_email_rank_steps form,#badgeos_tools_email_ranks form{padding:20px}#TB_window.badgeos-shortcode-thickbox #TB_ajaxContent{overflow-y:auto!important;overflow-x:hidden}#TB_window.badgeos-shortcode-thickbox #TB_ajaxContent .wrap{padding:10px}#TB_window.badgeos-shortcode-thickbox #TB_ajaxContent .wrap .select2-selection__rendered{border:1px solid #ddd;box-shadow:0 0 5px 0 #ddd}#TB_window.badgeos-shortcode-thickbox #TB_ajaxContent .wrap .badgeos_input:nth-child(even){clear:left}#TB_window.badgeos-shortcode-thickbox #TB_ajaxContent #shortcode_options,#TB_window.badgeos-shortcode-thickbox #TB_ajaxContent #shortcode_options>div{clear:left;width:100%}#ldqie_normal_progress_loader{margin:10px auto}#badgeos_ob_normal_progress_bar{width:50%;margin:10px auto}.ui-progressbar{position:relative}.progress-label{position:absolute;left:43%;top:4px;font-weight:700;text-shadow:1px 1px 0 #fff}.badgeos_settings_license_tab{vertical-align:top;padding:10px}.badgeos_item{box-shadow:0 8px 38px 0 rgba(16,16,16,.07);background:#fff;max-width:30%;margin:auto;padding:15px 20px 0;text-align:center;font-family:inherit;width:27%;margin:20px 22px 0 0;float:left}.badgeos_item button{border:none;outline:0;padding:12px;color:#0073aa;background-color:transparent;text-align:center;cursor:pointer;width:100%;font-size:18px}.badgeos_item button:hover{opacity:.7}.badgeos_assets_info_log_content a{display:none}.badgeos_assets_info_log{display:none;margin:10px}.badgeos_assets_info_log_content{padding:10px;overflow:scroll;width:400px;height:300px}.badgeos_download_asset_success_message{font-size:11px;background-color:green;color:#fff;border-radius:5px;padding:5px;margin:5px}.badgeos_download_asset_failed_message{font-size:11px;background-color:red;color:#fff;border-radius:5px;padding:5px;margin:5px}.badgeos_item .badgeos-item-description{text-align:left;font-weight:300;padding:10px;max-height:60px;height:60px}.badgeos-assets-message-divs{max-height:90px;height:90px;overflow:hidden}.badgeos_item .badgeos-item-button{text-align:center}.badgeos-assets-image{display:-webkit-box;display:-moz-box;display:-ms-flexbox;display:-webkit-flex;display:flex;-webkit-align-items:center;-ms-flex-align:center;align-items:center;max-height:180px;overflow:hidden;height:180px;width:200px;margin-left:auto;margin-right:auto}.badgeos-welcome-container{max-width:calc(100% - 161px);width:100%;margin-left:80px;margin-top:32px}.badgeos-welcome-site-inner{max-width:1290px;margin:0 auto;overflow:hidden}.badgeos_dashboard_heading{display:flex;margin:35px 0;align-items:center}.badgeos_dashboard_heading .badgeos_dashboard_title{display:flex;align-items:baseline}.badgeos_dashboard_heading .badgeos_dashboard_title h1{margin:0 20px;font-size:48px}.badgeos_dashboard_heading .badgeos_dashboard_title span{font-size:22px}.badgeos_dashboard_heading img{width:89px}.badgeos_welcome_addons_list .badgeos_welcome_addons_list_ul{margin:0;padding:0}.badgeos_welcome_addons_list .multiple{list-style-type:none;background:#fff;width:30%;display:inline-block}.badgeos_welcome_addons_list .slick-prev{display:block!important;position:absolute;right:100px!important;top:-27px;left:auto}.badgeos_welcome_addons_list .slick-prev:before{color:#222;font-size:20px;content:"\f053";font-family:fontAwesome}.badgeos_welcome_addons_list .slick-next{display:block!important;position:absolute;right:24px;top:-27px}.badgeos_welcome_addons_list .slick-next:before{color:#222;font-size:20px;content:"\f054";font-family:fontAwesome}.badgeos_welcome_addon img{width:100%}.badgeos_welcome_addon{display:flex;padding:1em;border:1px solid #ccc;min-height:17em;height:17em}.badgeos_welcome_addons_panel{margin-bottom:55px}.badgeos_welcome_on_content{font-family:Arial,Helvetica,sans-serif;padding-left:20px}.badgeos_welcome_on_content .badgeos_add-on_name{color:#ed1f6e;font-size:20px;line-height:1.5}.badgeos_addon_welcome_btn{text-align:center}.badgeos_addon_welcome_btn a{font-family:Open Sans,sans-serif;padding:.5em 1em;font-size:12px;white-space:nowrap;background-color:#f7f7f7;color:#000;border:1px solid #adadad}.badgeos_assets_list .slick-prev{display:block!important;position:absolute;right:100px!important;top:-27px;left:auto}.badgeos_assets_list .slick-prev:before{color:#222;font-size:20px;content:"\f053";font-family:fontAwesome}.badgeos_assets_list .slick-next{display:block!important;position:absolute;right:24px;top:-27px}.badgeos_assets_list .slick-next:before{color:#222;font-size:20px;content:"\f054";font-family:fontAwesome}.badgeos_assets_panel{margin-bottom:55px}.badgeos_assets_list ul{margin:0;padding:0}.badgeos_asset{text-align:center;padding:2em 0;border:1px solid #ccc;background-color:#fff}.badgeos_asset img{width:65%}.badgeos_asset_content{font-family:Arial,Helvetica,sans-serif;padding:20px}.badgeos_asset_content .badgeos_asset_name{font-size:22px;line-height:2.2}.badgeos_asset_desc button{font-family:Open Sans,sans-serif;padding:.5em 2em}.badgeos_quick_links{background:#fff;padding:1em;border:1px solid #000;margin-bottom:55px}.badgeos_quick_links ul{padding:0;margin:0}.badgeos_quick_links ul li{list-style-type:none;line-height:2.2}.badgeos_need_help,.badgeos_please_rate{background:#fff;padding:1em;border:1px solid #000;margin-bottom:55px}.bos-need-help{width:120px}.badgeos_need_help p,.badgeos_please_rate p{font-size:inherit}.badgeos_please_rate{background:#fff;padding:1em;border:1px solid #000;margin-bottom:55px}.badgeos_please_rate p{font-size:inherit}@media only screen and (min-width:180px) and (max-width:759px){.badgeos-welcome-container{max-width:calc(100% - 0px);margin-left:0}.badgeos_welcome_addon{display:block;height:auto}.badgeos_welcome_on_content{margin-top:25px}.badgeos_dashboard_heading{margin-bottom:35px}.badgeos_dashboard_heading .badgeos_dashboard_title{display:block;margin:0 20px}.badgeos_dashboard_heading .badgeos_dashboard_title span{line-height:4;margin:0 20px}}.badgeos_please_rate .badgeos-btn-need-help{width:140px}@media only screen and (min-width:1200px) and (max-width:1300px){.badgeos_welcome_addon .badgeos_add_on_desc p{font-size:11px}.badgeos_welcome_addon{height:17em}}

badgeos/trunk/css/badgeos-front.css

-                      r2687784
+                      r2765251
 *  List view of BadgeOS Achievements List, Earned Achievements List, Rank List,
 **/
+.badgeos-item-image a img{
+    max-width: none !important;
+}
+.badgeos-points-image img{
+    max-width: none !important;
+}
 .list .badgeos-list-item {
     clear: both;
 …
     width: 30%;
     margin: 20px 2%;
     float: left;
+    /*float: left;*/
     padding: 1%;
     box-shadow: 1px 1px 3px 2px #ccc;

badgeos/trunk/css/badgeos-front.min.css

r2448573	r2765251
1		.achievement-template-part{border:#fff 1px solid;border-width:1px;border-style:solid;padding:.6em .6em;margin:5px 0 15px;background-color:#ddd;border-color:#999;color:#000;clear:both}#badgeos-achievements-filter{float:left;margin-bottom:1em}#badgeos-achievements-search,.badgeos-feedback-search{margin-right:5px;margin-bottom:1em;float:right}#achievements_list_load_more,#badgeos-achievements-container,#badgeos-achievements-filters-wrap{display:block;margin:0 auto;clear:both;overflow:hidden}.badgeos_achievement_main_container{margin:50px 0}.achievements_list_search_go_form .achievements_list_search_go{margin-top:5px}#badgeos-achievements-container{border-top:1px dotted #aaa}#badgeos-achievements-filter select{max-width:100%;display:block}.list .badgeos-list-item{clear:both;padding:20px 0;border-bottom:1px dotted #aaa;overflow:hidden;display:-webkit-box;display:-moz-box;display:-ms-flexbox;display:-webkit-flex;display:flex}.list .badgeos-list-item .badgeos-item-description,.list .badgeos-list-item .badgeos-item-detail{padding-left:20px}.grid .badgeos-list-item .badgeos-item-image{padding-bottom:30px}.badgeos-no-results{clear:both}.badgeos-item-points{font-weight:700}.badgeos-list-item.user-has-earned .badgeos-item-image{opacity:1}#badgeos-achievements-container .badgeos-item-title{display:inline-block;margin-top:0}#achievements_list_load_more{margin:20px auto}.badgeos-open-close-switch{text-align:right}.badgeos-open-close-switch a{display:block}.badgeos-extras-window{display:none;clear:both}.badgeos-list-item.user-has-earned .badgeos-extras-window li,.badgeos-required-achievements .user-has-earned{text-decoration:line-through}.badgeos-list-item.user-has-earned .badgeos-extras-window li:hover,.badgeos-required-achievements .user-has-earned:hover{text-decoration:none}.show-hide-close:after,.show-hide-open:after{content:'';display:block;overflow:hidden;background:url(../images/arrows.png) top no-repeat;width:22px;height:7px;float:right;margin:.7em 0 0 5px;background-position:0 -14px}.show-hide-close:after{background-position:0 -21px}ul.badgeos-achievement-earners-list{list-style:none;margin:0;padding:0}ul.badgeos-achievement-earners-list li{position:relative;float:left;margin:5px;padding:0}.badgeos_earned_point_main{border:1px solid #e8e8e8;position:relative}.badgeos-user-ranks-main .widget-ranks-listing{list-style:none;margin:0;padding:10px;background:#fff}.badgeos-user-ranks-main .widget-badgeos-item-title{margin-left:1em}.badgeos_earned_points_only td{text-align:center;padding:0}.badgeos_earned_points_only .badgeos_earned_points_widget_image{background-color:#fff}.badgeos_earned_points_only .badgeos_earned_points_widget_image img{margin-left:auto;margin-right:auto}.badgeos_earned_points_only .points_widget_title{background-color:#59adc7;color:#fff}.badgeos_earned_points_only .badgeos-earned-credit{background-color:#fff;color:#59adc7;font-weight:700}.badgeos_earned_point_main .badgeos_earned_point_title{margin:0;color:#000;font-size:1.3em}.badgeos_earned_point_main .badgeos_earned_point_detail{margin:0;font-size:12px}.badgeos_earned_point_main:nth-child(odd){width:30%;margin:20px 2%;float:left;padding:1%;box-shadow:1px 1px 3px 2px #ccc;background-color:#fff}.badgeos_earned_point_main:nth-child(even){width:40%;margin:20px 2%;float:right;padding:1%;box-shadow:1px 1px 3px 2px #ccc;background-color:#fff}#badgeos-achievements-container,#badgeos-earned-achievements-container,#badgeos-earned-ranks-container,#badgeos-list-ranks-container{overflow:hidden}#badgeos-achievements-container .badgeos-arrange-buttons,#badgeos-earned-achievements-container .badgeos-arrange-buttons,#badgeos-earned-ranks-container .badgeos-arrange-buttons,#badgeos-list-ranks-container .badgeos-arrange-buttons{overflow:hidden;margin-bottom:50px}#badgeos-achievements-container ul,#badgeos-earned-achievements-container ul,#badgeos-earned-ranks-container ul,#badgeos-list-ranks-container ul{list-style:none}#badgeos-achievements-container .buttons,#badgeos-earned-achievements-container .buttons,#badgeos-earned-ranks-container .buttons,#badgeos-list-ranks-container .buttons{border:none;outline:0;padding:12px 16px;background-color:#f1f1f1;cursor:pointer;color:#999;float:right}#badgeos-achievements-container .selected,#badgeos-earned-achievements-container .selected,#badgeos-earned-ranks-container .selected,#badgeos-list-ranks-container .selected{background-color:#999;color:#fff;float:right}#badgeos-achievements-container .list>li,#badgeos-earned-achievements-container .list>li,#badgeos-earned-ranks-container .list>li,#badgeos-list-ranks-container .list>li{width:100%;border-bottom:1px dotted #ccc;margin-bottom:10px;padding-bottom:10px}#badgeos-achievements-container .grid>li,#badgeos-earned-achievements-container .grid>li,#badgeos-earned-ranks-container .grid>li,#badgeos-list-ranks-container .grid>li{float:left;width:45%;border:1px dotted #ccc;padding:20px;margin:1px auto}#badgeos-achievements-container .grid>li:nth-child(odd),#badgeos-earned-achievements-container .grid>li:nth-child(odd),#badgeos-earned-ranks-container .grid>li:nth-child(odd),#badgeos-list-ranks-container .grid>li:nth-child(odd){clear:both}.evidence_main{display:block;width:100%!important;height:auto;overflow:hidden}.left_col{float:left;width:28%;height:auto;overflow:hidden;padding:3px 3px;min-height:36px}.right_col{float:left;width:68%;height:auto;overflow:hidden;padding:3px 3px;min-height:36px}.right_col .title{display:block;font-family:sans-serif;font-size:20px;color:#3b3c3d;padding:5px}.right_col .badgeos_user_name{display:block;font-size:12px;color:#3b3c3d;padding:5px}.right_col .badgeos_issuer_name{display:block;font-size:12px;color:#3b3c3d;padding:5px}.right_col .badgeos_issue_date{display:block;font-size:12px;color:#3b3c3d;padding:5px}.right_col .badgeos_expiry_date{display:block;font-size:12px;color:#3b3c3d;padding:5px}.right_col p{display:block;font-size:13px;color:#3b3c3d;padding:5px}.right_col .evidence{display:block;font-size:12px;color:#3b3c3d;padding:5px}.verify-open-badge{padding:5px 15px!important}.verify-open-badge{border:1px solid!important;margin:0 auto!important}#badgeos-ob-verification-res-list{list-style:none;color:red;font-family:sans-serif;font-size:15px;margin:auto}#badgeos-ob-verification-res-list li.success{color:green}.badgeos-ob-finalsuccess{color:green}#badgeos-ob-verification-res-list li.error{color:red}#badgeos-ob-verification-res-list li.success:before{content:"\2713\0020";width:32px;font-size:25px;font-weight:700;color:green}#badgeos-ob-verification-res-list li.error:before{content:"\00d7\0020";width:32px;font-size:32px;font-weight:700;color:red}@media screen and (min-width:180px) and (max-width:542px){#badgeos-achievements-container .grid li,#badgeos-earned-achievements-container .grid li,#badgeos-earned-ranks-container .grid li,#badgeos-list-ranks-container .grid li{width:100%}}.badgeos_verification_modal_popup{position:fixed;visibility:hidden;display:none;left:35%;top:5%;width:100%;max-width:480px;height:auto;background:#f8f8f8;margin:0 auto;overflow:hidden;line-height:1.2;font-family:Open Sans,sans-serif;border:2px solid #ccc;z-index:999999}header.badgeos_verification_popup_header{position:relative;background-color:#fff;border-bottom:3px solid #000;color:#000;padding:10px}header.badgeos_verification_popup_header h2{margin:.3em;color:#21208d}header.badgeos_verification_popup_header .controls{float:right;position:relative}.badgeos_verification_close{right:25px;top:10px;width:32px;height:32px;opacity:1;background:#fff}.badgeos_verification_close:hover{opacity:1}.badgeos_verification_close:after,.badgeos_verification_close:before{right:7px;content:'';height:21px;width:2px;background-color:#333;top:-31px;position:absolute}.badgeos_verification_close:before{transform:rotate(45deg)}.badgeos_verification_close:after{transform:rotate(-45deg)}.badgeos_verification_modal_panel{background-color:#fff;height:20em;overflow-y:scroll;margin:.3em}.badgeos_modal_badge{padding:.3em;margin:1em;clear:both;overflow:hidden}.badgeos_verification_modal_panel h1{margin-top:0}.badgeos_verification_checkbox{float:left;margin-right:23px}.badgeos_verification_checkbox i.fa-check{font-family:FontAwesome;color:green}.badgeos_verification_checkbox i.fa-times{font-family:FontAwesome;color:red;font-style:normal}.badgeos_verification_badge_title{border-bottom:2px solid #ccc;padding-bottom:35px}.badgeos_verification_badge_title .badgeos_verified{font-weight:800}.badgeos_verification_modal_panel::-webkit-scrollbar{width:10px}.badgeos_verification_modal_panel::-webkit-scrollbar-track{background:#f1f1f1}.badgeos_verification_modal_panel::-webkit-scrollbar-thumb{background:#888;border-radius:50px}.badgeos_verification_modal_panel::-webkit-scrollbar-thumb:hover{background:#555;border-radius:50px}@media only screen and (min-width:461px) and (max-width:760px){.badgeos_verification_modal_panel{height:17em!important}.badgeos_modal_badge .badge_desc{width:65%!important}}@media only screen and (min-width:180px) and (max-width:460px){.badgeos_verification_modal_panel{height:19em}.badgeos_modal_badge .badge_desc{width:56%!important}.badgeos_modal_badge .badge_desc .badge_links a{font-size:10px}.badgeos_modal_badge .badge_desc .badge_social_share_buttons{float:left}.badgeos_modal_badge .badge_desc .badge_social_share_buttons ul{margin:18px 0 0;padding:0}}
	1	.achievement-template-part{border:#fff 1px solid;border-width:1px;border-style:solid;padding:.6em .6em;margin:5px 0 15px;background-color:#ddd;border-color:#999;color:#000;clear:both}#badgeos-achievements-filter{float:left;margin-bottom:1em}#badgeos-achievements-search,.badgeos-feedback-search{margin-right:5px;margin-bottom:1em;float:right}#achievements_list_load_more,#badgeos-achievements-container,#badgeos-achievements-filters-wrap{display:block;margin:0 auto;clear:both;overflow:hidden}.badgeos_achievement_main_container{margin:50px 0}.achievements_list_search_go_form .achievements_list_search_go{margin-top:5px}#badgeos-achievements-container{border-top:1px dotted #aaa}#badgeos-achievements-filter select{max-width:100%;display:block}.badgeos-item-image a img{max-width:none!important}.badgeos-points-image img{max-width:none!important}.list .badgeos-list-item{clear:both;padding:20px 0;border-bottom:1px dotted #aaa;overflow:hidden;display:-webkit-box;display:-moz-box;display:-ms-flexbox;display:-webkit-flex;display:flex}.list .badgeos-list-item .badgeos-item-description,.list .badgeos-list-item .badgeos-item-detail{padding-left:20px}.grid .badgeos-list-item .badgeos-item-image{padding-bottom:30px}.badgeos-no-results{clear:both}.badgeos-item-points{font-weight:700}.badgeos-list-item.user-has-earned .badgeos-item-image{opacity:1}#badgeos-achievements-container .badgeos-item-title{display:inline-block;margin-top:0}#achievements_list_load_more{margin:20px auto}.badgeos-open-close-switch{text-align:right}.badgeos-open-close-switch a{display:block}.badgeos-extras-window{display:none;clear:both}.badgeos-list-item.user-has-earned .badgeos-extras-window li,.badgeos-required-achievements .user-has-earned{text-decoration:line-through}.badgeos-list-item.user-has-earned .badgeos-extras-window li:hover,.badgeos-required-achievements .user-has-earned:hover{text-decoration:none}.show-hide-close:after,.show-hide-open:after{content:'';display:block;overflow:hidden;background:url('../images/arrows.png') top no-repeat;width:22px;height:7px;float:right;margin:.7em 0 0 5px;background-position:0 -14px}.show-hide-close:after{background-position:0 -21px}ul.badgeos-achievement-earners-list{list-style:none;margin:0;padding:0}ul.badgeos-achievement-earners-list li{position:relative;float:left;margin:5px;padding:0}.badgeos_earned_point_main{border:1px solid #e8e8e8;position:relative}.badgeos-user-ranks-main .widget-ranks-listing{list-style:none;margin:0;padding:10px;background:#fff}.badgeos-user-ranks-main .widget-badgeos-item-title{margin-left:1em}.badgeos_earned_points_only td{text-align:center;padding:0}.badgeos_earned_points_only .badgeos_earned_points_widget_image{background-color:#fff}.badgeos_earned_points_only .badgeos_earned_points_widget_image img{margin-left:auto;margin-right:auto}.badgeos_earned_points_only .points_widget_title{background-color:#59adc7;color:#fff}.badgeos_earned_points_only .badgeos-earned-credit{background-color:#fff;color:#59adc7;font-weight:700}.badgeos_earned_point_main .badgeos_earned_point_title{margin:0;color:#000;font-size:1.3em}.badgeos_earned_point_main .badgeos_earned_point_detail{margin:0;font-size:12px}.badgeos_earned_point_main:nth-child(odd){width:30%;margin:20px 2%;padding:1%;box-shadow:1px 1px 3px 2px #ccc;background-color:#fff}.badgeos_earned_point_main:nth-child(even){width:40%;margin:20px 2%;float:right;padding:1%;box-shadow:1px 1px 3px 2px #ccc;background-color:#fff}#badgeos-achievements-container,#badgeos-earned-achievements-container,#badgeos-earned-ranks-container,#badgeos-list-ranks-container{overflow:hidden}#badgeos-achievements-container .badgeos-arrange-buttons,#badgeos-earned-achievements-container .badgeos-arrange-buttons,#badgeos-earned-ranks-container .badgeos-arrange-buttons,#badgeos-list-ranks-container .badgeos-arrange-buttons{overflow:hidden;margin-bottom:50px}#badgeos-achievements-container ul,#badgeos-earned-achievements-container ul,#badgeos-earned-ranks-container ul,#badgeos-list-ranks-container ul{list-style:none}#badgeos-achievements-container .buttons,#badgeos-earned-achievements-container .buttons,#badgeos-earned-ranks-container .buttons,#badgeos-list-ranks-container .buttons{border:none;outline:0;padding:12px 16px;background-color:#f1f1f1;cursor:pointer;color:#999;float:right}#badgeos-achievements-container .selected,#badgeos-earned-achievements-container .selected,#badgeos-earned-ranks-container .selected,#badgeos-list-ranks-container .selected{background-color:#999;color:#fff;float:right}#badgeos-achievements-container .list>li,#badgeos-earned-achievements-container .list>li,#badgeos-earned-ranks-container .list>li,#badgeos-list-ranks-container .list>li{width:100%;border-bottom:1px dotted #ccc;margin-bottom:10px;padding-bottom:10px}#badgeos-achievements-container .grid>li,#badgeos-earned-achievements-container .grid>li,#badgeos-earned-ranks-container .grid>li,#badgeos-list-ranks-container .grid>li{float:left;width:45%;border:1px dotted #ccc;padding:20px;margin:1px auto}#badgeos-achievements-container .grid>li:nth-child(odd),#badgeos-earned-achievements-container .grid>li:nth-child(odd),#badgeos-earned-ranks-container .grid>li:nth-child(odd),#badgeos-list-ranks-container .grid>li:nth-child(odd){clear:both}.evidence_main{display:block;width:100%!important;height:auto;overflow:hidden}.left_col{float:left;width:28%;height:auto;overflow:hidden;padding:3px 3px;min-height:36px}.right_col{float:left;width:68%;height:auto;overflow:hidden;padding:3px 3px;min-height:36px}.right_col .title{display:block;font-family:sans-serif;font-size:20px;color:#3b3c3d;padding:5px}.right_col .badgeos_user_name{display:block;font-size:12px;color:#3b3c3d;padding:5px}.right_col .badgeos_issuer_name{display:block;font-size:12px;color:#3b3c3d;padding:5px}.right_col .badgeos_issue_date{display:block;font-size:12px;color:#3b3c3d;padding:5px}.right_col .badgeos_expiry_date{display:block;font-size:12px;color:#3b3c3d;padding:5px}.right_col p{display:block;font-size:13px;color:#3b3c3d;padding:5px}.right_col .evidence{display:block;font-size:12px;color:#3b3c3d;padding:5px}.verify-open-badge{padding:5px 15px!important}.verify-open-badge{border:1px solid!important;margin:0 auto!important}#badgeos-ob-verification-res-list{list-style:none;color:red;font-family:sans-serif;font-size:15px;margin:auto}#badgeos-ob-verification-res-list li.success{color:green}.badgeos-ob-finalsuccess{color:green}#badgeos-ob-verification-res-list li.error{color:red}#badgeos-ob-verification-res-list li.success:before{content:"\2713\0020";width:32px;font-size:25px;font-weight:700;color:green}#badgeos-ob-verification-res-list li.error:before{content:"\00d7\0020";width:32px;font-size:32px;font-weight:700;color:red}@media screen and (min-width:180px) and (max-width:542px){#badgeos-achievements-container .grid li,#badgeos-earned-achievements-container .grid li,#badgeos-earned-ranks-container .grid li,#badgeos-list-ranks-container .grid li{width:100%}}.badgeos_verification_modal_popup{position:fixed;visibility:hidden;display:none;left:35%;top:5%;width:100%;max-width:480px;height:auto;background:#f8f8f8;margin:0 auto;overflow:hidden;line-height:1.2;font-family:Open Sans,sans-serif;border:2px solid #ccc;z-index:999999}header.badgeos_verification_popup_header{position:relative;background-color:#fff;border-bottom:3px solid #000;color:#000;padding:10px}header.badgeos_verification_popup_header h2{margin:.3em;color:#21208d}header.badgeos_verification_popup_header .controls{float:right;position:relative}.badgeos_verification_close{right:25px;top:10px;width:32px;height:32px;opacity:1;background:#fff}.badgeos_verification_close:hover{opacity:1}.badgeos_verification_close:after,.badgeos_verification_close:before{right:7px;content:'';height:21px;width:2px;background-color:#333;top:-31px;position:absolute}.badgeos_verification_close:before{transform:rotate(45deg)}.badgeos_verification_close:after{transform:rotate(-45deg)}.badgeos_verification_modal_panel{background-color:#fff;height:20em;overflow-y:scroll;margin:.3em}.badgeos_modal_badge{padding:.3em;margin:1em;clear:both;overflow:hidden}.badgeos_verification_modal_panel h1{margin-top:0}.badgeos_verification_checkbox{float:left;margin-right:23px}.badgeos_verification_checkbox i.fa-check{font-family:FontAwesome;color:green}.badgeos_verification_checkbox i.fa-times{font-family:FontAwesome;color:red;font-style:normal}.badgeos_verification_badge_title{border-bottom:2px solid #ccc;padding-bottom:35px}.badgeos_verification_badge_title .badgeos_verified{font-weight:800}.badgeos_verification_modal_panel::-webkit-scrollbar{width:10px}.badgeos_verification_modal_panel::-webkit-scrollbar-track{background:#f1f1f1}.badgeos_verification_modal_panel::-webkit-scrollbar-thumb{background:#888;border-radius:50px}.badgeos_verification_modal_panel::-webkit-scrollbar-thumb:hover{background:#555;border-radius:50px}.badgeos-last-earned-checkmark{color:green}@media only screen and (min-width:461px) and (max-width:760px){.badgeos_verification_modal_panel{height:17em!important}.badgeos_modal_badge .badge_desc{width:65%!important}}@media only screen and (min-width:180px) and (max-width:460px){.badgeos_verification_modal_panel{height:19em}.badgeos_modal_badge .badge_desc{width:56%!important}.badgeos_modal_badge .badge_desc .badge_links a{font-size:10px}.badgeos_modal_badge .badge_desc .badge_social_share_buttons{float:left}.badgeos_modal_badge .badge_desc .badge_social_share_buttons ul{margin:18px 0 0;padding:0}}

badgeos/trunk/includes/achievement-upgrade.php

r2384705	r2765251
7	7	*/
8	8	function badgeos_migrate_fields_points_to_point_types_callback() {
9		$action = ~~( isset( $_POST['action'] ) ? $_POST['action'] : '' )~~;
	9	$action = isset( $_POST['action'] ) ? sanitize_text_field( $_POST['action'] ) : '' ;
10	10	if( $action !== 'badgeos_migrate_fields_points_to_point_types' && $action !== 'badgeos_migrate_fields_points_to_point_types' ) {
11	11	exit;

badgeos/trunk/includes/admin-settings.php

-                      r2548255
+                      r2765251
     wp_enqueue_script( 'badgeos-admin-tools-js' );
     $licensed_addons = apply_filters( 'badgeos_licensed_addons', array() );
     $setting_page_tab = isset( $_GET['bos_s_tab'] ) ? $_GET['bos_s_tab'] : 'general';
+    $setting_page_tab = isset( $_GET['bos_s_tab'] ) ? sanitize_text_field($_GET['bos_s_tab']) : 'general';
     if( !isset( $setting_page_tab ) || empty( $setting_page_tab ) ) {
         $setting_page_tab = 'general';
 …
+        (
             ( isset( $_GET['post_type'] ) && in_array( $_GET['post_type'], badgeos_get_achievement_types_slugs() ) )
             || ( isset( $_GET['post'] ) && badgeos_is_achievement( $_GET['post'] ) )
+            || ( isset( $_GET['post'] ) && badgeos_is_achievement( sanitize_text_field($_GET['post']) ) )
         ) && 'Featured Image' == $string
 …
+        (
             ( isset( $_GET['post_type'] ) && $badgeos_settings['achievement_main_post_type'] == $_GET['post_type'] )
             || ( isset( $_GET['post'] ) && $badgeos_settings['achievement_main_post_type'] == badgeos_utilities::get_post_type( $_GET['post'] ) )
+            || ( isset( $_GET['post'] ) && $badgeos_settings['achievement_main_post_type'] == badgeos_utilities::get_post_type( sanitize_text_field($_GET['post'] )) )
         ) && 'Featured Image' == $string
+    )

badgeos/trunk/includes/admin-tools.php

-                      r2687784
+                      r2765251
     public function __construct() {
         $this->page_tab = isset( $_GET['tab'] ) ? $_GET['tab'] : 'achievement_tools';
+        $this->page_tab = isset( $_GET['tab'] ) ? sanitize_text_field( $_GET['tab'] ) : 'achievement_tools';
         add_action( 'admin_menu', [ $this, 'add_tool_page' ] );
         add_action( 'admin_init', [ $this, 'badgeos_award_reward_achievements' ] );
 …
             if( isset( $_POST['badgeos_tools_email_general'] ) ) {
                 $tools_data = $_POST['badgeos_tools'];
+                $tools_data = sanitize_text_field( $_POST['badgeos_tools'] );
                 if( isset( $_FILES['badgeos_tools_email_general_logo'] ) ) {
 …
             if( isset( $_POST['badgeos_tools_email_achievement'] ) ) {
                 $tools_data = $_POST['badgeos_tools'];
+                $tools_data = sanitize_text_field( $_POST['badgeos_tools'] );
                 $email_disable_earned_achievement_email = 'no';
                 if( isset( $tools_data['email_disable_earned_achievement_email'] ) ) {
 …
             if( isset( $_POST['badgeos_tools_email_achievement_steps'] ) ) {
                 $tools_data = $_POST['badgeos_tools'];
+                $tools_data = sanitize_text_field( $_POST['badgeos_tools'] );
                 $email_disable_achievement_steps_email = 'no';
                 if( isset( $tools_data['email_disable_achievement_steps_email'] ) ) {
 …
             if( isset( $_POST['badgeos_tools_email_ranks'] ) ) {
                 $tools_data = $_POST['badgeos_tools'];
+                $tools_data = sanitize_text_field( $_POST['badgeos_tools'] );
                 $email_disable_ranks_email = 'no';
                 if( isset( $tools_data['email_disable_ranks_email'] ) ) {
 …
             if( isset( $_POST['badgeos_tools_email_rank_steps'] ) ) {
                 $tools_data = $_POST['badgeos_tools'];
+                $tools_data = sanitize_text_field( $_POST['badgeos_tools'] );
                 $email_disable_rank_steps_email = 'no';
                 if( isset( $tools_data['email_disable_rank_steps_email'] ) ) {
 …
             if( isset( $_POST['badgeos_tools_email_point_awards'] ) ) {
                 $tools_data = $_POST['badgeos_tools'];
+                $tools_data = sanitize_text_field( $_POST['badgeos_tools'] );
                 $email_disable_point_awards_email = 'no';
                 if( isset( $tools_data['email_disable_point_awards_email'] ) ) {
 …
             if( isset( $_POST['badgeos_tools_email_point_deducts'] ) ) {
                 $tools_data = $_POST['badgeos_tools'];
+                $tools_data = sanitize_text_field( $_POST['badgeos_tools'] );
                 $email_disable_point_deducts_email = 'no';
                 if( isset( $tools_data['email_disable_point_deducts_email'] ) ) {
 …
             if( isset( $_POST['action'] ) && $_POST['action'] == 'award_bulk_achievement' ) {
                 $achievement_ids_to_award = ( isset( $_POST['badgeos_tools']['award_achievement_types'] ) ? $_POST['badgeos_tools']['award_achievement_types'] : '' );
+                $achievement_ids_to_award = ( isset( $_POST['badgeos_tools']['award_achievement_types'] ) ? array_map( 'sanitize_text_field', $_POST['badgeos_tools']['award_achievement_types'] ) : '' );
                 if( ! empty( $achievement_ids_to_award ) ){
                     $award_achievements_to_all_users = ( ( isset( $_POST['badgeos_tools']['award_all_users'] ) &&
                         $_POST['badgeos_tools']['award_all_users'] == 'on' ) ? $_POST['badgeos_tools']['award_all_users'] : '' );
+                        $_POST['badgeos_tools']['award_all_users'] == 'on' ) ? sanitize_text_field( $_POST['badgeos_tools']['award_all_users'] ): '' );
                     foreach( $achievement_ids_to_award as $achievement_id ) {
                         $achievement_object = badgeos_build_achievement_object( $achievement_id );
 …
+                            }
                         } else {
                             $users_to_award = ( isset( $_POST['badgeos_tools']['award_users'] ) ? $_POST['badgeos_tools']['award_users'] : '' );
+                            $users_to_award = ( isset( $_POST['badgeos_tools']['award_users'] ) ? array_map( 'sanitize_text_field', $_POST['badgeos_tools']['award_users'] ): '' );
+                        }
 …
             if( isset( $_POST['action'] ) && $_POST['action'] == 'revoke_bulk_achievement' ) {
                 $achievement_ids_to_revoke = ( isset( $_POST['badgeos_tools']['revoke_achievement_types'] ) ? $_POST['badgeos_tools']['revoke_achievement_types'] : '' );
+                $achievement_ids_to_revoke = ( isset( $_POST['badgeos_tools']['revoke_achievement_types'] ) ? array_map( 'sanitize_text_field', $_POST['badgeos_tools']['revoke_achievement_types'] ): '' );
                 if( ! empty( $achievement_ids_to_revoke ) ){
                     $revoke_achievements_to_all_users = ( ( isset( $_POST['badgeos_tools']['revoke_all_users'] ) &&
                         $_POST['badgeos_tools']['revoke_all_users'] == 'on' ) ? $_POST['badgeos_tools']['revoke_all_users'] : '' );
+                        $_POST['badgeos_tools']['revoke_all_users'] == 'on' ) ? sanitize_text_field( $_POST['badgeos_tools']['revoke_all_users'] ) : '' );
                     foreach( $achievement_ids_to_revoke as $achievement_id ) {
                         $users_to_revoke = array();
 …
+                            }
                         } else {
                             $users_to_revoke = ( isset( $_POST['badgeos_tools']['revoke_users'] ) ? $_POST['badgeos_tools']['revoke_users'] : '' );
+                            $users_to_revoke = ( isset( $_POST['badgeos_tools']['revoke_users'] ) ? array_map( 'sanitize_text_field', $_POST['badgeos_tools']['revoke_users'] ): '' );
+                        }
 …
                                                 $table_name = $wpdb->prefix . "badgeos_achievements";
                                                 if($wpdb->get_var("show tables like '$table_name'") == $table_name) {
                                                     $where = " where user_id='".intval($user_id)."' and entry_id = '".intval($item->entry_id)."'";
                                                     $wpdb->get_results('delete from '.$wpdb->prefix.'badgeos_achievements '.$where.' limit 1' );
+                                                    $where = " where user_id={$user_id} and entry_id = {$item->entry_id}";
+                                                    $wpdb->get_results('delete from '.$wpdb->prefix.'badgeos_achievements {$where} limit 1' );
+                                                }
                                                 badgeos_decrement_user_trigger_count( $user_id, $child->ID, $del_ach_id );
 …
             if( isset( $_POST['action'] ) && $_POST['action'] == 'award_credits_in_bulk' ) {
                 $credit_type_to_award = ( isset( $_POST['badgeos_tools']['award_credit_type'] ) ? $_POST['badgeos_tools']['award_credit_type'] : '' );
                 $credit_amount = ( isset( $_POST['badgeos_tools']['credit_amount'] ) ? $_POST['badgeos_tools']['credit_amount'] : 0 );
+                $credit_type_to_award = ( isset( $_POST['badgeos_tools']['award_credit_type'] ) ? sanitize_text_field($_POST['badgeos_tools']['award_credit_type'] ): '' );
+                $credit_amount = ( isset( $_POST['badgeos_tools']['credit_amount'] ) ? sanitize_text_field($_POST['badgeos_tools']['credit_amount'] ): 0 );
                 if( ! empty( $credit_type_to_award ) && $credit_amount > 0 ) {
                     $award_credits_to_all_users = ( ( isset( $_POST['badgeos_tools']['award_all_users'] ) && $_POST['badgeos_tools']['award_all_users'] == 'on' ) ? $_POST['badgeos_tools']['award_all_users'] : '' );
+                    $award_credits_to_all_users = ( ( isset( $_POST['badgeos_tools']['award_all_users'] ) && $_POST['badgeos_tools']['award_all_users'] == 'on' ) ? sanitize_text_field($_POST['badgeos_tools']['award_all_users']) : '' );
                     $users_to_award = array();
                     if( 'on' == $award_credits_to_all_users ) {
 …
+                        }
                     } else {
                         $users_to_award = ( isset( $_POST['badgeos_tools']['award_users'] ) ? $_POST['badgeos_tools']['award_users'] : '' );
+                        $users_to_award = ( isset( $_POST['badgeos_tools']['award_users'] ) ? array_map( 'sanitize_text_field', $_POST['badgeos_tools']['award_users'] ): '' );
+                    }
                     foreach( $users_to_award as $user_id ) {
 …
              */
             if( isset( $_POST['action'] ) && $_POST['action'] == 'revoke_credits_in_bulk' ) {
                 $credit_type_to_revoke = ( isset( $_POST['badgeos_tools']['revoke_credit_type'] ) ? $_POST['badgeos_tools']['revoke_credit_type'] : '' );
                 $credit_amount = ( isset( $_POST['badgeos_tools']['credit_amount'] ) ? $_POST['badgeos_tools']['credit_amount'] : 0 );
+                $credit_type_to_revoke = ( isset( $_POST['badgeos_tools']['revoke_credit_type'] ) ? sanitize_text_field($_POST['badgeos_tools']['revoke_credit_type'] ): '' );
+                $credit_amount = ( isset( $_POST['badgeos_tools']['credit_amount'] ) ? sanitize_text_field($_POST['badgeos_tools']['credit_amount']) : 0 );
                 if( ! empty( $credit_type_to_revoke ) && ( int ) $credit_amount ) {
                     $revoke_credits_to_all_users = ( ( isset( $_POST['badgeos_tools']['revoke_all_users'] ) &&
                         $_POST['badgeos_tools']['revoke_all_users'] == 'on' ) ? $_POST['badgeos_tools']['revoke_all_users'] : '' );
+                        $_POST['badgeos_tools']['revoke_all_users'] == 'on' ) ? sanitize_text_field( $_POST['badgeos_tools']['revoke_all_users'] ): '' );
                     $users_to_revoke = array();
                     if( 'on' == $revoke_credits_to_all_users ) {
 …
+                        }
                     } else {
                         $users_to_revoke = ( isset( $_POST['badgeos_tools']['revoke_users'] ) ? $_POST['badgeos_tools']['revoke_users'] : '' );
+                        $users_to_revoke = ( isset( $_POST['badgeos_tools']['revoke_users'] ) ? array_map( 'sanitize_text_field', $_POST['badgeos_tools']['revoke_users'] ): '' );
+                    }
 …
             if( isset( $_POST['action'] ) && $_POST['action'] == 'award_bulk_ranks' ) {
                 $rank_ids_to_award = ( isset( $_POST['badgeos_tools']['award_rank_types'] ) ? $_POST['badgeos_tools']['award_rank_types'] : '' );
+                $rank_ids_to_award = ( isset( $_POST['badgeos_tools']['award_rank_types'] ) ? array_map( 'sanitize_text_field', $_POST['badgeos_tools']['award_rank_types'] ): '' );
                 if( ! empty( $rank_ids_to_award ) ){
                     $award_ranks_to_all_users = ( ( isset( $_POST['badgeos_tools']['award_all_users'] ) &&
                         $_POST['badgeos_tools']['award_all_users'] == 'on' ) ? $_POST['badgeos_tools']['award_all_users'] : '' );
+                        $_POST['badgeos_tools']['award_all_users'] == 'on' ) ? sanitize_text_field($_POST['badgeos_tools']['award_all_users'] ): '' );
                     foreach( $rank_ids_to_award as $rank_id ) {
 …
+                            }
                         } else {
                             $users_to_award = ( isset( $_POST['badgeos_tools']['award_users'] ) ? $_POST['badgeos_tools']['award_users'] : '' );
+                            $users_to_award = ( isset( $_POST['badgeos_tools']['award_users'] ) ? array_map( 'sanitize_text_field', $_POST['badgeos_tools']['award_users'] ): '' );
+                        }
 …
             if( isset( $_POST['action'] ) && $_POST['action'] == 'revoke_bulk_ranks' ) {
                 $rank_ids_to_revoke = ( isset( $_POST['badgeos_tools']['revoke_rank_types'] ) ? $_POST['badgeos_tools']['revoke_rank_types'] : '' );
+                $rank_ids_to_revoke = ( isset( $_POST['badgeos_tools']['revoke_rank_types'] ) ? array_map( 'sanitize_text_field', $_POST['badgeos_tools']['revoke_rank_types']) : '' );
                 if( ! empty( $rank_ids_to_revoke ) ){
                     $revoke_rank_to_all_users = ( ( isset( $_POST['badgeos_tools']['revoke_all_users'] ) &&
                         $_POST['badgeos_tools']['revoke_all_users'] == 'on' ) ? $_POST['badgeos_tools']['revoke_all_users'] : '' );
+                        $_POST['badgeos_tools']['revoke_all_users'] == 'on' ) ? sanitize_text_field( $_POST['badgeos_tools']['revoke_all_users'] ): '' );
                     foreach( $rank_ids_to_revoke as $rank_id ) {
 …
+                            }
                         } else {
                             $users_to_revoke = ( isset( $_POST['badgeos_tools']['revoke_users'] ) ? $_POST['badgeos_tools']['revoke_users'] : '' );
+                            $users_to_revoke = ( isset( $_POST['badgeos_tools']['revoke_users'] ) ? sanitize_text_field( $_POST['badgeos_tools']['revoke_users'] ): '' );
+                        }

badgeos/trunk/includes/ajax-functions.php

-                      r2687784
+                      r2765251
 foreach ( $badgeos_ajax_actions as $action ) {
     add_action( 'wp_ajax_' . $action, 'badgeos_ajax_' . str_replace( '-', '_', $action ), 1 );
     add_action( 'wp_ajax_nopriv_' . $action, 'badgeos_ajax_' . str_replace( '-', '_', $action ), 1 );
+    // add_action( 'wp_ajax_nopriv_' . $action, 'badgeos_ajax_' . str_replace( '-', '_', $action ), 1 );
+}
 …
 function badgeos_ajax_get_achievements_award_list() {
+    // Check for nonce security
+    if ( isset( $_REQUEST['nonce'] ) && ! wp_verify_nonce( $_REQUEST['nonce'], 'bos-security' ) ) {
+        wp_send_json_error( 'Request blocked' );
+    }
     // If no query was sent, die here
     if ( ! isset( $_REQUEST['q'] ) ) {
 …
     $user_id            = sanitize_text_field( $_REQUEST['user_id'] );
     $q                  = sanitize_text_field( $_REQUEST['q'] );
+    $sql = "SELECT entry_id as id, CONCAT(achievement_title, ' : ', entry_id) as label, entry_id as value FROM ".$wpdb->prefix."badgeos_achievements where post_type!='".$badgeos_settings['achievement_step_post_type']."'";
+    $table_name         = $wpdb->prefix . 'badgeos_achievements';
+    $sql = "SELECT entry_id as id, CONCAT(achievement_title, ' : ', entry_id) as label, entry_id as value FROM {$table_name}
+    WHERE post_type != '{$badgeos_settings['achievement_step_post_type']}'";
     // Build our query
     if ( !empty( $q ) ) {
         $sql .= " and achievement_title LIKE '%". $q."%'";
+        $sql .= " and achievement_title LIKE '%{$q}%'";
+    }
     // Build our query
     if ( !empty( $achievement_id ) ) {
         $sql .= " and ID = '". $achievement_id."'";
+        $sql .= " and ID = '{$achievement_id}'";
+    }
     // Build our query
     if ( ! empty( $user_id ) ) {
+        $sql .= " and user_id = '". $user_id."'";
+    }
+        $sql .= " and user_id = '{$user_id}'";
+    }
     // Fetch our results (store as associative array)
     $results = $wpdb->get_results( $sql." limit 100 ", 'ARRAY_A' );
+    $results = $wpdb->get_results( $sql, 'ARRAY_A' );
     // Return our results
 …
  */
 function badgeos_ajax_get_ranks_list() {
+    global $user_ID, $blog_id, $wpdb;
+    // Check for nonce security
+    if ( isset( $_REQUEST['nonce'] ) && ! wp_verify_nonce( $_REQUEST['nonce'], 'bos-security' ) ) {
+        wp_send_json_error( 'Request blocked' );
+    }
+    global $blog_id, $wpdb;
     $badgeos_settings = ( $exists = badgeos_utilities::get_option( 'badgeos_settings' ) ) ? $exists : array();
 …
     // Setup our AJAX query vars
     $type               = isset( $_REQUEST['types'] )      ? $_REQUEST['types']      : false;
     $limit              = isset( $_REQUEST['limit'] )      ? $_REQUEST['limit']      : false;
     $offset             = isset( $_REQUEST['offset'] )     ? $_REQUEST['offset']     : false;
     $count              = isset( $_REQUEST['count'] )      ? $_REQUEST['count']      : false;
     $search             = isset( $_REQUEST['search'] )     ? $_REQUEST['search']     : false;
     $user_id            = isset( $_REQUEST['user_id'] )    ? $_REQUEST['user_id']    : get_current_user_id();
     $orderby            = isset( $_REQUEST['orderby'] )    ? $_REQUEST['orderby']    : 'rank_id';
     $order              = isset( $_REQUEST['order'] )      ? $_REQUEST['order']      : 'ASC';
     $show_title         = isset( $_REQUEST['show_title'] ) ? $_REQUEST['show_title'] : 'true';
     $show_thumb         = isset( $_REQUEST['show_thumb'] ) ? $_REQUEST['show_thumb'] : 'true';
     $show_description   = isset( $_REQUEST['show_description'] ) ? $_REQUEST['show_description'] : 'true';
+    $type               = isset( $_REQUEST['types'] )      ? sanitize_text_field( $_REQUEST['types'] )      : false;
+    $limit              = isset( $_REQUEST['limit'] )      ? sanitize_text_field( $_REQUEST['limit']  )    : false;
+    $offset             = isset( $_REQUEST['offset'] )     ? sanitize_text_field( $_REQUEST['offset']  )   : false;
+    $count              = isset( $_REQUEST['count'] )      ? sanitize_text_field( $_REQUEST['count']   )   : false;
+    $search             = isset( $_REQUEST['search'] )     ? sanitize_text_field( $_REQUEST['search']  )   : false;
+    $user_id            = isset( $_REQUEST['user_id'] )    ? sanitize_text_field( $_REQUEST['user_id']  )  : get_current_user_id();
+    $orderby            = isset( $_REQUEST['orderby'] )    ? sanitize_text_field( $_REQUEST['orderby']  )  : 'rank_id';
+    $order              = isset( $_REQUEST['order'] )      ? sanitize_text_field( $_REQUEST['order']   )   : 'ASC';
+    $show_title         = isset( $_REQUEST['show_title'] ) ? sanitize_text_field( $_REQUEST['show_title'] ): 'true';
+    $show_thumb         = isset( $_REQUEST['show_thumb'] ) ? sanitize_text_field( $_REQUEST['show_thumb'] ): 'true';
+    $show_description   = isset( $_REQUEST['show_description'] ) ? sanitize_text_field( $_REQUEST['show_description'] ): 'true';
     $image_width = isset( $_REQUEST['image_width'] ) ? $_REQUEST['image_width'] : '';
     $image_height = isset( $_REQUEST['image_height'] ) ? $_REQUEST['image_height'] : '';
+    $image_width = isset( $_REQUEST['image_width'] ) ? sanitize_text_field( $_REQUEST['image_width'] ) : '';
+    $image_height = isset( $_REQUEST['image_height'] )? sanitize_text_field( $_REQUEST['image_height'] ) : '';
     // Convert $type to properly support multiple rank types
     $earned_ranks_shortcode_default_view = !empty( $_REQUEST['default_view'] ) ? $_REQUEST['default_view'] : $earned_ranks_shortcode_default_view;
+    $earned_ranks_shortcode_default_view = !empty( $_REQUEST['default_view'] ) ? sanitize_text_field( $_REQUEST['default_view'] ) : $earned_ranks_shortcode_default_view;
     if ( 'all' == $type ) {
 …
     $last_earned_id = 0;
     $settings = ( $exists = badgeos_utilities::get_option( 'badgeos_settings' ) ) ? $exists : array();
     $last_rank = $wpdb->get_results( $wpdb->prepare( "select * from ".$wpdb->prefix."badgeos_ranks where rank_type!=%s and user_id=%d order by actual_date_earned desc limit 1", trim( $settings['ranks_step_post_type'] ), $user_ID ) );
+    $last_rank = $wpdb->get_results( $wpdb->prepare( "select * from ".$wpdb->prefix."badgeos_ranks where rank_type!=%s and user_id=%d order by actual_date_earned desc limit 1", trim( $settings['ranks_step_post_type'] ), $user_id ) );
     if( count( $last_rank ) > 0 ) {
         $last_earned_id = $last_rank[0]->rank_id;
 …
             $args[ 's' ] = $search;
+        }
-        //$count $user_id $image_width $image_height
         // Loop ranks
         $rank_posts = new WP_Query( $args );
+        //print_r($rank_posts);
         $query_count += $rank_posts->found_posts;
         while ( $rank_posts->have_posts() ) : $rank_posts->the_post();
 …
+            }
             $output = '<li><div id="badgeos-list-item-' . get_the_ID() . '" class="badgeos-list-item badgeos-list-item-'.get_the_ID().' '.$earned_this.'">';
             // Achievement Image
 …
             $output .= '</div><!-- .badgeos-item-description -->';
             $output .= apply_filters( 'badgeos_after_ranks_list_item', '', $rank );
+            $output .= apply_filters( 'badgeos_after_ranks_list_item', '', $rank_posts );
             $output .= '</div></li><!-- .badgeos-ranks-list-item -->';
 …
         'query_count' => $query_count,
         'badge_count' => $ranks_count,
-        'attr'        => $_REQUEST
     ) );
 …
  */
 function badgeos_ajax_get_earned_ranks() {
+    global $user_ID, $blog_id, $wpdb;
+    // Check for nonce security
+    if ( ! wp_verify_nonce( sanitize_text_field( $_POST['nonce'] ), 'security' ) ) {
+        wp_send_json_error( 'Request blocked' );
+    }
+    global $blog_id, $wpdb;
     $badgeos_settings = ( $exists = badgeos_utilities::get_option( 'badgeos_settings' ) ) ? $exists : array();
 …
     // Setup our AJAX query vars
     $type       = isset( $_REQUEST['rank_type'] )  ? $_REQUEST['rank_type']  : false;
     $limit      = isset( $_REQUEST['limit'] )      ? $_REQUEST['limit']      : false;
     $offset     = isset( $_REQUEST['offset'] )     ? $_REQUEST['offset']     : false;
     $count      = isset( $_REQUEST['count'] )      ? $_REQUEST['count']      : false;
     $search     = isset( $_REQUEST['search'] )     ? $_REQUEST['search']     : false;
     $user_id    = isset( $_REQUEST['user_id'] )    ? $_REQUEST['user_id']    : get_current_user_id();
     $orderby    = isset( $_REQUEST['orderby'] )    ? $_REQUEST['orderby']    : 'rank_id';
     $order      = isset( $_REQUEST['order'] )      ? $_REQUEST['order']      : 'ASC';
     $show_title = isset( $_REQUEST['show_title'] ) ? $_REQUEST['show_title'] : 'true';
     $show_thumb = isset( $_REQUEST['show_thumb'] ) ? $_REQUEST['show_thumb'] : 'true';
     $show_description = isset( $_REQUEST['show_description'] ) ? $_REQUEST['show_description'] : 'true';
     $image_width = isset( $_REQUEST['image_width'] ) ? $_REQUEST['image_width'] : '';
     $image_height = isset( $_REQUEST['image_height'] ) ? $_REQUEST['image_height'] : '';
+    $type       = isset( $_REQUEST['rank_type'] )  ? sanitize_text_field( $_REQUEST['rank_type']  ) : false;
+    $limit      = isset( $_REQUEST['limit'] )      ? sanitize_text_field( $_REQUEST['limit']      ) : false;
+    $offset     = isset( $_REQUEST['offset'] )     ? sanitize_text_field( $_REQUEST['offset']     ) : false;
+    $count      = isset( $_REQUEST['count'] )      ? sanitize_text_field( $_REQUEST['count']      ) : false;
+    $search     = isset( $_REQUEST['search'] )     ? sanitize_text_field( $_REQUEST['search']     ) : false;
+    $user_id    = isset( $_REQUEST['user_id'] )    ? sanitize_text_field( $_REQUEST['user_id']    ) : get_current_user_id();
+    $orderby    = isset( $_REQUEST['orderby'] )    ? sanitize_text_field( $_REQUEST['orderby']    ) : 'rank_id';
+    $order      = isset( $_REQUEST['order'] )      ? sanitize_text_field( $_REQUEST['order']      ) : 'ASC';
+    $show_title = isset( $_REQUEST['show_title'] ) ? sanitize_text_field( $_REQUEST['show_title'] ) : 'true';
+    $show_thumb = isset( $_REQUEST['show_thumb'] ) ? sanitize_text_field( $_REQUEST['show_thumb'] ) : 'true';
+    $show_description = isset( $_REQUEST['show_description'] ) ? sanitize_text_field( $_REQUEST['show_description']) : 'true';
+    $image_width = isset( $_REQUEST['image_width'] ) ? sanitize_text_field(  $_REQUEST['image_width']) : '';
+    $image_height = isset( $_REQUEST['image_height'] ) ? sanitize_text_field( $_REQUEST['image_height']) : '';
     // Convert $type to properly support multiple rank types
     $earned_ranks_shortcode_default_view = !empty( $_REQUEST['default_view'] ) ? $_REQUEST['default_view'] : $earned_ranks_shortcode_default_view;
+    $earned_ranks_shortcode_default_view = !empty( $_REQUEST['default_view'] ) ? sanitize_text_field($_REQUEST['default_view']) : $earned_ranks_shortcode_default_view;
     if ( 'all' == $type ) {
 …
     // Loop through each site (default is current site only)
     $query_count = 0;
+    $table_name = $wpdb->prefix . 'badgeos_ranks';
     foreach( $sites as $site_blog_id ) {
         $qry = "SELECT * FROM ".$wpdb->prefix."badgeos_ranks WHERE user_id='".$user_id."'";
         $total_qry = "SELECT count(ID) as total FROM ".$wpdb->prefix."badgeos_ranks WHERE user_id='".$user_id."'";
+        $qry = "SELECT * FROM {$table_name} WHERE user_id={$user_id}";
+        $total_qry = "SELECT count(ID) as total FROM {$table_name} WHERE user_id={$user_id}";
         if( is_array( $type ) && count( $type ) > 0 ) {
+            $qry .= " and rank_type in ('".implode( "', '", $type )."') ";
+            $total_qry .= " and rank_type in ('".implode( "', '", $type )."') ";
+            $types = implode( "', '", $type );
+            $qry .= " and rank_type in ('{$types}')  ";
+            $total_qry .= " and rank_type in ('{$types}') ";
+        }
         if ( $search ) {
             $qry .= " and rank_title like '%".$search."%' ";
             $total_qry .= " and rank_title like '%".$search."%' ";
+            $qry .= " and rank_title like '%{$search}%' ";
+            $total_qry .= " and rank_title like '%{$search}%' ";
+        }
 …
         if( !empty( $orderby ) ) {
             if( !empty( $order ) ) {
                 $qry .= " ORDER BY ".$orderby." ".$order;
+                $qry .= " ORDER BY {$orderby} {$order}";
             } else {
                 $qry .= " ORDER BY ".$orderby." ASC";
+            }
+        }
         $qry .= " limit ".$offset.", ".$limit;
+                $qry .= " ORDER BY {$orderby} ASC";
+            }
+        }
+        $qry .= " limit {$offset}, {$limit}";
         $user_ranks = $wpdb->get_results( $qry );
 …
         'query_count' => $query_count,
         'badge_count' => $ranks_count,
-        'attr'        => $_REQUEST
     ) );
 …
  */
 function badgeos_ajax_get_earned_achievements() {
+    global $user_ID, $blog_id, $wpdb;
+    // Check for nonce security
+    if ( isset( $_REQUEST['nonce'] ) && ! wp_verify_nonce( $_REQUEST['nonce'], 'bos-security' ) ) {
+        wp_send_json_error( 'Request blocked' );
+    }
+    global $blog_id, $wpdb;
     // Convert $type to properly support multiple achievement types
 …
     // Setup our AJAX query vars
     $type       = isset( $_REQUEST['type'] )       ? $_REQUEST['type']       : false;
     $limit      = isset( $_REQUEST['limit'] )      ? $_REQUEST['limit']      : false;
     $offset     = isset( $_REQUEST['offset'] )     ? $_REQUEST['offset']     : false;
     $count      = isset( $_REQUEST['count'] )      ? $_REQUEST['count']      : false;
     $search     = isset( $_REQUEST['search'] )     ? $_REQUEST['search']     : false;
     $user_id    = isset( $_REQUEST['user_id'] )    ? $_REQUEST['user_id']    : get_current_user_id();
     $orderby    = isset( $_REQUEST['orderby'] )    ? $_REQUEST['orderby']    : 'ID';
     $order      = isset( $_REQUEST['order'] )      ? $_REQUEST['order']      : 'ASC';
     $wpms       = isset( $_REQUEST['wpms'] )       ? $_REQUEST['wpms']       : false;
     $include    = isset( $_REQUEST['include'] )    ? $_REQUEST['include']    : array();
     $exclude    = isset( $_REQUEST['exclude'] )    ? $_REQUEST['exclude']    : array();
     $show_title = isset( $_REQUEST['show_title'] ) ? $_REQUEST['show_title'] : 'true';
     $show_thumb = isset( $_REQUEST['show_thumb'] ) ? $_REQUEST['show_thumb'] : 'true';
     $show_description = isset( $_REQUEST['show_description'] ) ? $_REQUEST['show_description'] : 'true';
     $image_width = isset( $_REQUEST['image_width'] ) ? $_REQUEST['image_width'] : '';
     $image_height = isset( $_REQUEST['image_height'] ) ? $_REQUEST['image_height'] : '';
     $earned_achievements_shortcode_default_view = !empty( $_REQUEST['default_view'] ) ? $_REQUEST['default_view'] : $earned_achievements_shortcode_default_view;
+    $type       = isset( $_REQUEST['type'] )       ? sanitize_text_field( $_REQUEST['type']   )    : false;
+    $limit      = isset( $_REQUEST['limit'] )      ? sanitize_text_field( $_REQUEST['limit']  )    : false;
+    $offset     = isset( $_REQUEST['offset'] )     ? sanitize_text_field( $_REQUEST['offset'] )    : false;
+    $count      = isset( $_REQUEST['count'] )      ? sanitize_text_field( $_REQUEST['count']  )    : false;
+    $search     = isset( $_REQUEST['search'] )     ? sanitize_text_field( $_REQUEST['search'] )    : false;
+    $user_id    = isset( $_REQUEST['user_id'] )    ? sanitize_text_field( $_REQUEST['user_id'])    : get_current_user_id();
+    $orderby    = isset( $_REQUEST['orderby'] )    ? sanitize_text_field( $_REQUEST['orderby'])    : 'ID';
+    $order      = isset( $_REQUEST['order'] )      ? sanitize_text_field( $_REQUEST['order']  )    : 'ASC';
+    $wpms       = isset( $_REQUEST['wpms'] )       ? sanitize_text_field( $_REQUEST['wpms']   )    : false;
+    $include    = isset( $_REQUEST['include'] )    ? sanitize_text_field( $_REQUEST['include'])    : array();
+    $exclude    = isset( $_REQUEST['exclude'] )    ? sanitize_text_field( $_REQUEST['exclude'])    : array();
+    $show_title = isset( $_REQUEST['show_title'] ) ? sanitize_text_field($_REQUEST['show_title']) : 'true';
+    $show_thumb = isset( $_REQUEST['show_thumb'] ) ? sanitize_text_field($_REQUEST['show_thumb']) : 'true';
+    $show_description = isset( $_REQUEST['show_description'] ) ? sanitize_text_field($_REQUEST['show_description']) : 'true';
+    $image_width = isset( $_REQUEST['image_width'] ) ? sanitize_text_field($_REQUEST['image_width']) : '';
+    $image_height = isset( $_REQUEST['image_height'] ) ? sanitize_text_field($_REQUEST['image_height']) : '';
+    $earned_achievements_shortcode_default_view = !empty( $_REQUEST['default_view'] ) ? sanitize_text_field($_REQUEST['default_view'] ): $earned_achievements_shortcode_default_view;
     if ( 'all' == $type ) {
 …
     // Get the current user if one wasn't specified
     if( ! $user_id )
         $user_id = $user_ID;
+    // if( ! $user_id )
+        // $user_id = get_current_user_id();
     // Initialize our output and counters
 …
     // Loop through each site (default is current site only)
+    $table_name = $wpdb->prefix . "badgeos_achievements";
     $query_count = 0;
     foreach( $sites as $site_blog_id ) {
         $qry = "SELECT * FROM ".$wpdb->prefix."badgeos_achievements WHERE site_id='".$site_blog_id."'";
         $total_qry = "SELECT count(ID) as total FROM ".$wpdb->prefix."badgeos_achievements WHERE site_id='".$site_blog_id."'";
+        $qry = "SELECT * FROM {$table_name} WHERE site_id={$site_blog_id}";
+        $total_qry = "SELECT count(ID) as total FROM {$table_name} WHERE site_id={$site_blog_id}";
         if( is_array( $type ) && count( $type ) > 0 ) {
+            $qry .= " and post_type in ('".implode( "', '", $type )."') ";
+            $total_qry .= " and post_type in ('".implode( "', '", $type )."') ";
+        }
+        $qry .= " and user_id = '".$user_id."' ";
+        $total_qry .= " and user_id = '".$user_id."' ";
+            $types = implode( "', '", $type );
+            $qry .= " and post_type in ('{$types}') ";
+            $total_qry .= " and post_type in ('{$types}') ";
+        }
+        $qry .= " and user_id = {$user_id} ";
+        $total_qry .= " and user_id = {$user_id} ";
         if ( $search ) {
             $qry .= " and achievement_title like '%".$search."%' ";
             $total_qry .= " and achievement_title like '%".$search."%' ";
+            $qry .= " and achievement_title like '%{$search}%' ";
+            $total_qry .= " and achievement_title like '%{$search}%' ";
+        }
         // Build $include array
         if ( !empty( $include ) ) {
             $qry .= " and ID in (".$include.") ";
             $total_qry .= " and ID in (".$include.") ";
+            $qry .= " and ID in ({$include}) ";
+            $total_qry .= " and ID in ({$include}) ";
+        }
         // Build $exclude array
         if ( !empty( $exclude ) ) {
             $qry .= " and ID not in (".$exclude.") ";
             $total_qry .= " and ID not in (".$exclude.") ";
+            $qry .= " and ID not in ({$exclude}) ";
+            $total_qry .= " and ID not in ({$exclude}) ";
+        }
         $query_count += intval( $wpdb->get_var( $total_qry ) );
         if( !empty( $orderby ) ) {
             if( !empty( $order ) ) {
                 $qry .= " ORDER BY ".$orderby." ".$order;
+                $qry .= " ORDER BY {$orderby} {$order}";
             } else {
+                $qry .= " ORDER BY ".$orderby." ASC";
+            }
+        }
+        $qry .= " limit ".$offset.", ".$limit;
+                $qry .= " ORDER BY {$orderby} ASC";
+            }
+        }
+        $qry .= " limit {$offset}, {$limit}";
         $user_achievements = $wpdb->get_results( $qry );
 …
         'query_count' => $query_count,
         'badge_count' => $achievement_count,
-        'attr'        => $_REQUEST
     ) );
 …
  */
 function badgeos_ajax_get_achievements() {
+    global $user_ID, $blog_id;
+    // Check for nonce security
+    if ( isset( $_REQUEST['nonce'] ) && ! wp_verify_nonce( $_REQUEST['nonce'], 'bos-security' ) ) {
+        wp_send_json_error( 'Request blocked' );
+    }
+    global $blog_id;
     // Convert $type to properly support multiple achievement types
 …
     $earned_ids = [];
     // Setup our AJAX query vars
     $type       = isset( $_REQUEST['type'] )       ? $_REQUEST['type']       : false;
     $limit      = isset( $_REQUEST['limit'] )      ? $_REQUEST['limit']      : false;
     $offset     = isset( $_REQUEST['offset'] )     ? $_REQUEST['offset']     : false;
     $count      = isset( $_REQUEST['count'] )      ? $_REQUEST['count']      : false;
     $filter     = isset( $_REQUEST['filter'] )     ? $_REQUEST['filter']     : false;
     $search     = isset( $_REQUEST['search'] )     ? $_REQUEST['search']     : false;
     $user_id    = isset( $_REQUEST['user_id'] )    ? $_REQUEST['user_id']    : false;
     $orderby    = isset( $_REQUEST['orderby'] )    ? $_REQUEST['orderby']    : false;
     $order      = isset( $_REQUEST['order'] )      ? $_REQUEST['order']      : false;
     $wpms       = isset( $_REQUEST['wpms'] )       ? $_REQUEST['wpms']       : false;
     $include    = isset( $_REQUEST['include'] )    ? $_REQUEST['include']    : array();
     $exclude    = isset( $_REQUEST['exclude'] )    ? $_REQUEST['exclude']    : array();
     $meta_key   = isset( $_REQUEST['meta_key'] )   ? $_REQUEST['meta_key']   : '';
     $meta_value = isset( $_REQUEST['meta_value'] ) ? $_REQUEST['meta_value'] : '';
     $show_title = isset( $_REQUEST['show_title'] ) ? $_REQUEST['show_title'] : 'true';
     $show_thumb = isset( $_REQUEST['show_thumb'] ) ? $_REQUEST['show_thumb'] : 'true';
     $show_description = isset( $_REQUEST['show_description'] ) ? $_REQUEST['show_description'] : 'true';
     $show_steps = isset( $_REQUEST['show_steps'] ) ? $_REQUEST['show_steps'] : 'true';
     $image_width = isset( $_REQUEST['image_width'] ) ? $_REQUEST['image_width'] : '';
     $image_height = isset( $_REQUEST['image_height'] ) ? $_REQUEST['image_height'] : '';
     $achievement_list_default_view = !empty( $_REQUEST['default_view'] ) ? $_REQUEST['default_view'] : $achievement_list_default_view;
+    $type       = isset( $_REQUEST['type'] )       ? sanitize_text_field( $_REQUEST['type']       ): false;
+    $limit      = isset( $_REQUEST['limit'] )      ? sanitize_text_field( $_REQUEST['limit']      ): false;
+    $offset     = isset( $_REQUEST['offset'] )     ? sanitize_text_field( $_REQUEST['offset']     ): false;
+    $count      = isset( $_REQUEST['count'] )      ? sanitize_text_field( $_REQUEST['count']      ): false;
+    $filter     = isset( $_REQUEST['filter'] )     ? sanitize_text_field( $_REQUEST['filter']     ): false;
+    $search     = isset( $_REQUEST['search'] )     ? sanitize_text_field( $_REQUEST['search']     ): false;
+    $user_id    = isset( $_REQUEST['user_id'] )    ? sanitize_text_field( $_REQUEST['user_id']    ): false;
+    $orderby    = isset( $_REQUEST['orderby'] )    ? sanitize_text_field( $_REQUEST['orderby']    ): false;
+    $order      = isset( $_REQUEST['order'] )      ? sanitize_text_field( $_REQUEST['order']      ): false;
+    $wpms       = isset( $_REQUEST['wpms'] )       ? sanitize_text_field( $_REQUEST['wpms']       ): false;
+    $include    = isset( $_REQUEST['include'] )    ? sanitize_text_field( $_REQUEST['include']    ): array();
+    $exclude    = isset( $_REQUEST['exclude'] )    ? sanitize_text_field( $_REQUEST['exclude']    ): array();
+    $meta_key   = isset( $_REQUEST['meta_key'] )   ? sanitize_text_field( $_REQUEST['meta_key']   ): '';
+    $meta_value = isset( $_REQUEST['meta_value'] ) ? sanitize_text_field( $_REQUEST['meta_value'] ): '';
+    $show_title = isset( $_REQUEST['show_title'] ) ? sanitize_text_field( $_REQUEST['show_title'] ): 'true';
+    $show_thumb = isset( $_REQUEST['show_thumb'] ) ? sanitize_text_field( $_REQUEST['show_thumb'] ): 'true';
+    $show_description = isset( $_REQUEST['show_description'] ) ? sanitize_text_field($_REQUEST['show_description'] ) : 'true';
+    $show_steps = isset( $_REQUEST['show_steps'] ) ? sanitize_text_field($_REQUEST['show_steps'] ) : 'true';
+    $image_width = isset( $_REQUEST['image_width'] ) ? sanitize_text_field($_REQUEST['image_width'] ) : '';
+    $image_height = isset( $_REQUEST['image_height'] ) ? sanitize_text_field($_REQUEST['image_height'] ) : '';
+    $achievement_list_default_view = !empty( $_REQUEST['default_view'] ) ? sanitize_text_field($_REQUEST['default_view'] ) : $achievement_list_default_view;
     if ( 'all' == $type ) {
 …
     // Get the current user if one wasn't specified
     if( ! $user_id )
         $user_id = $user_ID;
+        $user_id = get_current_user_id();
     // Build $include array
 …
         'badge_count' => $achievement_count,
         'type'        => $earned_ids,
-        'attr'        => $_REQUEST
     ) );
+}
 …
     global $wpdb;
+    $str_query = sanitize_text_field( $_REQUEST['q'] );
     // Pull back the search string
     $search = esc_sql( $wpdb->esc_like( $_REQUEST['q'] ) );
+    $search = esc_sql( $wpdb->esc_like( $str_query ) );
     $sql = "SELECT ID as id, user_login as label, ID as value FROM {$wpdb->users}";
 …
     // Build our query
     if ( !empty( $search ) ) {
         $sql .= " WHERE user_login LIKE '%".$_REQUEST['q']."%'";
+        $sql .= " WHERE user_login LIKE '%{$str_query}%'";
+    }
     // Fetch our results (store as associative array)
     $results = $wpdb->get_results( $sql." limit 100 ", 'ARRAY_A' );
+    $results = $wpdb->get_results( $sql, 'ARRAY_A' );
     // Return our results
 …
     global $wpdb;
+    $str_query = sanitize_text_field( $_REQUEST['q'] );
     // Pull back the search string
     $search = esc_sql( $wpdb->esc_like( $_REQUEST['q'] ) );
+    $search = esc_sql( $wpdb->esc_like( $str_query ) );
     $sql = "SELECT ID as id, user_login as text FROM {$wpdb->users}";
 …
     // Build our query
     if ( !empty( $search ) ) {
         $sql .= " WHERE user_login LIKE '%".$_REQUEST['q']."%'";
+        $sql .= " WHERE user_login LIKE '%{$str_query}%'";
+    }
     // Fetch our results (store as associative array)
     $results = $wpdb->get_results( $sql." limit 100 ", 'ARRAY_A' );
+    $results = $wpdb->get_results( $sql, 'ARRAY_A' );
     // Return our results
 …
     $badgeos_settings = ( $exists = badgeos_utilities::get_option( 'badgeos_settings' ) ) ? $exists : array();
     // Pull back the search string
     $search = isset( $_REQUEST['q'] ) ? $wpdb->esc_like( $_REQUEST['q'] ) : '';
+    $search = isset( $_REQUEST['q'] ) ? $wpdb->esc_like( sanitize_text_field( $_REQUEST['q'] ) ) : '';
     $achievement_types = isset( $_REQUEST['post_type'] ) && 'all' !== $_REQUEST['post_type']
         ? array( esc_sql( $_REQUEST['post_type'] ) )
+        ? array( esc_sql( sanitize_text_field( $_REQUEST['post_type'] ) ) )
         : array_diff( badgeos_get_achievement_types_slugs(), array( trim( $badgeos_settings['achievement_step_post_type'] ) ) );
     $post_type = sprintf( 'AND p.post_type IN(\'%s\')', implode( "','", $achievement_types ) );
 …
         die();
+    }
+    $str_query = sanitize_text_field( $_REQUEST['q'] );
     $badgeos_settings = ( $exists = badgeos_utilities::get_option( 'badgeos_settings' ) ) ? $exists : array();
     $achievement_types = array_diff( badgeos_get_achievement_types_slugs(), array( trim( $badgeos_settings['achievement_step_post_type'] ) ) );
     $matches = preg_grep( "/{$_REQUEST['q']}/", $achievement_types );
+    $matches = preg_grep( "/{$str_query}/", $achievement_types );
     $found = array_map( 'get_post_type_object', $matches );
 …
 function delete_badgeos_log_entries() {
+    $action = ( isset( $_POST['action'] ) ? $_POST['action'] : '' );
+    $action = ( isset( $_POST['action'] ) ? sanitize_text_field( $_POST['action'] ) : '' );
     if( $action !== 'delete_badgeos_log_entries' ) {
         exit;

badgeos/trunk/includes/assets.php

-                      r2448573
+                      r2765251
         if( $assets[$assets_id] ) {
             $downloaded_assets_id = badgeos_utilities::get_option( 'badgeos_restapi_'.$assets_id  );
+            // $downloaded_assets_id = badgeos_utilities::get_option( 'badgeos_restapi_'.$assets_id  );
             if( trim( $downloaded_assets_id ) != 'downloaded' ) {
                 if( !empty( $assets[$assets_id]->asset_url ) ) {
 …
                             wp_update_attachment_metadata( $attach_id, $attach_data );
+                        }
                         badgeos_utilities::update_option( 'badgeos_restapi_'.$assets_id, 'downloaded'  );
+                        // badgeos_utilities::update_option( 'badgeos_restapi_'.$assets_id, 'downloaded'  );
                         echo 'done';
                     } else {

badgeos/trunk/includes/badgeos-emails.php

-                      r2687784
+                      r2765251
             if( ! isset( $badgeos_admin_tools['email_disable_earned_achievement_email'] ) || $badgeos_admin_tools['email_disable_earned_achievement_email'] == 'no' ) {
                 $results = $wpdb->get_results( "select * from ".$wpdb->prefix."badgeos_achievements where entry_id='".$entry_id."'", 'ARRAY_A' );
+                $results = $wpdb->get_results( "select * from ".$wpdb->prefix."badgeos_achievements where entry_id={$entry_id}", 'ARRAY_A' );
                 if( count( $results ) > 0 ) {
                     $record = $results[ 0 ];
 …
             if( ! isset( $badgeos_admin_tools['email_disable_achievement_steps_email'] ) || $badgeos_admin_tools['email_disable_achievement_steps_email'] == 'no' ) {
                 $results = $wpdb->get_results( "select * from ".$wpdb->prefix."badgeos_achievements where entry_id='".$entry_id."'", 'ARRAY_A' );
+                $results = $wpdb->get_results( "select * from ".$wpdb->prefix."badgeos_achievements where entry_id={$entry_id}", 'ARRAY_A' );
                 if( count( $results ) > 0 ) {
                     $record = $results[ 0 ];
 …
             if( ! isset( $badgeos_admin_tools['email_disable_rank_steps_email'] ) || $badgeos_admin_tools['email_disable_rank_steps_email'] == 'no' ) {
                 $results = $wpdb->get_results( "select * from ".$wpdb->prefix."badgeos_ranks where id='".$rank_entry_id."'", 'ARRAY_A' );
+                $results = $wpdb->get_results( "select * from ".$wpdb->prefix."badgeos_ranks where id={$rank_entry_id}", 'ARRAY_A' );
                 if( count( $results ) > 0 ) {
 …
                 if( ! isset( $badgeos_admin_tools['email_disable_ranks_email'] ) || $badgeos_admin_tools['email_disable_ranks_email'] == 'no' ) {
                     $results = $wpdb->get_results( "select * from ".$wpdb->prefix."badgeos_ranks where id='".$rank_entry_id."'", 'ARRAY_A' );
+                    $results = $wpdb->get_results( "select * from ".$wpdb->prefix."badgeos_ranks where id={$rank_entry_id}", 'ARRAY_A' );
                     if( count( $results ) > 0 ) {
 …
             if( ! isset( $badgeos_admin_tools['email_disable_point_awards_email'] ) || $badgeos_admin_tools['email_disable_point_awards_email'] == 'no' ) {
                 $results = $wpdb->get_results( "select * from ".$wpdb->prefix."badgeos_points where id='".$point_rec_id."'", 'ARRAY_A' );
+                $results = $wpdb->get_results( "select * from ".$wpdb->prefix."badgeos_points where id={$point_rec_id}", 'ARRAY_A' );
                 if( count( $results ) > 0 ) {
 …
             if( ! isset( $badgeos_admin_tools['email_disable_point_deducts_email'] ) || $badgeos_admin_tools['email_disable_point_deducts_email'] == 'no' ) {
                 $results = $wpdb->get_results( "select * from ".$wpdb->prefix."badgeos_points where id='".$point_rec_id."'", 'ARRAY_A' );
+                $results = $wpdb->get_results( "select * from ".$wpdb->prefix."badgeos_points where id={$point_rec_id}", 'ARRAY_A' );
                 if( count( $results ) > 0 ) {
 …
             if( ! isset( $badgeos_admin_tools['email_disable_earned_achievement_email'] ) || $badgeos_admin_tools['email_disable_earned_achievement_email'] == 'no' ) {
                 $results = $wpdb->get_results( "select * from ".$wpdb->prefix."badgeos_achievements where entry_id='".$entry_id."'", 'ARRAY_A' );
+                $results = $wpdb->get_results( "select * from ".$wpdb->prefix."badgeos_achievements where entry_id={$entry_id}", 'ARRAY_A' );
                 if( count( $results ) > 0 ) {
                     $record = $results[ 0 ];

badgeos/trunk/includes/blocks/block-routes.php

-                      r2384705
+                      r2765251
 function badgeos_block_achievements_award_list($request) {
   global $wpdb;
 …
   $q                  = sanitize_text_field( $request['q'] );
+  $sql = "SELECT entry_id as value, CONCAT(achievement_title, ' : ', entry_id) as label, entry_id as value FROM ".$wpdb->prefix."badgeos_achievements where post_type!='".$badgeos_settings['achievement_step_post_type']."'";
+  $table_name         = $wpdb->prefix.'badgeos_achievements';
+  $sql = "SELECT entry_id as value, CONCAT(achievement_title, ' : ', entry_id) as label FROM {$table_name} WHERE post_type != '{$badgeos_settings['achievement_step_post_type']}'";
   // Build our query
   if ( !empty( $q ) ) {
       $sql .= " and achievement_title LIKE '%". $q."%'";
+      $sql .= " and achievement_title LIKE '%{$q}%'";
+  }
   // Build our query
   if ( !empty( $achievement_id ) && intval( $achievement_id ) ) {
       $sql .= " and ID = '". $achievement_id."'";
+  if ( !empty( $achievement_id ) ) {
+      $sql .= " and ID = '{$achievement_id}'";
+  }
   // Build our query
   if ( ! empty( $user_id ) && intval( $user_id ) ) {
       $sql .= " and user_id = '". $user_id."'";
+  if ( ! empty( $user_id ) ) {
+      $sql .= " and user_id = '{$user_id}'";
+  }

badgeos/trunk/includes/cmb2/includes/CMB2.php

-                      r2068300
+                      r2765251
         // Fall-back to $_POST data.
         $this->data_to_save = ! empty( $data_to_save ) ? $data_to_save : $_POST;
+        $this->data_to_save = ! empty( $data_to_save ) ? $data_to_save : array_map( 'sanitize_post', $_POST );
         $object_id = $this->object_id( $object_id );
         $object_type = $this->object_type( $object_type );
 …
         switch ( $this->object_type() ) {
             case 'user':
                 $object_id = isset( $_REQUEST['user_id'] ) ? wp_unslash( $_REQUEST['user_id'] ) : $object_id;
+                $object_id = isset( $_REQUEST['user_id'] ) ? sanitize_text_field( $_REQUEST['user_id'] ) : $object_id;
                 $object_id = ! $object_id && 'user-new.php' !== $pagenow && isset( $GLOBALS['user_ID'] ) ? $GLOBALS['user_ID'] : $object_id;
                 break;
             case 'comment':
                 $object_id = isset( $_REQUEST['c'] ) ? wp_unslash( $_REQUEST['c'] ) : $object_id;
+                $object_id = isset( $_REQUEST['c'] ) ? sanitize_text_field( $_REQUEST['c'] ) : $object_id;
                 $object_id = ! $object_id && isset( $GLOBALS['comments']->comment_ID ) ? $GLOBALS['comments']->comment_ID : $object_id;
                 break;
             case 'term':
                 $object_id = isset( $_REQUEST['tag_ID'] ) ? wp_unslash( $_REQUEST['tag_ID'] ) : $object_id;
+                $object_id = isset( $_REQUEST['tag_ID'] ) ? sanitize_text_field( $_REQUEST['tag_ID'] ) : $object_id;
                 break;
 …
             default:
                 $object_id = isset( $GLOBALS['post']->ID ) ? $GLOBALS['post']->ID : $object_id;
                 $object_id = isset( $_REQUEST['post'] ) ? wp_unslash( $_REQUEST['post'] ) : $object_id;
+                $object_id = isset( $_REQUEST['post'] ) ? sanitize_text_field( $_REQUEST['post'] ) : $object_id;
                 break;
+        }
 …
         if ( ! empty( $_GET['page'] ) && in_array( $_GET['page'], $keys ) ) {
             $found_key = $_GET['page'];
+            $found_key = sanitize_text_field( $_GET['page'] );
+        }
         if ( ! empty( $_POST['action'] ) && in_array( $_POST['action'], $keys ) ) {
             $found_key = $_POST['action'];
+            $found_key = sanitize_text_field( $_POST['action'] );
+        }

badgeos/trunk/includes/cmb2/includes/CMB2_Ajax.php

-                      r2068300
+                      r2765251
         // Set width of embed
         $embed_width = isset( $_REQUEST['oembed_width'] ) && intval( $_REQUEST['oembed_width'] ) < 640 ? intval( $_REQUEST['oembed_width'] ) : '640';
+        $embed_width = isset( $_REQUEST['oembed_width'] ) && intval( $_REQUEST['oembed_width'] ) < 640 ? sanitize_text_field( $_REQUEST['oembed_width'] ) : '640';
         // Set url
 …
         $html = $this->get_oembed( array(
             'url'         => $oembed_url,
             'object_id'   => $_REQUEST['object_id'],
             'object_type' => isset( $_REQUEST['object_type'] ) ? $_REQUEST['object_type'] : 'post',
+            'object_id'   => sanitize_text_field( $_REQUEST['object_id'] ),
+            'object_type' => isset( $_REQUEST['object_type'] ) ? sanitize_text_field( $_REQUEST['object_type'] ) : 'post',
             'oembed_args' => $embed_args,
             'field_id'    => $_REQUEST['field_id'],
+            'field_id'    => sanitize_text_field( $_REQUEST['field_id'] ),
         ) );

badgeos/trunk/includes/cmb2/includes/CMB2_Options_Hookup.php

r2068300	r2765251
284	284
285	285	$updated = $this->cmb
286		->save_fields( $this->option_key, $this->cmb->object_type(), ~~$_POST~~ )
	286	->save_fields( $this->option_key, $this->cmb->object_type(), array_map('sanitize_text_field', $_POST ) )
287	287	->was_updated(); // Will be false if no values were changed/updated.
288	288

badgeos/trunk/includes/cmb2/includes/CMB2_hookup.php

r2384705	r2765251
599	599	if ( $section == $this->cmb->prop( 'new_user_section' ) ) {
600	600	$object_id = $this->cmb->object_id();
601		$this->cmb->object_id( isset( $_REQUEST['user_id'] ) ? ~~$_REQUEST['user_id']~~ : $object_id );
	601	$this->cmb->object_id( isset( $_REQUEST['user_id'] ) ? sanitize_text_field( $_REQUEST['user_id'] ): $object_id );
602	602	$this->user_metabox();
603	603	}
…	…
740	740
741	741	if ( $this->can_save( get_comment_type( $comment_id ) ) && $can_edit ) {
742		$this->cmb->save_fields( $comment_id, 'comment', ~~$_POST~~ );
	742	$this->cmb->save_fields( $comment_id, 'comment', array_map('sanitize_text_field', $_POST ) );
743	743	}
744	744	}
…	…
754	754	// check permissions
755	755	if ( $this->can_save( 'user' ) ) {
756		$this->cmb->save_fields( $user_id, 'user', ~~$_POST~~ );
	756	$this->cmb->save_fields( $user_id, 'user', array_map('sanitize_text_field', $_POST ) );
757	757	}
758	758	}
…	…
772	772	// check permissions
773	773	if ( $this->taxonomy_can_save( $taxonomy ) && $this->can_save( 'term' ) ) {
774		$this->cmb->save_fields( $term_id, 'term', ~~$_POST~~ );
	774	$this->cmb->save_fields( $term_id, 'term', array_map('sanitize_text_field', $_POST ) );
775	775	}
776	776	}

badgeos/trunk/includes/cmb2/includes/helper-functions.php

r2068300	r2765251
320	320	&& $object_id && $_POST['object_id'] == $object_id
321	321	) {
322		$cmb->save_fields( $object_id, $cmb->object_type(), ~~$_POST~~ );
	322	$cmb->save_fields( $object_id, $cmb->object_type(), array_map('sanitize_text_field', $_POST ) );
323	323	}
324	324

badgeos/trunk/includes/content-filters.php

-                      r2687784
+                      r2765251
         $default_point_type     = ( ! empty ( $badgeos_settings['default_point_type'] ) ) ? $badgeos_settings['default_point_type'] : '';
         $point_type = badgeos_points_type_display_title( $default_point_type );
+        if( !empty( $point_type ) ) {
+        if( ! empty( $point_type ) ) {
             return '<div class="badgeos-item-points badgeos-item-points-'.$points_type.' badgeos-item-points-'.$achievement_id.' badgeos-item-points-'.$points_type.'-'.$achievement_id.'"><span>0</span> '.$point_type.'</div>';
         } else {
 …
  */
 function badgeos_add_earned_class_single( $classes = array() ) {
-    global $user_ID;
     // check if current user has earned the achievement they're viewing
     $classes[] = badgeos_get_user_achievements( array( 'user_id' => $user_ID, 'achievement_id' => get_the_ID() ) ) ? 'user-has-earned' : 'user-has-not-earned';
+    $classes[] = badgeos_get_user_achievements( array( 'user_id' => get_current_user_id(), 'achievement_id' => get_the_ID() ) ) ? 'user-has-earned' : 'user-has-not-earned';
     return $classes;
 …
 function badgeos_render_achievement( $achievement = 0, $show_title = 'true', $show_thumb = 'true', $show_description = 'true', $show_steps = 'true', $image_width = '', $image_height = '' ) {
+    global $user_ID, $wpdb;
+    global $wpdb;
+    $user_id = get_current_user_id();
     // If we were given an ID, get the post
 …
     // check if user has earned this Achievement, and add an 'earned' class
     $earned_status = badgeos_get_user_achievements( array( 'user_id' => $user_ID, 'achievement_id' => absint( $achievement->ID ) ) ) ? 'user-has-earned' : 'user-has-not-earned';
+    $earned_status = badgeos_get_user_achievements( array( 'user_id' => absint( $user_id ), 'achievement_id' => absint( $achievement->ID ) ) ) ? 'user-has-earned' : 'user-has-not-earned';
     // Each Achievement
 …
             $check_mark = '';
             $settings = ( $exists = badgeos_utilities::get_option( 'badgeos_settings' ) ) ? $exists : array();
             $last_achievements = $wpdb->get_results( $wpdb->prepare( "select * from ".$wpdb->prefix."badgeos_achievements where post_type!=%s and user_id=%d order by actual_date_earned desc limit 1", trim( $settings['achievement_step_post_type'] ), $user_ID ) );
+            $last_achievements = $wpdb->get_results( $wpdb->prepare( "select * from ".$wpdb->prefix."badgeos_achievements where post_type!=%s and user_id=%d order by actual_date_earned desc limit 1", trim( $settings['achievement_step_post_type'] ), $user_id ) );
             if( count( $last_achievements ) > 0 ) {
                 $last_earned_id = $last_achievements[0]->ID;

badgeos/trunk/includes/meta-boxes.php

-                      r2687784
+                      r2765251
     // Setup our $post_id, if available
     $post_id = isset( $_GET['post'] ) ? $_GET['post'] : 0;
+    $post_id = isset( $_GET['post'] ) ? sanitize_text_field( $_GET['post'] ) : 0;
     $badgeos_settings = ( $exists = badgeos_utilities::get_option( 'badgeos_settings' ) ) ? $exists : array();
 …
     // Setup our $post_id, if available
     $post_id = isset( $_GET['post'] ) ? $_GET['post'] : 0;
+    $post_id = isset( $_GET['post'] ) ? sanitize_text_field( $_GET['post'] ) : 0;
     // New Achievement Types

badgeos/trunk/includes/meta-to-db.php

r2384705	r2765251
3	3	function badgeos_migrate_data_from_meta_to_db_callback() {
4	4
5		$action = ( isset( $_POST['action'] ) ? ~~$_POST['action']~~ : '' );
	5	$action = ( isset( $_POST['action'] ) ? sanitize_text_field( $_POST['action'] ) : '' );
6	6
7	7	if( $action == 'badgeos_migrate_data_from_meta_to_db' ) {

badgeos/trunk/includes/open_badge/class-open-badge.php

r2562800	r2765251
337	337	$badge_expiry = '';
338	338
339		$recs = $wpdb->get_results( "select * from ".$wpdb->prefix."badgeos_achievements where entry_id=~~'".$entry_id."'~~" );
	339	$recs = $wpdb->get_results( "select * from ".$wpdb->prefix."badgeos_achievements where entry_id={$entry_id}" );
340	340	if( count( $recs ) > 0 && intval( $open_badge_expiration ) > 0 ) {
341	341

badgeos/trunk/includes/open_badge/functions.php

-                      r2448573
+                      r2765251
         $achievement_id = sanitize_text_field( $_REQUEST['achievement_id'] );
         $where = " entry_id = '".$entry_id."' and ID = '".$achievement_id."' and user_id='".$user_id."'";
+        $where = " entry_id={$entry_id} and ID ={$achievement_id} AND user_id={$user_id} ";
         $table_name = $wpdb->prefix . 'badgeos_achievements';
 …
     //$pt = get_current_screen()->post_type;
     $pt = isset( $_GET['post'] ) ? get_post_type( $_GET['post'] ) : '';
+    $pt = isset( $_GET['post'] ) ? get_post_type(  sanitize_text_field( $_GET['post'] ) ) : '';
     $badgeos_settings = ( $exists = badgeos_utilities::get_option( 'badgeos_settings' ) ) ? $exists : array();
     $achievement_types = get_posts( array(
 …
 function badgeos_open_badge_metabox_save( $post_id = 0 ) {
-    // Verify nonce
     if ( isset( $_POST['badgeos_ob_quick_bulk_edit_action'] ) && $_POST['badgeos_ob_quick_bulk_edit_action'] == 'yes' ) {
 …
     if( isset( $_REQUEST[ 'post' ] ) && is_array( $_REQUEST[ 'post' ] ) && count( $_REQUEST[ 'post' ] ) > 0 ) {
         $post_ids = $_REQUEST[ 'post' ];
+        $post_ids = array_map( 'sanitize_text_field', $_REQUEST[ 'post' ] );
         if( is_array( $post_ids ) &&  count( $post_ids ) > 0 ) {
             foreach( $post_ids as $post_id ) {
                 if( isset( $_REQUEST['open_badge_enable_baking']  ) ) {
+                    badgeos_utilities::update_post_meta( $post_id, '_open_badge_enable_baking', $_REQUEST['open_badge_enable_baking'] == '1'?'true':'false' );
+                    $open_badge_enable_baking = sanitize_text_field( $_REQUEST['open_badge_enable_baking'] ) == '1' ? 'true' : 'false';
+                    badgeos_utilities::update_post_meta( $post_id, '_open_badge_enable_baking', $open_badge_enable_baking  );
+                }
                 badgeos_utilities::update_post_meta( $post_id, '_open_badge_criteria', get_permalink( $post_id ) );
+                badgeos_utilities::update_post_meta( $post_id, '_open_badge_criteria', get_permalink( absint( $post_id ) ) );
                 if( isset( $_REQUEST['open_badge_include_evidence']  ) ) {
+                    badgeos_utilities::update_post_meta( $post_id, '_open_badge_include_evidence', $_REQUEST['open_badge_include_evidence'] == '1'?'true':'false' );
+                    $open_badge_include_evidence = sanitize_text_field( $_REQUEST['open_badge_include_evidence'] ) == '1' ? 'true': 'false';
+                    badgeos_utilities::update_post_meta( $post_id, '_open_badge_include_evidence', $open_badge_include_evidence );
+                }

badgeos/trunk/includes/open_badge/ob-metabox.php

-                      r2562800
+                      r2765251
         $msg = array( 'type' => 'error', 'result' => 0,'message' => __( 'We are unable to serve ur request. Please, try back later.', 'badgeos' ) );
+        $table_name = $wpdb->prefix.'badgeos_achievements';
         switch( $type ) {
             case "issued_on":
                 $recs = $wpdb->get_results( "select * from ".$wpdb->prefix."badgeos_achievements where entry_id='".$entry_id."'" );
+                $recs = $wpdb->get_results( "SELECT * FROM {$table_name} WHERE entry_id={$entry_id}" );
                 if( count( $recs ) > 0 ) {
                     $msg = array( 'type' => 'success', 'result' => 1, 'message' => __( 'Issued On ', 'badgeos' ).date( $date_format.' '.$time_format, strtotime($recs[0]->date_earned) ) );
 …
                 break;
             case "issued_by":
                 $recs = $wpdb->get_results( "select * from ".$wpdb->prefix."badgeos_achievements where entry_id='".$entry_id."'" );
+                $recs = $wpdb->get_results( "SELECT * FROM {$table_name} WHERE entry_id={$entry_id}" );
                 if( count( $recs ) > 0 ) {
                     $site_title = get_bloginfo( 'name' );
 …
                 break;
             case "issued_using":
                 $recs = $wpdb->get_results( "select * from ".$wpdb->prefix."badgeos_achievements where entry_id='".$entry_id."'" );
+                $recs = $wpdb->get_results( "SELECT * FROM {$table_name} WHERE entry_id={$entry_id}" );
                 if( count( $recs ) > 0 ) {
                     $site_title = get_bloginfo( 'name' );
 …
                 break;
             case "issued_to":
                 $recs = $wpdb->get_results( "select * from ".$wpdb->prefix."badgeos_achievements where entry_id='".$entry_id."'" );
+                $recs = $wpdb->get_results( "SELECT * FROM {$table_name} WHERE entry_id={$entry_id}" );
                 if( count( $recs ) > 0 ) {
                     $user_id = $recs[0]->user_id;
 …
                 break;
             case "expiry_date":
                 $recs = $wpdb->get_results( "select * from ".$wpdb->prefix."badgeos_achievements where entry_id='".$entry_id."'" );
+                $recs = $wpdb->get_results( "SELECT * FROM {$table_name} WHERE entry_id={$entry_id}" );
                 $open_badge_expiration       = ( badgeos_utilities::get_post_meta( $recs[0]->ID, '_open_badge_expiration', true ) ? badgeos_utilities::get_post_meta( $recs[0]->ID, '_open_badge_expiration', true ) : '0' );
                 $open_badge_expiration_type  = ( badgeos_utilities::get_post_meta( $recs[0]->ID, '_open_badge_expiration_type', true ) ? badgeos_utilities::get_post_meta( $recs[0]->ID, '_open_badge_expiration_type', true ) : '0' );
                 if( intval( $open_badge_expiration ) > 0 ) {
                     $recs = $wpdb->get_results( "select * from ".$wpdb->prefix."badgeos_achievements where entry_id='".$entry_id."'" );
+                    $recs = $wpdb->get_results( "SELECT * FROM {$table_name} WHERE entry_id={$entry_id}" );
                     if( count( $recs ) > 0 ) {
                         $badge_date = strtotime( $recs[ 0 ]->date_earned );
 …
+                    }
                 } else {
                     $recs = $wpdb->get_results( "select * from ".$wpdb->prefix."badgeos_achievements where entry_id='".$entry_id."'" );
+                    $recs = $wpdb->get_results( "SELECT * FROM {$table_name} WHERE entry_id={$entry_id}" );
                     if( count( $recs ) > 0 ) {
                         $msg = array( 'type' => 'success', 'result' => 1, 'message' => __( 'No Expiry Date', 'badgeos' ) );

badgeos/trunk/includes/p2p/p2p-admin/box-factory.php

-                      r1759600
+                      r2765251
             // Loop through the hidden fields instead of through $_POST['p2p_meta'] because empty checkboxes send no data.
             foreach ( $_POST['p2p_connections'] as $p2p_id ) {
                 $data = scbForms::get_value( array( 'p2p_meta', $p2p_id ), $_POST, array() );
+                $data = scbForms::get_value( array( 'p2p_meta', $p2p_id ), array_map( 'sanitize_text_field', $_POST ), array() );
                 $connection = p2p_get_connection( $p2p_id );
 …
         check_ajax_referer( P2P_BOX_NONCE, 'nonce' );
         $ctype = p2p_type( $_REQUEST['p2p_type'] );
+        $ctype = p2p_type( sanitize_text_field($_REQUEST['p2p_type']) );
         if ( !$ctype || !isset( $this->queue[$ctype->name] ) )
             die(0);
         $directed = $ctype->set_direction( $_REQUEST['direction'] );
+        $directed = $ctype->set_direction(sanitize_text_field( $_REQUEST['direction']) );
         if ( !$directed )
             die(0);
         $post = get_post( $_REQUEST['from'] );
+        $post = get_post( sanitize_text_field($_REQUEST['from']) );
         if ( !$post )
             die(0);
 …
         $box = $this->create_box( $directed );
         $method = 'ajax_' . $_REQUEST['subaction'];
+        $method = 'ajax_' . sanitize_text_field($_REQUEST['subaction']);
         $box->$method();

badgeos/trunk/includes/p2p/p2p-admin/box.php

-                      r1759600
+                      r2765251
         $args = array(
             'post_title' => $_POST['post_title'],
+            'post_title' => sanitize_text_field( $_POST['post_title'] ),
             'post_author' => get_current_user_id(),
             'post_type' => $this->ctype->get( 'opposite', 'side' )->first_post_type()
 …
     public function ajax_connect() {
         $this->safe_connect( $_POST['to'] );
+        $this->safe_connect( sanitize_text_field( $_POST['to'] ) );
+    }
 …
     public function ajax_disconnect() {
         p2p_delete_connection( $_POST['p2p_id'] );
+        p2p_delete_connection( sanitize_text_field( $_POST['p2p_id'] ) );
         $this->refresh_candidates();
 …
     public function ajax_clear_connections() {
         $r = $this->ctype->disconnect( $_POST['from'], 'any' );
+        $r = $this->ctype->disconnect( sanitize_text_field( $_POST['from'] ), 'any' );
         self::maybe_send_error( $r );
 …
     private function refresh_candidates() {
         die( json_encode( $this->candidate_rows(
             $_REQUEST['from'], $_REQUEST['paged'], $_REQUEST['s'] ) ) );
+            sanitize_text_field($_REQUEST['from']), sanitize_text_field($_REQUEST['paged']), sanitize_text_field($_REQUEST['s']) ) ) );
+    }

badgeos/trunk/includes/p2p/p2p-admin/dropdown.php

-                      r1759600
+                      r2765251
             'choices' => self::get_choices( $this->ctype ),
             'text' => $title,
         ), $_GET );
+        ), array_map( 'sanitize_text_field', $_GET  ) );
+    }
 …
         $args = array();
         $tmp = reset( $_GET['p2p'] );
+        $tmp = reset( sanitize_text_field( $_GET['p2p'] ) );
         $args['connected_type'] = key( $_GET['p2p'] );
+        $args['connected_type'] = key( sanitize_text_field( $_GET['p2p'] ) );
         list( $args['connected_direction'], $args['connected_items'] ) = each( $tmp );

badgeos/trunk/includes/p2p/p2p-admin/tools-page.php

-                      r2384705
+                      r2765251
         global $wpdb;
         $old_p2p_type = $_POST['old_p2p_type'];
         $new_p2p_type = $_POST['new_p2p_type'];
+        $old_p2p_type = sanitize_text_field( $_POST['old_p2p_type'] );
+        $new_p2p_type = sanitize_text_field( $_POST['new_p2p_type'] );
         if ( !p2p_type( $new_p2p_type ) ) {

badgeos/trunk/includes/p2p/scb/AdminPage.php

r2303506	r2765251
205	205	}
206	206
207		$new_data = wp_array_slice_assoc( ~~$_POST~~, array_keys( $this->options->get_defaults() ) );
	207	$new_data = wp_array_slice_assoc( array_map( 'sanitize_text_field', $_POST ), array_keys( $this->options->get_defaults() ) );
208	208
209	209	$new_data = stripslashes_deep( $new_data );

badgeos/trunk/includes/p2p/scb/Forms.php

r2548255	r2765251
204	204	static function validate_post_data( $fields, $data = null, $to_update = array() ) {
205	205	if ( null === $data ) {
206		$data = stripslashes_deep( ~~$_POST~~ );
	206	$data = stripslashes_deep( array_map( 'sanitize_text_field', $_POST ));
207	207	}
208	208

badgeos/trunk/includes/points/award-steps-ui.php

-                      r2687784
+                      r2765251
         'num_of_years'              => badgeos_utilities::get_post_meta( $step_id, '_badgeos_num_of_years', true ),
         'x_number_of_users'         => badgeos_utilities::get_post_meta( $step_id, '_badgeos_x_number_of_users', true ),
     'x_number_of_users_date'    => badgeos_utilities::get_post_meta( $step_id, '_badgeos_x_number_of_users_date', true ),
+        'x_number_of_users_date'    => badgeos_utilities::get_post_meta( $step_id, '_badgeos_x_number_of_users_date', true ),
         'num_of_months'             => badgeos_utilities::get_post_meta( $step_id, '_badgeos_num_of_months', true ),
         'num_of_days'               => badgeos_utilities::get_post_meta( $step_id, '_badgeos_num_of_days', true ),
 …
     ) );
+    $achievement_post_id = isset( $_POST['achievement_id'] ) ? absint( $_POST['achievement_id'] ) : 0;
     /**
      * Output the edit step html to insert into the Steps metabox
      */
     badgeos_award_steps_ui_html( $step_id, $_POST['achievement_id'] );
+    badgeos_award_steps_ui_html( $step_id, $achievement_post_id );
     /**
      * Grab the post object for our Achievement
      */
     $achievement = badgeos_utilities::badgeos_get_post( $_POST['achievement_id'] );
+    $achievement = badgeos_utilities::badgeos_get_post( $achievement_post_id );
     /**
 …
         array(
             'from' => $step_id,
             'to'   => $_POST['achievement_id'],
+            'to'   => $achievement_post_id,
             'meta' => array(
                 'date' => current_time( 'mysql' )
 …
 function badgeos_delete_award_step_ajax_handler() {
     wp_delete_post( $_POST['step_id'] );
+    wp_delete_post( absint( $_POST['step_id'] ) );
     die;
+}
 …
          */
         $new_titles = array();
+        $steps = $_POST['steps'];
         /**
          * Loop through each of the created steps
          */
         foreach ( $_POST['steps'] as $key => $step ) {
+        foreach ( $steps as $key => $step ) {
             /**
              * Grab all of the relevant values of that step
              */
             $step_id            = $step['step_id'];
             $required_count     = ( ! empty( $step['required_count'] ) ) ? $step['required_count'] : 1;
             $point_value        = ( ! empty( $step['point_value'] ) ) ? $step['point_value'] : 0;
             $trigger_type       = $step['trigger_type'];
             $num_of_years       = $step['num_of_years'];
             $x_number_of_users  = $step['x_number_of_users'];
             $num_of_months      = $step['num_of_months'];
             $num_of_days        = $step['num_of_days'];
             $visit_post         = $step['visit_post'];
             $visit_page         = $step['visit_page'];
             $achievement_type = $step['achievement_type'];
+            $step_id            = sanitize_text_field( $step['step_id'] );
+            $required_count     = ( ! empty( $step['required_count'] ) ) ? sanitize_text_field( $step['required_count'] ) : 1;
+            $point_value        = ( ! empty( $step['point_value'] ) ) ? sanitize_text_field( $step['point_value'] ) : 0;
+            $trigger_type       = sanitize_text_field( $step['trigger_type'] );
+            $num_of_years       = sanitize_text_field( $step['num_of_years'] );
+            $x_number_of_users  = sanitize_text_field( $step['x_number_of_users'] );
+            $num_of_months      = sanitize_text_field( $step['num_of_months'] );
+            $num_of_days        = sanitize_text_field( $step['num_of_days'] );
+            $visit_post         = sanitize_text_field( $step['visit_post'] );
+            $visit_page         = sanitize_text_field( $step['visit_page'] );
+            $achievement_type = sanitize_text_field( $step['achievement_type'] );
             $badgeos_subtrigger_id = '';
 …
             $badgeos_fields_data = '';
             if( isset( $step['badgeos_subtrigger_id'] ) ) {
                 $badgeos_subtrigger_id      = $step['badgeos_subtrigger_id'];
+                $badgeos_subtrigger_id      = sanitize_text_field( $step['badgeos_subtrigger_id'] );
+            }
             if( isset( $step['badgeos_subtrigger_value'] ) ) {
                 $badgeos_subtrigger_value   = $step['badgeos_subtrigger_value'];
+                $badgeos_subtrigger_value   = sanitize_text_field( $step['badgeos_subtrigger_value'] );
+            }
             if( isset( $step['badgeos_fields_data'] ) ) {
                 $badgeos_fields_data        = $step['badgeos_fields_data'];
+                $badgeos_fields_data        = sanitize_text_field( $step['badgeos_fields_data'] );
+            }
 …
      * Grab our achievement type from the AJAX request
      */
     $achievement_type = $_REQUEST['achievement_type'];
     $exclude_posts = (array) $_REQUEST['excluded_posts'];
     $requirements = badgeos_get_award_step_requirements( $_REQUEST['step_id'] );
+    $achievement_type = sanitize_text_field( $_REQUEST['achievement_type'] );
+    $exclude_posts = array_map( 'sanitize_text_field', (array) $_REQUEST['excluded_posts'] );
+    $requirements = badgeos_get_award_step_requirements( sanitize_text_field($_REQUEST['step_id']) );
     /**

badgeos/trunk/includes/points/deduct-steps-ui.php

-                      r2687784
+                      r2765251
         'num_of_years'              => badgeos_utilities::get_post_meta( $step_id, '_badgeos_num_of_years', true ),
         'x_number_of_users'         => badgeos_utilities::get_post_meta( $step_id, '_badgeos_x_number_of_users', true ),
     'x_number_of_users_date'    => badgeos_utilities::get_post_meta( $step_id, '_badgeos_x_number_of_users_date', true ),
+        'x_number_of_users_date'    => badgeos_utilities::get_post_meta( $step_id, '_badgeos_x_number_of_users_date', true ),
         'remove_rank'               => badgeos_utilities::get_post_meta( $step_id, '_badgeos_remove_rank', true ),
         'remove_achivement'         => badgeos_utilities::get_post_meta( $step_id, '_badgeos_remove_achivement', true ),
 …
     ) );
+    $achievement_post_id = isset( $_POST['achievement_id'] ) ? absint( $_POST['achievement_id'] ) : 0;
     /**
      * Output the edit step html to insert into the Steps metabox
      */
     badgeos_deduct_steps_ui_html( $step_id, $_POST['achievement_id'] );
+    badgeos_deduct_steps_ui_html( $step_id, $achievement_post_id );
     /**
      * Grab the post object for our Achievement
      */
     $achievement = badgeos_utilities::badgeos_get_post( $_POST['achievement_id'] );
+    $achievement = badgeos_utilities::badgeos_get_post( $achievement_post_id );
     /**
 …
         array(
             'from' => $step_id,
             'to'   => $_POST['achievement_id'],
+            'to'   => $achievement_post_id,
             'meta' => array(
                 'date' => current_time( 'mysql' )
 …
  */
 function badgeos_delete_deduct_step_ajax_handler() {
     wp_delete_post( $_POST['step_id'] );
+    wp_delete_post( absint( $_POST['step_id'] ) );
     die;
+}
 …
          */
         $new_titles = array();
+        $steps = $_POST['steps'];
         /**
          * Loop through each of the created steps
          */
         foreach ( $_POST['steps'] as $key => $step ) {
+        foreach ( $steps as $key => $step ) {
             /**
              * Grab all of the relevant values of that step
              */
             $step_id          = $step['step_id'];
             $required_count   = ( ! empty( $step['required_count'] ) ) ? $step['required_count'] : 1;
             $point_value   = ( ! empty( $step['point_value'] ) ) ? $step['point_value'] : 0;
             $visit_post         = $step['visit_post'];
             $visit_page         = $step['visit_page'];
             $num_of_years       = $step['num_of_years'];
             $remove_achivement  = $step['remove_achivement'];
             $remove_rank        = $step['remove_rank'];
             $x_number_of_users  = $step['x_number_of_users'];
             $num_of_days        = $step['num_of_days'];
             $num_of_months      = $step['num_of_months'];
             $trigger_type       = $step['trigger_type'];
             $achievement_type   = $step['achievement_type'];
+            $step_id            = sanitize_text_field( $step['step_id'] );
+            $required_count     = ( ! empty( $step['required_count'] ) ) ? sanitize_text_field( $step['required_count'] ) : 1;
+            $point_value        = ( ! empty( $step['point_value'] ) ) ? sanitize_text_field( $step['point_value'] ) : 0;
+            $visit_post         = sanitize_text_field( $step['visit_post'] );
+            $visit_page         = sanitize_text_field( $step['visit_page'] );
+            $num_of_years       = sanitize_text_field( $step['num_of_years'] );
+            $remove_achivement  = sanitize_text_field( $step['remove_achivement'] );
+            $remove_rank        = sanitize_text_field( $step['remove_rank'] );
+            $x_number_of_users  = sanitize_text_field( $step['x_number_of_users'] );
+            $num_of_days        = sanitize_text_field( $step['num_of_days'] );
+            $num_of_months      = sanitize_text_field( $step['num_of_months'] );
+            $trigger_type       = sanitize_text_field( $step['trigger_type'] );
+            $achievement_type   = sanitize_text_field( $step['achievement_type'] );
             $badgeos_subtrigger_id = '';
 …
             $badgeos_fields_data = '';
             if( isset( $step['badgeos_subtrigger_id'] ) )
                 $badgeos_subtrigger_id      = $step['badgeos_subtrigger_id'];
+                $badgeos_subtrigger_id      = sanitize_text_field( $step['badgeos_subtrigger_id'] );
             if( isset( $step['badgeos_subtrigger_value'] ) )
                 $badgeos_subtrigger_value   = $step['badgeos_subtrigger_value'];
+                $badgeos_subtrigger_value   = sanitize_text_field( $step['badgeos_subtrigger_value'] );
             if( isset( $step['badgeos_fields_data'] ) )
                 $badgeos_fields_data        = $step['badgeos_fields_data'];
+                $badgeos_fields_data        = sanitize_text_field( $step['badgeos_fields_data'] );
             /**
 …
      * Grab our achievement type from the AJAX request
      */
     $achievement_type = $_REQUEST['achievement_type'];
     $exclude_posts = (array) $_REQUEST['excluded_posts'];
     $requirements = badgeos_get_deduct_step_requirements( $_REQUEST['step_id'] );
+    $achievement_type = sanitize_text_field( $_REQUEST['achievement_type'] );
+    $exclude_posts = array_map( 'sanitize_text_field', (array) $_REQUEST['excluded_posts'] );
+    $requirements = badgeos_get_deduct_step_requirements( sanitize_text_field($_REQUEST['step_id']) );
     /**

badgeos/trunk/includes/points/meta-boxes.php

r2384705	r2765251
26	26	* Setup our $post_id, if available
27	27	*/
28		$post_id = isset( $_GET['post'] ) ? ~~$_GET['post']~~ : 0;
	28	$post_id = isset( $_GET['post'] ) ? sanitize_text_field( $_GET['post'] ): 0;
29	29
30	30	/**

badgeos/trunk/includes/points/point-functions.php

-                      r2384705
+                      r2765251
     $points         = badgeos_utilities::get_post_meta( $achievement_id, '_badgeos_points', true );
     $point_value    = $points['_badgeos_points'];
     $points_type    = $points['_badgeos_points_type'];
+    $point_value    = isset( $points['_badgeos_points'] ) ? $points['_badgeos_points'] : 0;
+    $points_type    = isset( $points['_badgeos_points_type'] ) ? $points['_badgeos_points_type'] : 0;
     if( $points_type != 0 ) {
         $earned_credits = badgeos_get_points_by_type( $points_type, $user_id );
 …
     } else {
         if ( $admin_id )
             $log_message = sprintf( __( '%1$s awarded %2$s %3$s points for a new total of %4$s points', 'badgeos' ), $admin->user_login, $user->user_login, number_format( $new_points ), number_format( $total_points ) );
+            $log_message = sprintf( __( '%1$s awarded %2$s %3$s points for a new total of %4$s points', 'badgeos' ), $admin->user_login, $user->user_login, number_format( absint($new_points) ), number_format( absint($new_points) ) );
         else
             $log_message = sprintf( __( '%1$s earned %2$s points from %3$s.', 'badgeos' ), $user->user_login, number_format( $new_points ), $point_type_title );

badgeos/trunk/includes/points/point-rules-engine.php

-                      r2687784
+                      r2765251
                                             $table_name = $wpdb->prefix . "badgeos_achievements";
                                             if($wpdb->get_var("show tables like '$table_name'") == $table_name) {
                                                 $where = " where user_id='".intval($user_id)."' and entry_id = '".intval($item->entry_id)."'";
                                                 $wpdb->get_results('delete from '.$wpdb->prefix.'badgeos_achievements '.$where.' limit 1' );
+                                                $where = " where user_id={$user_id} and entry_id = {$item->entry_id}";
+                                                $wpdb->get_results("delete from '.$wpdb->prefix.'badgeos_achievements {$where} limit 1" );
+                                            }
                                             badgeos_decrement_user_trigger_count( $user_id, $child->ID, $del_ach_id );
 …
+            }
             $strQuery = "select * from ".$wpdb->prefix . "badgeos_points where step_id='".$step_id."' and user_id='".$user_id."' and Year(dateadded)='".date('Y')."'";
+            $strQuery = "select * from ".$wpdb->prefix . "badgeos_points where step_id={$step_id} and user_id={$user_id} and Year(dateadded)='".date('Y')."'";
             $points = $wpdb->get_results( $strQuery );
             if( count( $points ) > 0 ) {
 …
             $count = absint( badgeos_utilities::get_post_meta( $step_id, '_badgeos_count', true ) );
             if( intval( $x_number_of_users ) > 0 ) {
                 $strQuery = "select id from ".$wpdb->prefix . "badgeos_points where step_id='".$step_id."'";
+                $strQuery = "select id from ".$wpdb->prefix . "badgeos_points where step_id={$step_id}";
                 $total_points = $wpdb->get_results( $strQuery );
                 if( count( $total_points ) > intval( $x_number_of_users ) ) {
 …
+            }
             $strQuery = "select * from ".$wpdb->prefix . "badgeos_points where step_id='".$step_id."' and user_id='".$user_id."'";
+            $strQuery = "select * from ".$wpdb->prefix . "badgeos_points where step_id={$step_id} and user_id={$user_id}";
             $my_points = $wpdb->get_results( $strQuery );
             if( count( $my_points ) >= intval( $count ) ) {
 …
             $reg_date = strtotime( get_userdata($user_id)->user_registered );
             $num_of_months = badgeos_utilities::get_post_meta( absint( $step_id ), '_badgeos_num_of_months', true );
             $strQuery = "select * from ".$wpdb->prefix . "badgeos_points where step_id='".$step_id."' and user_id='".$user_id."' order by actual_date_earned desc limit 1";
+            $strQuery = "select * from ".$wpdb->prefix . "badgeos_points where step_id={$step_id} and user_id={$user_id} order by actual_date_earned desc limit 1";
             $points = $wpdb->get_results( $strQuery );
             $return = false;
 …
             $reg_date = strtotime( get_userdata($user_id)->user_registered );
             $num_of_days = badgeos_utilities::get_post_meta( absint( $step_id ), '_badgeos_num_of_days', true );
             $strQuery = "select * from ".$wpdb->prefix . "badgeos_points where step_id='".$step_id."' and user_id='".$user_id."' order by actual_date_earned desc limit 1";
+            $strQuery = "select * from ".$wpdb->prefix . "badgeos_points where step_id={$step_id} and user_id={$user_id} order by actual_date_earned desc limit 1";
             $points = $wpdb->get_results( $strQuery );
             $return = false;

badgeos/trunk/includes/points/triggers.php

-                      r2687784
+                      r2765251
      * Setup all our globals
      */
     global $user_ID, $blog_id, $wpdb;
+    global $blog_id, $wpdb;
     $site_id = $blog_id;
 …
      * Setup all our globals
      */
     global $user_ID, $blog_id, $wpdb;
+    global $blog_id, $wpdb;
     $site_id = $blog_id;
 …
      * Setup all our globals
      */
     global $user_ID, $blog_id, $wpdb;
+    global $blog_id, $wpdb;
     $site_id = $blog_id;
 …
      * Setup all our globals
      */
     global $user_ID, $blog_id, $wpdb;
+    global $blog_id, $wpdb;
     $site_id = $blog_id;

badgeos/trunk/includes/ranks/meta-boxes.php

-                      r2392364
+                      r2765251
      * Setup our $post_id, if available
      */
     $post_id = isset( $_GET['post'] ) ? $_GET['post'] : 0;
+    $post_id = isset( $_GET['post'] ) ? sanitize_text_field( $_GET['post'] ): 0;
     /**
 …
      * Setup our $post_id, if available
      */
     $post_id = isset( $_GET['post'] ) ? $_GET['post'] : 0;
+    $post_id = isset( $_GET['post'] ) ? sanitize_text_field( $_GET['post'] ): 0;
     $cmb_obj = new_cmb2_box( array(
 …
      * Setup our $post_id, if available
      */
     $post_id = isset( $_GET['post'] ) ? $_GET['post'] : 0;
+    $post_id = isset( $_GET['post'] ) ? sanitize_text_field( $_GET['post'] ): 0;
     $priority = 1;

badgeos/trunk/includes/ranks/rank-functions.php

-                      r2687784
+                      r2765251
+    }
     $rank_id = ( isset( $_POST['rankID'] ) ?  $_POST['rankID'] : '' );
     $user_id = ( isset( $_POST['userID'] ) ?  $_POST['userID'] : '' );
+    $rank_id = ( isset( $_POST['rankID'] ) ?  sanitize_text_field( $_POST['rankID'] ) : '' );
+    $user_id = ( isset( $_POST['userID'] ) ?  sanitize_text_field( $_POST['userID'] ) : '' );
     if( empty( $rank_id ) || empty( $user_id ) ) {
 …
+    }
     if( badgeos_revoke_rank_from_user_account( absint( $user_id ), absint( $rank_id ) ) ) {
+    if( badgeos_revoke_rank_from_user_account( $user_id, $rank_id ) ) {
         echo 'true';
         exit;
 …
+    }
     $rank_id = ( isset( $_POST['rank_id'] ) ?  $_POST['rank_id'] : '' );
     $user_id = ( isset( $_POST['user_id'] ) ?  $_POST['user_id'] : '' );
+    $rank_id = ( isset( $_POST['rank_id'] ) ?  sanitize_text_field( $_POST['rank_id'] ) : '' );
+    $user_id = ( isset( $_POST['user_id'] ) ?  sanitize_text_field( $_POST['user_id'] ) : '' );
     if( empty( $rank_id ) || empty( $user_id ) ) {
 …
         'user_id'           => $user_id,
         'site_id'           => get_current_blog_id(),
         'rank_id'           => (int) $rank_id,
+        'rank_id'           => $rank_id,
         'this_trigger'      => 'admin_awarded',
         'credit_id'         => 0,
 …
+    }
     $user_id = ( isset( $_POST['user_id'] ) ? $_POST['user_id'] : '' );
     $selected = ( isset( $_POST['rank_filter'] ) ? $_POST['rank_filter'] : 'all' );
+    $user_id = ( isset( $_POST['user_id'] ) ? sanitize_text_field( $_POST['user_id'] ) : '' );
+    $selected = ( isset( $_POST['rank_filter'] ) ? sanitize_text_field( $_POST['rank_filter'] ) : 'all' );
     if( empty( $selected ) ) {
 …
+    }
     $user_id = ( isset( $_GET['user_id'] ) ? $_GET['user_id'] : 0 );
     $rank_id = ( isset( $_GET['rank_id'] ) ? $_GET['rank_id'] : 0 );
+    $user_id = ( isset( $_GET['user_id'] ) ? absint( $_GET['user_id'] ) : 0 );
+    $rank_id = ( isset( $_GET['rank_id'] ) ? absint( $_GET['rank_id'] ) : 0 );
     if( $user_id != 0 && $rank_id != 0 ) {
 …
             'user_id'           => $user_id,
             'site_id'           => get_current_blog_id(),
             'rank_id'           => (int) $rank_id,
+            'rank_id'           => $rank_id,
             'credit_id'         =>  0,
             'credit_amount'     => 0,

badgeos/trunk/includes/ranks/rank-steps-ui.php

-                      r2687784
+                      r2765251
     ) );
+    $badgeos_achievement_id = isset( $_POST['achievement_id'] ) ? absint( $_POST['achievement_id'] ) : 0;
     /**
      * Output the edit step html to insert into the Steps metabox
      */
     badgeos_rank_req_steps_ui_html( $step_id, $_POST['achievement_id'] );
+    badgeos_rank_req_steps_ui_html( $step_id, sanitize_text_field( $_POST['achievement_id'] ) );
     /**
      * Grab the post object for our Achievement
      */
     $achievement = badgeos_utilities::badgeos_get_post( $_POST['achievement_id'] );
+    $achievement = badgeos_utilities::badgeos_get_post( $badgeos_achievement_id );
     /**
 …
         array(
             'from' => $step_id,
             'to'   => $_POST['achievement_id'],
+            'to'   => $badgeos_achievement_id,
             'meta' => array(
                 'date' => current_time( 'mysql' )
 …
  */
 function badgeos_delete_rank_req_step_ajax_handler() {
     wp_delete_post( $_POST['step_id'] );
+    wp_delete_post( absint( $_POST['step_id'] ) );
     die;
+}
 …
          */
         $new_titles = array();
+        $steps = $_POST['steps'];
         /**
          * Loop through each of the created steps
          */
         foreach ( $_POST['steps'] as $key => $step ) {
+        foreach ( $steps as $key => $step ) {
             /**
              * Grab all of the relevant values of that step
              */
             $step_id            = $step['step_id'];
             $required_count     = ( ! empty( $step['required_count'] ) ) ? $step['required_count'] : 1;
+            $step_id            = sanitize_text_field( $step['step_id'] );
+            $required_count     = ( ! empty( $step['required_count'] ) ) ? sanitize_text_field( $step['required_count'] ): 1;
             //$credit_value     = ( ! empty( $step['credit_value'] ) ) ? $step['credit_value'] : 0;
             $trigger_type       = $step['trigger_type'];
             $visit_post         = $step['visit_post'];
             $visit_page         = $step['visit_page'];
             $num_of_years       = $step['num_of_years'];
             $x_number_of_users  = $step['x_number_of_users'];
+            $trigger_type       = sanitize_text_field( $step['trigger_type'] );
+            $visit_post         = sanitize_text_field( $step['visit_post'] );
+            $visit_page         = sanitize_text_field( $step['visit_page'] );
+            $num_of_years       = sanitize_text_field( $step['num_of_years'] );
+            $x_number_of_users  = sanitize_text_field( $step['x_number_of_users'] );
             $num_of_months      = $step['num_of_months'];
             $num_of_days        = $step['num_of_days'];
+            $num_of_months      = sanitize_text_field( $step['num_of_months'] );
+            $num_of_days        = sanitize_text_field( $step['num_of_days'] );
             $achievement_post = '';
             if( array_key_exists( 'achievement_post', $step ) )
                 $achievement_post = $step['achievement_post'];
+                $achievement_post = sanitize_text_field( $step['achievement_post'] );
             $badgeos_subtrigger_id = '';
 …
             $badgeos_fields_data = '';
             if( isset( $step['badgeos_subtrigger_id'] ) )
                 $badgeos_subtrigger_id      = $step['badgeos_subtrigger_id'];
+                $badgeos_subtrigger_id      = sanitize_text_field( $step['badgeos_subtrigger_id'] );
             if( isset( $step['badgeos_subtrigger_value'] ) )
                 $badgeos_subtrigger_value   = $step['badgeos_subtrigger_value'];
+                $badgeos_subtrigger_value   = sanitize_text_field( $step['badgeos_subtrigger_value'] );
             if( isset( $step['badgeos_fields_data'] ) )
                 $badgeos_fields_data        = $step['badgeos_fields_data'];
+                $badgeos_fields_data        = sanitize_text_field( $step['badgeos_fields_data'] );
             /**
 …
              * Update our relevant meta
              */
             badgeos_utilities::update_post_meta( $step_id, '_badgeos_count',                 $required_count );
             badgeos_utilities::update_post_meta( $step_id, '_rank_trigger_type',             $trigger_type );
             badgeos_utilities::update_post_meta( $step_id, 'achievement_post',           $achievement_post );
             badgeos_utilities::update_post_meta( $step_id, '_badgeos_subtrigger_id',         $badgeos_subtrigger_id );
             badgeos_utilities::update_post_meta( $step_id, '_badgeos_rank_subtrigger_value',$badgeos_subtrigger_value );
             badgeos_utilities::update_post_meta( $step_id, '_badgeos_fields_data',       $badgeos_fields_data );
+            badgeos_utilities::update_post_meta( $step_id, '_badgeos_count',                    $required_count );
+            badgeos_utilities::update_post_meta( $step_id, '_rank_trigger_type',                $trigger_type );
+            badgeos_utilities::update_post_meta( $step_id, 'achievement_post',                  $achievement_post );
+            badgeos_utilities::update_post_meta( $step_id, '_badgeos_subtrigger_id',            $badgeos_subtrigger_id );
+            badgeos_utilities::update_post_meta( $step_id, '_badgeos_rank_subtrigger_value',    $badgeos_subtrigger_value );
+            badgeos_utilities::update_post_meta( $step_id, '_badgeos_fields_data',              $badgeos_fields_data );
             /**
 …
      * Grab our achievement type from the AJAX request
      */
     $achievement_type = $_REQUEST['achievement_type'];
     $exclude_posts = (array) $_REQUEST['excluded_posts'];
     $requirements = badgeos_get_rank_req_step_requirements( $_REQUEST['step_id'] );
+    $achievement_type = sanitize_text_field($_REQUEST['achievement_type']);
+    $exclude_posts = array_map( 'sanitize_text_field', (array) $_REQUEST['excluded_posts'] );
+    $requirements = badgeos_get_rank_req_step_requirements( sanitize_text_field($_REQUEST['step_id']) );
     /**

badgeos/trunk/includes/ranks/ranks-rules-engine.php

-                      r2687784
+                      r2765251
+        }
         $strQuery = "select * from ".$wpdb->prefix . "badgeos_ranks where rank_id='".$rank_id."' and user_id='".$user_id."' and Year(dateadded)='".date('Y')."'";
+        $strQuery = "select * from ".$wpdb->prefix . "badgeos_ranks where rank_id={$rank_id} and user_id={$user_id} and Year(dateadded)='".date('Y')."'";
         $ranks = $wpdb->get_results( $strQuery );
         if( count( $ranks ) > 0 ) {
 …
         if( intval( $x_number_of_users ) > 0 ) {
             $strQuery = "select id from ".$wpdb->prefix . "badgeos_ranks where rank_id='".$rank_id."'";
+            $strQuery = "select id from ".$wpdb->prefix . "badgeos_ranks where rank_id={$rank_id}";
             $total_ranks = $wpdb->get_results( $strQuery );
             if( count( $total_ranks ) > intval( $x_number_of_users ) ) {
 …
+        }
         $strQuery = "select * from ".$wpdb->prefix . "badgeos_ranks where rank_id='".$rank_id."' and user_id='".$user_id."'";
+        $strQuery = "select * from ".$wpdb->prefix . "badgeos_ranks where rank_id={$rank_id} and user_id={$user_id}";
         $my_ranks = $wpdb->get_results( $strQuery );
         if( count( $my_ranks ) >= intval( $count ) ) {
 …
             $reg_date = get_userdata($user_id)->user_registered;
             $num_of_years = badgeos_utilities::get_post_meta( absint( $step_id ), '_badgeos_num_of_years', true );
             $strQuery = "select * from ".$wpdb->prefix . "badgeos_ranks where rank_id='".$step_id."' and user_id='".$user_id."' order by actual_date_earned desc limit 1";
+            $strQuery = "select * from ".$wpdb->prefix . "badgeos_ranks where rank_id={$step_id} and user_id={$user_id} order by actual_date_earned desc limit 1";
             $ranks = $wpdb->get_results( $strQuery );
             $return = false;
 …
             $reg_date = strtotime( get_userdata($user_id)->user_registered );
             $num_of_months = badgeos_utilities::get_post_meta( absint( $step_id ), '_badgeos_num_of_months', true );
             $strQuery = "select * from ".$wpdb->prefix . "badgeos_ranks where rank_id='".$step_id."' and user_id='".$user_id."' order by actual_date_earned desc limit 1";
+            $strQuery = "select * from ".$wpdb->prefix . "badgeos_ranks where rank_id={$step_id} and user_id={$user_id} order by actual_date_earned desc limit 1";
             $ranks = $wpdb->get_results( $strQuery );
             $return = false;
 …
             $reg_date = strtotime( get_userdata($user_id)->user_registered );
             $num_of_days = badgeos_utilities::get_post_meta( absint( $step_id ), '_badgeos_num_of_days', true );
             $strQuery = "select * from ".$wpdb->prefix . "badgeos_ranks where rank_id='".$step_id."' and user_id='".$user_id."' order by actual_date_earned desc limit 1";
+            $strQuery = "select * from ".$wpdb->prefix . "badgeos_ranks where rank_id={$step_id} and user_id={$user_id} order by actual_date_earned desc limit 1";
             $ranks = $wpdb->get_results( $strQuery );
             $return = false;

badgeos/trunk/includes/ranks/triggers.php

-                      r2687784
+                      r2765251
      * Setup all our globals
      */
     global $user_ID, $blog_id, $wpdb;
+    global $blog_id, $wpdb;
     $site_id = $blog_id;
 …
      * Setup all our globals
      */
     global $user_ID, $blog_id, $wpdb;
+    global $blog_id, $wpdb;
     $site_id = $blog_id;

badgeos/trunk/includes/rules-engine.php

-                      r2687784
+                      r2765251
+        }
         $strQuery = "select * from ".$wpdb->prefix . "badgeos_achievements where ID='".$achievement_id."' and user_id='".$user_id."' and Year(date_earned)='".date('Y')."'";
+        $strQuery = "select * from ".$wpdb->prefix . "badgeos_achievements where ID={$achievement_id} and user_id={$user_id} and Year(date_earned)='".date('Y')."'";
         $achievements = $wpdb->get_results( $strQuery );
         if( count( $achievements ) > 0 ) {
 …
         $count = absint( badgeos_utilities::get_post_meta( $achievement_id, '_badgeos_count', true ) );
         if( intval( $x_number_of_users ) > 0 ) {
             $strQuery = "select id from ".$wpdb->prefix . "badgeos_achievements where ID='".$achievement_id."'";
+            $strQuery = "select id from ".$wpdb->prefix . "badgeos_achievements where ID={$achievement_id}";
             $total_achievements = $wpdb->get_results( $strQuery );
             if( count( $total_achievements ) > intval( $x_number_of_users ) ) {
+            if( count( $total_achievements ) >= intval( $x_number_of_users ) ) {
                 return false;
+            }
+        }
         $strQuery = "select * from ".$wpdb->prefix . "badgeos_achievements where ID='".$achievement_id."' and user_id='".$user_id."'";
+        $strQuery = "select * from ".$wpdb->prefix . "badgeos_achievements where ID={$achievement_id} and user_id={$user_id}";
         $my_achievements = $wpdb->get_results( $strQuery );
         if( count( $my_achievements ) >= intval( $count ) ) {
 …
             $reg_date = get_userdata($user_id)->user_registered;
             $num_of_years = badgeos_utilities::get_post_meta( absint( $step_id ), '_badgeos_num_of_years', true );
             $strQuery = "select * from ".$wpdb->prefix . "badgeos_achievements where ID='".$step_id."' and user_id='".$user_id."' order by actual_date_earned desc limit 1";
+            $strQuery = "select * from ".$wpdb->prefix . "badgeos_achievements where ID={$step_id} and user_id={$user_id} order by actual_date_earned desc limit 1";
             $achivements = $wpdb->get_results( $strQuery );
             $return = false;
 …
             $reg_date = strtotime( get_userdata($user_id)->user_registered );
             $num_of_months = badgeos_utilities::get_post_meta( absint( $step_id ), '_badgeos_num_of_months', true );
             $strQuery = "select * from ".$wpdb->prefix . "badgeos_achievements where ID='".$step_id."' and user_id='".$user_id."' order by actual_date_earned desc limit 1";
+            $strQuery = "select * from ".$wpdb->prefix . "badgeos_achievements where ID={$step_id} and user_id={$user_id} order by actual_date_earned desc limit 1";
             $achivements = $wpdb->get_results( $strQuery );
 …
             $reg_date = strtotime( get_userdata($user_id)->user_registered );
             $num_of_days = badgeos_utilities::get_post_meta( absint( $step_id ), '_badgeos_num_of_days', true );
             $strQuery = "select * from ".$wpdb->prefix . "badgeos_achievements where ID='".$step_id."' and user_id='".$user_id."' order by actual_date_earned desc limit 1";
+            $strQuery = "select * from ".$wpdb->prefix . "badgeos_achievements where ID={$step_id} and user_id={$user_id} order by actual_date_earned desc limit 1";
             $achivements = $wpdb->get_results( $strQuery );
             $return = false;

badgeos/trunk/includes/shortcodes/badgeos_achievements_list.php

-                      r2687784
+                      r2765251
+    }
-    global $user_ID;
     extract( shortcode_atts( array(
         'type'        => 'all',
 …
                     // If logged in
                     if ( $user_ID > 0 ) {
+                    if ( $user_id > 0 ) {
                         $badges .= '<option value="completed">' . sprintf( __( 'Completed %s', 'badgeos' ), $post_type_plural );
                         $badges .= '<option value="not-completed">' . sprintf( __( 'Not Completed %s', 'badgeos' ), $post_type_plural );
 …
         if ( $show_search != 'false' ) {
             $search = isset( $_POST['achievements_list_search'] ) ? $_POST['achievements_list_search'] : '';
+            $search = isset( $_POST['achievements_list_search'] ) ? sanitize_text_field( $_POST['achievements_list_search'] ) : '';
             $badges .= '<div id="badgeos-achievements-search">';
             $badges .= '<form id="achievements_list_search_go_form" class="achievements_list_search_go_form" action="'. get_permalink( get_the_ID() ) .'" method="post">';

badgeos/trunk/includes/shortcodes/badgeos_ranks.php

-                      r2384705
+                      r2765251
+    }
-    global $user_ID;
     extract( shortcode_atts( array(
         'types'   => 'all',
 …
     if ( $show_search != 'false' ) {
         $search = isset( $_POST['rank_lists_list_search'] ) ? $_POST['rank_lists_list_search'] : '';
+        $search = isset( $_POST['rank_lists_list_search'] ) ? sanitize_text_field( $_POST['rank_lists_list_search'] ) : '';
         $ranks_html .= '<div id="badgeos-ranks-search">';
         $ranks_html .= '<form id="rank_lists_list_search_go_form" class="rank_lists_list_search_go_form" action="'. get_permalink( get_the_ID() ) .'" method="post">';

badgeos/trunk/includes/shortcodes/badgeos_user_earned_achievements.php

-                      r2384705
+                      r2765251
         return '';
+    }
-    global $user_ID;
     $passed_user_id = get_current_user_id();
 …
     if ( $show_search != 'false' ) {
         $search = isset( $_POST['achievements_list_search'] ) ? $_POST['achievements_list_search'] : '';
+        $search = isset( $_POST['achievements_list_search'] ) ? sanitize_text_field( $_POST['achievements_list_search'] ) : '';
         $badges .= '<div id="badgeos-achievements-search">';
         $badges .= '<form id="earned_achievements_list_search_go_form" class="earned_achievements_list_search_go_form" action="'. get_permalink( get_the_ID() ) .'" method="post">';

badgeos/trunk/includes/shortcodes/badgeos_user_earned_points.php

r2384705	r2765251
86	86	}
87	87
88		~~global $user_ID;~~
89	88	extract( shortcode_atts( array(
90	89	'point_type' => '',

badgeos/trunk/includes/shortcodes/badgeos_user_earned_ranks.php

-                      r2384705
+                      r2765251
+    }
-    global $user_ID;
     extract( shortcode_atts( array(
         'rank_type'   => 'all',
 …
     if ( $show_search != 'false' ) {
         $search = isset( $_POST['earned_ranks_list_search'] ) ? $_POST['earned_ranks_list_search'] : '';
+        $search = isset( $_POST['earned_ranks_list_search'] ) ? sanitize_text_field( $_POST['earned_ranks_list_search'] ) : '';
         $ranks_html .= '<div id="badgeos-ranks-search">';
         $ranks_html .= '<form id="earned_ranks_list_search_go_form" class="earned_ranks_list_search_go_form" action="'. get_permalink( get_the_ID() ) .'" method="post">';

badgeos/trunk/includes/steps-ui.php

-                      r2687784
+                      r2765251
     ) );
+    $badgeos_achievement_id = isset( $_POST['achievement_id'] ) ? absint( $_POST['achievement_id'] ) : '';
     // Output the edit step html to insert into the Steps metabox
     badgeos_steps_ui_html( $step_id, $_POST['achievement_id'] );
+    badgeos_steps_ui_html( $step_id, $badgeos_achievement_id );
     // Grab the post object for our Badge
     $achievement = badgeos_utilities::badgeos_get_post( $_POST['achievement_id'] );
+    $achievement = badgeos_utilities::badgeos_get_post( $badgeos_achievement_id );
     // Create the P2P connection from the step to the badge
 …
         array(
             'from' => $step_id,
             'to'   => $_POST['achievement_id'],
+            'to'   => $badgeos_achievement_id,
             'meta' => array(
                 'date' => current_time( 'mysql' )
 …
  */
 function badgeos_delete_step_ajax_handler() {
     wp_delete_post( $_POST['step_id'] );
+    wp_delete_post( absint( $_POST['step_id'] ) );
     die;
+}
 …
         $new_titles = array();
+        $steps = $_POST['steps'];
         // Loop through each of the created steps
         foreach ( $_POST['steps'] as $key => $step ) {
+        foreach ( $steps as $key => $step ) {
             // Grab all of the relevant values of that step
             $step_id          = $step['step_id'];
             $required_count   = ( ! empty( $step['required_count'] ) ) ? $step['required_count'] : 1;
             $trigger_type     = $step['trigger_type'];
             $achievement_type = $step['achievement_type'];
             $visit_post         = $step['visit_post'];
             $visit_page         = $step['visit_page'];
             $num_of_years       = $step['num_of_years'];
             $x_number_of_users  = $step['x_number_of_users'];
             $num_of_months      = $step['num_of_months'];
             $num_of_days        = $step['num_of_days'];
             $num_of_days_login  = $step['num_of_days_login'];
+            $step_id            =  sanitize_text_field( $step['step_id'] );
+            $required_count     = ( ! empty( $step['required_count'] ) ) ? sanitize_text_field( $step['required_count'] ): 1;
+            $trigger_type       = sanitize_text_field( $step['trigger_type'] );
+            $achievement_type   = sanitize_text_field( $step['achievement_type'] );
+            $visit_post         = sanitize_text_field( $step['visit_post'] );
+            $visit_page         = sanitize_text_field( $step['visit_page'] );
+            $num_of_years       = sanitize_text_field( $step['num_of_years'] );
+            $x_number_of_users  = sanitize_text_field( $step['x_number_of_users'] );
+            $num_of_months      = sanitize_text_field( $step['num_of_months'] );
+            $num_of_days        = sanitize_text_field( $step['num_of_days'] );
+            $num_of_days_login  = sanitize_text_field( $step['num_of_days_login'] );
             $badgeos_subtrigger_id = '';
             $badgeos_subtrigger_value = '';
             $badgeos_fields_data = '';
             if( isset( $step['badgeos_subtrigger_id'] ) )
                 $badgeos_subtrigger_id      = $step['badgeos_subtrigger_id'];
+                $badgeos_subtrigger_id      = sanitize_text_field( $step['badgeos_subtrigger_id'] );
             if( isset( $step['badgeos_subtrigger_value'] ) )
                 $badgeos_subtrigger_value   = $step['badgeos_subtrigger_value'];
+                $badgeos_subtrigger_value   = sanitize_text_field( $step['badgeos_subtrigger_value'] );
             if( isset( $step['badgeos_fields_data'] ) )
                 $badgeos_fields_data        = $step['badgeos_fields_data'];
+                $badgeos_fields_data        = sanitize_text_field( $step['badgeos_fields_data'] );
             // Clear all relation data
 …
             badgeos_utilities::update_post_meta( $step_id, '_badgeos_subtrigger_id',        $badgeos_subtrigger_id );
             badgeos_utilities::update_post_meta( $step_id, '_badgeos_subtrigger_value',     $badgeos_subtrigger_value );
             badgeos_utilities::update_post_meta( $step_id, '_badgeos_fields_data',      $badgeos_fields_data );
+            badgeos_utilities::update_post_meta( $step_id, '_badgeos_fields_data',          $badgeos_fields_data );
             // Available hook for custom Activity Triggers
 …
     // Grab our achievement type from the AJAX request
     $achievement_type = $_REQUEST['achievement_type'];
     $exclude_posts = (array) $_REQUEST['excluded_posts'];
     $requirements = badgeos_get_step_requirements( $_REQUEST['step_id'] );
+    $achievement_type = sanitize_text_field($_REQUEST['achievement_type']);
+    $exclude_posts = array_map('sanitize_text_field', (array) $_REQUEST['excluded_posts'] );
+    $requirements = badgeos_get_step_requirements( sanitize_text_field($_REQUEST['step_id']) );
     // If we don't have an achievement type, bail now

badgeos/trunk/includes/triggers.php

-                      r2687784
+                      r2765251
     // Setup all our globals
     global $user_ID, $blog_id, $wpdb;
+    global $blog_id, $wpdb;
     $site_id = $blog_id;
 …
     // Setup all our globals
     global $user_ID, $blog_id, $wpdb;
+    global $blog_id, $wpdb;
     $site_id = $blog_id;

badgeos/trunk/includes/user.php

-                      r2687784
+                      r2765251
     // Setup our default args
     $defaults = array(
         'user_id'          => 0,     // The given user's ID
         'site_id'          => get_current_blog_id(), // The given site's ID
         'achievement_id'   => false, // A specific achievement's post ID
         'achievement_type' => false, // A specific achievement type
         'start_date' => false, // A specific achievement type
         'end_date' => false, // A specific achievement type
         'no_step' => false, // A specific achievement type
         'since'            => 0,     // A specific timestamp to use in place of $limit_in_days
         'pagination'    => false,// if true the pagination will be applied
         'limit' => 10,
         'page'  => 1,
         'orderby' => 'entry_id',
         'order' => 'ASC',
         'total_only' => false
+        'user_id'           => 0,                                               // The given user's ID
+        'site_id'           => get_current_blog_id(),                           // The given site's ID
+        'achievement_id'    => false,                                           // A specific achievement's post ID
+        'achievement_type'  => false,                                           // A specific achievement type
+        'start_date'        => false,                                           // A specific achievement type
+        'end_date'          => false,                                           // A specific achievement type
+        'no_step'           => false,                                           // A specific achievement type
+        'since'             => 0,                                               // A specific timestamp to use in place of $limit_in_days
+        'pagination'        => false,                                           // if true the pagination will be applied
+        'limit'             => 10,
+        'page'              => 1,
+        'orderby'           => 'entry_id',
+        'order'             => 'ASC',
+        'total_only'        => false
     );
     $args = wp_parse_args( $args, $defaults );
+    $arguments = wp_parse_args( $args, $defaults );
+    $args = array_map( 'sanitize_text_field', $arguments );
     // Return our $achievements array_values (so our array keys start back at 0), or an empty array
     // return ( is_array( $achievements ) ? array_values( $achievements ) : array());
 …
     $table_name = $wpdb->prefix . 'badgeos_achievements';
     if($wpdb->get_var("show tables like '$table_name'") == $table_name) {
         $where = 'user_id = ' . $args['user_id'];
+        $where = "user_id = {$args['user_id']}";
         if( isset( $args['entry_id'] ) && $args['entry_id'] != false ) {
             $where .= ' AND entry_id = ' . $args['entry_id'];
+            $where .= " AND entry_id = {$args['entry_id']}";
+        }
         if( $args['achievement_id'] != false ) {
             $where .= ' AND ID = ' . $args['achievement_id'];
+            $where .= " AND ID = {$args['achievement_id']}";
+        }
 …
                     if( ! empty( $wherepttype ) ) {
                         $wherepttype .= ' OR ' ;
+                        $wherepttype .= " OR ";
+                    }
                     $wherepttype .= " post_type = '".$achievement_type . "'";
+                    $wherepttype .= " post_type = '{$achievement_type}'";
+                }
                 $where .= ' and ( '. $wherepttype .')';
+                $where .= " AND ( {$wherepttype} )";
             } else {
                 $where .= " AND post_type = '".$args['achievement_type']."'";
+                $where .= " AND post_type = '{$args['achievement_type']}'";
+            }
+        }
 …
         $badgeos_settings = ( $exists = badgeos_utilities::get_option( 'badgeos_settings' ) ) ? $exists : array();
         if( $args['no_step'] ) {
+            $where .= " AND post_type != '".trim( $badgeos_settings['achievement_step_post_type'] )."'";
+            $achievement_step_post_type = trim( $badgeos_settings['achievement_step_post_type'] );
+            $where .= " AND post_type != {$achievement_step_post_type}";
+        }
         if( $args['since'] > 1 ) {
+            $where .= " AND date_earned > '". date("Y-m-d H:i:s", $args['since'] ). "'";
+            $since = date("Y-m-d H:i:s", $args['since'] );
+            $where .= " AND date_earned > '{$since}'";
+        }
         if( $args['start_date'] ) {
+            $where .= " AND date_earned >= '". $args['start_date']. "'";
+            $start_date = $args['start_date'];
+            $where .= " AND date_earned >= '{$start_date}'";
+        }
         if( $args['end_date'] ) {
+            $where .= " AND date_earned <= '". $args['end_date']. "'";
+            $end_date = $args['end_date'];
+            $where .= " AND date_earned <= '{$end_date}'";
+        }
         $user_achievements = [];
         if( $args['total_only'] == true ) {
             $user_achievements = $wpdb->get_var( "SELECT count(entry_id) as entry_id FROM $table_name WHERE $where" );
+            $user_achievements = $wpdb->get_var( $wpdb->prepare( "SELECT count(entry_id) as entry_id FROM %s WHERE %s", $table_name, $where ) );
         } else {
 …
                     $offset = 0;
+                }
                 $paginate_str = ' limit '.$offset.', '.$args['limit'];
+                $paginate_str = "limit {$offset}, {$args['limit']}";
+            }
             $order_str = '';
             if( !empty( $args['orderby'] ) &&  !empty( $args['order'] ) ) {
                 $order_str = " ORDER BY ".$args['orderby']." ".$args['order'];
+                $order_str = " ORDER BY {$args['orderby']} {$args['order']}";
+            }
             $user_achievements = $wpdb->get_results( "SELECT * FROM $table_name WHERE $where ".$order_str.' '.$paginate_str );
+            $user_achievements = $wpdb->get_results( "SELECT * FROM $table_name WHERE {$where} {$order_str} {$paginate_str}" );
+        }
 …
     $badgeos_settings = ( $exists = badgeos_utilities::get_option( 'badgeos_settings' ) ) ? $exists : array();
+    $user_recs = $_POST['achievements'];
+    $user_id = $_POST['user_id'];
+    $user_recs = array_map( 'sanitize_text_field', $_POST['achievements'] );
+    $user_id = sanitize_text_field( $_POST['user_id'] );
+    $table_name = $wpdb->prefix . 'badgeos_achievements';
     if( is_array( $user_recs ) && count( $user_recs ) > 0 ) {
         $achievements = array();
 …
                         $table_name = $wpdb->prefix . "badgeos_achievements";
                         if($wpdb->get_var("show tables like '$table_name'") == $table_name) {
                             $where = " where user_id='".intval($user_id)."' and entry_id = '".intval($item->entry_id)."'";
                             $wpdb->get_results('delete from '.$wpdb->prefix.'badgeos_achievements '.$where.' limit 1' );
+                            $where = " WHERE user_id={$user_id} AND entry_id = {$item->entry_id} ";
+                            $wpdb->get_results("DELETE FROM {$table_name} {$where} limit 1 " );
+                        }
                         badgeos_decrement_user_trigger_count( $user_id, $child->ID, $del_ach_id );
 …
      * Update Rank Type Filter Field
      */
     $rank_type_filter = ( isset( $_POST['badgeos_ranks_filter'] ) ? $_POST['badgeos_ranks_filter'] : 'all' );
+    $rank_type_filter = ( isset( $_POST['badgeos_ranks_filter'] ) ? sanitize_text_field( $_POST['badgeos_ranks_filter'] ) : 'all' );
     badgeos_utilities::update_user_meta( $user_id, '_badgeos_ranks_filter', $rank_type_filter );
 …
      * Update Achievement Type Filter Field
      */
     $rank_type_filter = ( isset( $_POST['badgeos_achievement_filter'] ) ? $_POST['badgeos_achievement_filter'] : 'all' );
+    $rank_type_filter = ( isset( $_POST['badgeos_achievement_filter'] ) ? sanitize_text_field( $_POST['badgeos_achievement_filter'] ) : 'all' );
     badgeos_utilities::update_user_meta( $user_id, '_badgeos_achievement_filter', $rank_type_filter );

badgeos/trunk/includes/welcome.php

-                      r2392364
+                      r2765251
                                 <div class="badgeos_welcome_addons_list_ul slider multiple-items">
                                     <?php foreach( $addons as $key => $addon ) { ?>
+                                        <?php
+                                            if( strtolower( $addon->title ) == 'badgeos' ){
+                                                continue;
+                                            }
+                                        ?>
                                         <div class="multiple">
                                             <div class="badgeos_welcome_addon">

badgeos/trunk/includes/widgets/earned-user-achievements-widget.php

-                      r2562800
+                      r2765251
         $defaults = array( 'title' => __( 'My Achievements', 'badgeos' ), 'number' => '10', 'set_point_type' => '', 'point_total' => '', 'set_achievements' => '', 'set_ranks' => [] );
         $instance = wp_parse_args( (array) $instance, $defaults );
+        $instance = array_map( 'sanitize_text_field', $instance );
         $title = $instance['title'];
         $number = $instance['number'];
 …
     //display the widget
     function widget( $args, $instance ) {
+        global $user_ID;
+        $args = array_map( 'sanitize_text_field', $args );
         if( array_key_exists( 'before_widget', $args ) )
             echo $args['before_widget'];

badgeos/trunk/includes/widgets/earned-user-points-widget.php

r2411422	r2765251
63	63	//display the widget
64	64	function widget( $args, $instance ) {
65		~~global $user_ID;~~
	65	$args = array_map( 'sanitize_text_field', $args );
66	66
67	67	if( array_key_exists( 'before_widget', $args ) )

badgeos/trunk/includes/widgets/earned-user-ranks-widget.php

r2562800	r2765251
110	110	//display the widget
111	111	function widget( $args, $instance ) {
112		~~global $user_ID;~~
	112	$args = array_map( 'sanitize_text_field', $args );
113	113
114	114	if( array_key_exists( 'before_widget', $args ) )

badgeos/trunk/js/award-steps-ui.js

r2687784	r2765251
92	92	}
93	93
94		if ("badgeos_~~wp_login" == trigger_type \|\| "badgeos_~~on_completing_num_of_day" == trigger_type) {
	94	if ("badgeos_on_completing_num_of_day" == trigger_type) {
95	95	num_of_days.show();
96	96	} else {

badgeos/trunk/js/award-steps-ui.min.js

r2642355	r2765251
1		function badgeos_add_new_award_step(e){jQuery.post(ajaxurl,{action:"add_award_step",achievement_id:e},function(e){jQuery(e).appendTo("#award_steps_list"),new_step_menu_order=Number(jQuery("#award_steps_list li.step-row").eq(-2).children('input[name="order"]').val())+1,jQuery("#award_steps_list li.step-row:last").children('input[name="order"]').val(new_step_menu_order),jQuery("#award_steps_list li.step-row:last").children(".select-trigger-type").change()})}function badgeos_delete_award_step(e){jQuery.post(ajaxurl,{action:"delete_award_step",step_id:e},function(s){jQuery(".step-"+e).remove()})}function badgeos_update_award_steps(e){jQuery(".save-award-steps-spinner").show(),step_data={action:"update_award_steps",steps:[]};var s=0;jQuery("#award_steps_list .step-row").each(function(){var e=jQuery(this),t=e.find(".select-trigger-type").val(),a=e.find(".badgeos-select-visit-post").val(),i=e.find(".badgeos-select-visit-page").val(),n=e.find("#badgeos_awardpoint_step_dynamic_section_"+t+" .badgeos_awardpoint_step_ddl_dynamic").val(),d=e.find("#badgeos_awardpoint_step_dynamic_section_"+t+" .badgeos_awardpoint_step_ddl_dynamic").attr("id"),_=e.find(".badgeos_awardpoint_step_fields_"+n+":input").serialize(),o={step_id:e.attr("data-step-id"),order:e.find('input[name="order"]').val(),required_count:e.find(".required-count").val(),point_value:e.find(".point-value").val(),trigger_type:t,achievement_type:e.find(".select-achievement-type").val(),badgeos_subtrigger_id:d,badgeos_subtrigger_value:n,badgeos_fields_data:_,visit_post:a,num_of_years:e.find(".badgeos-num-of-years").val(),num_of_months:e.find(".badgeos-num-of-months").val(),num_of_days:e.find(".badgeos-num-of-days").val(),num_of_days_login:e.find(".badgeos-num-of-days-login").val(),visit_page:i,achievement_post:"badgeos_specific_new_comment"===t?e.find("input.select-achievement-post").val():e.find("select.select-achievement-post").val(),title:e.find(".step-title .title").val()};e.trigger("update_step_data",[o,e]),step_data.steps.push(o),s++}),0==s&&jQuery(".save-award-steps-spinner").hide(),jQuery.post(ajaxurl,step_data,function(e){var s=jQuery.parseJSON(e);jQuery.each(s,function(e,s){jQuery("#step-"+e+"-title").val(s)}),jQuery(".save-award-steps-spinner").hide()})}jQuery(document).ready(function(e){e("#_badgeos_earned_by").change(function(){"triggers"==e(this).val()?e("#badgeos_steps_ui").show():e("#badgeos_steps_ui").hide()}).change(),e("#award_steps_list").sortable({update:function(){e("#award_steps_list li").each(function(s,t){e(this).children('input[name="order"]').val(s)})}}),e("#award_steps_list").on("change",".select-trigger-type",function(){var s=e(this).val(),t=e(this).siblings(".select-achievement-type"),a=e(this).siblings(".badgeos-select-visit-post"),i=e(this).siblings(".badgeos-select-visit-page"),n=e(this).siblings(".badgeos-num-of-years"),d=e(this).siblings(".badgeos-num-of-months"),_=e(this).siblings(".badgeos-num-of-days"),o=e(this).siblings(".badgeos-num-of-days-login");"any-achievement"==s\|\|"all-achievements"==s\|\|"specific-achievement"==s?t.show():t.hide(),"badgeos_visit_a_page"==s\|\|"badgeos_award_author_on_visit_page"==s?i.show():i.hide(),"badgeos_visit_a_post"==s\|\|"badgeos_award_author_on_visit_post"==s?a.show():a.hide(),"badgeos_on_completing_num_of_year"==s?n.show():n.hide(),"badgeos_on_completing_num_of_month"==s?d.show():d.hide(),"badgeos_~~wp_login"==s\|\|"badgeos_~~on_completing_num_of_day"==s?_.show():_.hide(),"badgeos_wp_login_x_days"==s?o.show():o.hide(),e(".badgeos_awardpoint_step_fields").hide(),e(".badgeos_awardpoint_step_ddl_dynamic").hide(),e("#badgeos_awardpoint_step_ddl_dynamic_"+s).show().trigger("change"),t.change()}),e(".badgeos_awardpoint_step_ddl_dynamic").on("change",function(){e(".badgeos_awardpoint_step_subddl_dynamic").hide(),e(".badgeos_awardpoint_step_subtxt_dynamic").hide(),main_trigger=e(this).data("trigger"),curr_trigger=e(this).val(),e(".badgeos_awardpoint_step_subddl_"+curr_trigger).show(),e(".badgeos_awardpoint_step_subtxt_"+curr_trigger).show()}),e(".select-trigger-type").change(),e("#award_steps_list").on("change",".select-achievement-type",function(){var s=e(this),t=s.val(),a=s.parent("li").attr("data-step-id"),i=[s.siblings('input[name="post_id"]').val()],n=s.siblings(".select-trigger-type").val();""!==t&&"specific-achievement"==n?e.post(ajaxurl,{action:"post_award_select_ajax",achievement_type:t,step_id:a,excluded_posts:i},function(e){s.siblings("select.select-achievement-post").html(e),s.siblings("select.select-achievement-post").show()}):(s.siblings(".select-achievement-post").hide(),"badgeos_specific_new_comment"==n&&s.siblings("input.select-achievement-post").show())}),e(".select-achievement-type").change()});
	1	function badgeos_add_new_award_step(e){jQuery.post(ajaxurl,{action:"add_award_step",achievement_id:e},function(e){jQuery(e).appendTo("#award_steps_list"),new_step_menu_order=Number(jQuery("#award_steps_list li.step-row").eq(-2).children('input[name="order"]').val())+1,jQuery("#award_steps_list li.step-row:last").children('input[name="order"]').val(new_step_menu_order),jQuery("#award_steps_list li.step-row:last").children(".select-trigger-type").change()})}function badgeos_delete_award_step(e){jQuery.post(ajaxurl,{action:"delete_award_step",step_id:e},function(s){jQuery(".step-"+e).remove()})}function badgeos_update_award_steps(e){jQuery(".save-award-steps-spinner").show(),step_data={action:"update_award_steps",steps:[]};var s=0;jQuery("#award_steps_list .step-row").each(function(){var e=jQuery(this),t=e.find(".select-trigger-type").val(),a=e.find(".badgeos-select-visit-post").val(),i=e.find(".badgeos-select-visit-page").val(),n=e.find("#badgeos_awardpoint_step_dynamic_section_"+t+" .badgeos_awardpoint_step_ddl_dynamic").val(),d=e.find("#badgeos_awardpoint_step_dynamic_section_"+t+" .badgeos_awardpoint_step_ddl_dynamic").attr("id"),_=e.find(".badgeos_awardpoint_step_fields_"+n+":input").serialize(),o={step_id:e.attr("data-step-id"),order:e.find('input[name="order"]').val(),required_count:e.find(".required-count").val(),point_value:e.find(".point-value").val(),trigger_type:t,achievement_type:e.find(".select-achievement-type").val(),badgeos_subtrigger_id:d,badgeos_subtrigger_value:n,badgeos_fields_data:_,visit_post:a,num_of_years:e.find(".badgeos-num-of-years").val(),num_of_months:e.find(".badgeos-num-of-months").val(),num_of_days:e.find(".badgeos-num-of-days").val(),num_of_days_login:e.find(".badgeos-num-of-days-login").val(),visit_page:i,achievement_post:"badgeos_specific_new_comment"===t?e.find("input.select-achievement-post").val():e.find("select.select-achievement-post").val(),title:e.find(".step-title .title").val()};e.trigger("update_step_data",[o,e]),step_data.steps.push(o),s++}),0==s&&jQuery(".save-award-steps-spinner").hide(),jQuery.post(ajaxurl,step_data,function(e){var s=jQuery.parseJSON(e);jQuery.each(s,function(e,s){jQuery("#step-"+e+"-title").val(s)}),jQuery(".save-award-steps-spinner").hide()})}jQuery(document).ready(function(e){e("#_badgeos_earned_by").change(function(){"triggers"==e(this).val()?e("#badgeos_steps_ui").show():e("#badgeos_steps_ui").hide()}).change(),e("#award_steps_list").sortable({update:function(){e("#award_steps_list li").each(function(s,t){e(this).children('input[name="order"]').val(s)})}}),e("#award_steps_list").on("change",".select-trigger-type",function(){var s=e(this).val(),t=e(this).siblings(".select-achievement-type"),a=e(this).siblings(".badgeos-select-visit-post"),i=e(this).siblings(".badgeos-select-visit-page"),n=e(this).siblings(".badgeos-num-of-years"),d=e(this).siblings(".badgeos-num-of-months"),_=e(this).siblings(".badgeos-num-of-days"),o=e(this).siblings(".badgeos-num-of-days-login");"any-achievement"==s\|\|"all-achievements"==s\|\|"specific-achievement"==s?t.show():t.hide(),"badgeos_visit_a_page"==s\|\|"badgeos_award_author_on_visit_page"==s?i.show():i.hide(),"badgeos_visit_a_post"==s\|\|"badgeos_award_author_on_visit_post"==s?a.show():a.hide(),"badgeos_on_completing_num_of_year"==s?n.show():n.hide(),"badgeos_on_completing_num_of_month"==s?d.show():d.hide(),"badgeos_on_completing_num_of_day"==s?_.show():_.hide(),"badgeos_wp_login_x_days"==s?o.show():o.hide(),e(".badgeos_awardpoint_step_fields").hide(),e(".badgeos_awardpoint_step_ddl_dynamic").hide(),e("#badgeos_awardpoint_step_ddl_dynamic_"+s).show().trigger("change"),t.change()}),e(".badgeos_awardpoint_step_ddl_dynamic").on("change",function(){e(".badgeos_awardpoint_step_subddl_dynamic").hide(),e(".badgeos_awardpoint_step_subtxt_dynamic").hide(),main_trigger=e(this).data("trigger"),curr_trigger=e(this).val(),e(".badgeos_awardpoint_step_subddl_"+curr_trigger).show(),e(".badgeos_awardpoint_step_subtxt_"+curr_trigger).show()}),e(".select-trigger-type").change(),e("#award_steps_list").on("change",".select-achievement-type",function(){var s=e(this),t=s.val(),a=s.parent("li").attr("data-step-id"),i=[s.siblings('input[name="post_id"]').val()],n=s.siblings(".select-trigger-type").val();""!==t&&"specific-achievement"==n?e.post(ajaxurl,{action:"post_award_select_ajax",achievement_type:t,step_id:a,excluded_posts:i},function(e){s.siblings("select.select-achievement-post").html(e),s.siblings("select.select-achievement-post").show()}):(s.siblings(".select-achievement-post").hide(),"badgeos_specific_new_comment"==n&&s.siblings("input.select-achievement-post").show())}),e(".select-achievement-type").change()});

badgeos/trunk/js/badgeos-achievements.js

-                      r2687784
+                      r2765251
             data: {
                 'action': 'get-ranks-list',
+                'nonce': BadgeosData.security,
                 'types': types,
                 'limit': data_limit,
 …
             data: {
                 'action': 'get-earned-ranks',
+                'nonce': BadgeosData.security,
                 'rank_type': data_type,
                 'limit': data_limit,
 …
             data: {
                 'action': 'get-earned-achievements',
+                'nonce': BadgeosData.security,
                 'type': data_type,
                 'limit': data_limit,
 …
             data: {
                 'action': 'get-achievements',
+                'nonce': BadgeosData.security,
                 'type': data_type,
                 'limit': data_limit,

badgeos/trunk/js/badgeos-achievements.min.js

r2448573	r2765251
1		jQuery(function(a){a("body");function e(e){var s=e.attr("data-url"),t=e.attr("data-types"),i=e.attr("data-limit"),d=(e.attr("data-show_search"),e.attr("data-user_id")),n=e.attr("data-orderby"),o=e.attr("data-order"),r=e.attr("data-show_title"),_=e.attr("data-show_thumb"),c=e.attr("data-show_description"),l=e.attr("data-default_view"),v=e.attr("data-image_width"),g=e.attr("data-image_height");e.find("div.badgeos-rank-lists-spinner").show(),a.ajax({url:s,data:{action:"get-ranks-list",types:t,limit:i,user_id:d,offset:e.find("#badgeos_rank_lists_offset").val(),count:e.find("#badgeos_ranks_count").val(),search:e.find("#rank_lists_list_search").val(),orderby:n,order:o,show_title:r,show_thumb:_,default_view:l,show_description:c,image_width:v,image_height:g},dataType:"json",success:function(s){if(e.find("div.badgeos-rank-lists-spinner").hide(),null===s.data.message);else{var t=e.find("#badgeos_rank_lists_offset").val();parseInt(t)>0?e.find("div#badgeos-list-ranks-container .ls_grid_container").append(s.data.message):e.find("div#badgeos-list-ranks-container").append(s.data.message),e.find("#badgeos_rank_lists_offset").val(s.data.offset),e.find("#badgeos_ranks_count").val(s.data.badge_count),s.data.query_count<=s.data.offset?e.find(".rank_lists_list_load_more").hide():e.find(".rank_lists_list_load_more").show(),a(".badgeos-arrange-buttons button").on("click",function(){a(".badgeos-arrange-buttons button").removeClass("selected"),a(this).addClass("selected"),a(this).hasClass("grid")?a("#badgeos-list-ranks-container ul").removeClass("list").addClass("grid"):a(this).hasClass("list")&&a("#badgeos-list-ranks-container ul").removeClass("grid").addClass("list")})}}})}function s(e){var s=e.attr("data-url"),t=e.attr("data-rank_type"),i=e.attr("data-limit"),d=(e.attr("data-show_search"),e.attr("data-user_id")),n=e.attr("data-orderby"),o=e.attr("data-order"),r=e.attr("data-show_title"),_=e.attr("data-show_thumb"),c=e.attr("data-show_description"),l=e.attr("data-default_view"),v=e.attr("data-image_width"),g=e.attr("data-image_height");e.find("div.badgeos-earned-spinner").show(),a.ajax({url:s,data:{action:"get-earned-ranks",rank_type:t,limit:i,user_id:d,offset:e.find("#badgeos_earned_ranks_offset").val(),count:e.find("#badgeos_ranks_count").val(),search:e.find("#earned_ranks_list_search").val(),orderby:n,order:o,show_title:r,show_thumb:_,default_view:l,show_description:c,image_width:v,image_height:g},dataType:"json",success:function(s){if(e.find("div.badgeos-earned-spinner").hide(),null===s.data.message);else{var t=e.find("#badgeos_earned_ranks_offset").val();parseInt(t)>0?e.find("div#badgeos-earned-ranks-container .ls_grid_container").append(s.data.message):e.find("div#badgeos-earned-ranks-container").append(s.data.message),e.find("#badgeos_earned_ranks_offset").val(s.data.offset),e.find("#badgeos_ranks_count").val(s.data.badge_count),s.data.query_count<=s.data.offset?e.find(".earned_ranks_list_load_more").hide():e.find(".earned_ranks_list_load_more").show(),a(".badgeos-arrange-buttons button").on("click",function(){a(".badgeos-arrange-buttons button").removeClass("selected"),a(this).addClass("selected"),a(this).hasClass("grid")?a("#badgeos-earned-ranks-container ul").removeClass("list").addClass("grid"):a(this).hasClass("list")&&a("#badgeos-earned-ranks-container ul").removeClass("grid").addClass("list")})}}})}function t(e){var s=e.attr("data-url"),t=e.attr("data-type"),i=e.attr("data-limit"),d=(e.attr("data-show_search"),e.attr("data-user_id")),o=e.attr("data-wpms"),r=e.attr("data-orderby"),_=e.attr("data-order"),c=e.attr("data-include"),l=e.attr("data-exclude"),v=e.attr("data-show_title"),g=e.attr("data-show_thumb"),f=e.attr("data-show_description"),b=e.attr("data-default_view"),h=e.attr("data-image_width"),u=e.attr("data-image_height");e.find("div.badgeos-earned-spinner").show(),a.ajax({url:s,data:{action:"get-earned-achievements",type:t,limit:i,user_id:d,wpms:o,offset:e.find("#badgeos_achievements_offset").val(),count:e.find("#badgeos_achievements_count").val(),search:e.find("#earned_achievements_list_search").val(),orderby:r,order:_,include:c,exclude:l,show_title:v,show_thumb:g,show_description:f,default_view:b,image_width:h,image_height:u},dataType:"json",success:function(s){if(e.find("div.badgeos-earned-spinner").hide(),null===s.data.message);else{var t=e.find("#badgeos_achievements_offset").val();parseInt(t)>0?e.find("div#badgeos-earned-achievements-container .ls_grid_container").append(s.data.message):e.find("div#badgeos-earned-achievements-container").append(s.data.message),e.find("#badgeos_achievements_offset").val(s.data.offset),e.find("#badgeos_achievements_count").val(s.data.badge_count),s.data.query_count<=s.data.offset?e.find(".earned_achievements_list_load_more").hide():e.find(".earned_achievements_list_load_more").show()}a(".badgeos-arrange-buttons button").on("click",function(){a(".badgeos-arrange-buttons button").removeClass("selected"),a(this).addClass("selected"),a(this).hasClass("grid")?a("#badgeos-earned-achievements-container ul").removeClass("list").addClass("grid"):a(this).hasClass("list")&&a("#badgeos-earned-achievements-container ul").removeClass("grid").addClass("list")}),a(".badgeos-ob-verification-buttons").on("click",function(){n(this)})}})}function i(e){var s=e.attr("data-url"),t=e.attr("data-type"),i=e.attr("data-limit"),d=e.attr("data-show_child"),n=e.attr("data-show_parent"),o=(e.attr("data-show_filter"),e.attr("data-show_search"),e.attr("data-group_id")),r=e.attr("data-user_id"),_=e.attr("data-wpms"),c=e.attr("data-orderby"),l=e.attr("data-order"),v=e.attr("data-include"),g=e.attr("data-exclude"),f=e.attr("data-meta_key"),b=e.attr("data-meta_value"),h=e.attr("data-show_title"),u=e.attr("data-show_thumb"),m=e.attr("data-show_description"),p=e.attr("data-show_steps"),k=e.attr("data-default_view"),w=e.attr("data-image_width"),y=e.attr("data-image_height");e.find("div.badgeos-spinner").show(),a.ajax({url:s,data:{action:"get-achievements",type:t,limit:i,show_parent:d,show_child:n,group_id:o,user_id:r,wpms:_,offset:e.find("#badgeos_achievements_offset").val(),count:e.find("#badgeos_achievements_count").val(),filter:e.find("#achievements_list_filter").val(),search:e.find("#achievements_list_search").val(),orderby:c,order:l,include:v,exclude:g,meta_key:f,meta_value:b,show_title:h,show_thumb:u,show_description:m,show_steps:p,default_view:k,image_width:w,image_height:y},dataType:"json",success:function(s){if(e.find("div.badgeos-spinner").hide(),null===s.data.message);else{var t=e.find("#badgeos_achievements_offset").val();parseInt(t)>0?e.find("div#badgeos-achievements-container .ls_grid_container").append(s.data.message):e.find("div#badgeos-achievements-container").append(s.data.message),e.find("#badgeos_achievements_offset").val(s.data.offset),e.find("#badgeos_achievements_count").val(s.data.badge_count),s.data.query_count<=s.data.offset?e.find(".achievements_list_load_more").hide():e.find(".achievements_list_load_more").show()}a(".badgeos-arrange-buttons button").on("click",function(){a(".badgeos-arrange-buttons button").removeClass("selected"),a(this).addClass("selected"),a(this).hasClass("grid")?a("#badgeos-achievements-container ul").removeClass("list").addClass("grid"):a(this).hasClass("list")&&a("#badgeos-achievements-container ul").removeClass("grid").addClass("list")})}})}function d(a){a.find("#badgeos_achievements_offset").val(0),a.find("#badgeos_achievements_count").val(0),a.find("div#badgeos-achievements-container").html(""),a.find(".achievements_list_load_more").hide(),i(a)}function n(e){a("#badgeos-ob-verification-res-list").html("");var s=a(e).data("bg"),t=a(e).data("eid"),i=a(e).data("uid");a(".badgeos_verification_modal_popup").fadeToggle(),a(".badgeos_verification_modal_popup").css({visibility:"visible",display:"block"});var d=0;a.ajax({url:BadgeosData.ajax_url,type:"POST",data:{action:"badgeos_validate_open_badge",bg:s,eid:t,uid:i,type:"issued_on"},dataType:"json",success:function(e){"success"==e.type&&parseInt(e.result)>0?a(".badgeos_verification_modal_panel").html('<div class="badgeos_modal_badge"><div class="badgeos_verification_checkbox"><i class="fas fa-check"></i></div><div class="badgeos_verification_badge_title"><span>'+e.message+"</span></div></div>"):a(".badgeos_verification_modal_panel").html('<div class="badgeos_modal_badge"><div class="badgeos_verification_checkbox"><i class="fas fa-times"></i></div><div class="badgeos_verification_badge_title"><span>'+e.message+"</span></div></div>"),d+=parseInt(e.result),a.ajax({url:BadgeosData.ajax_url,type:"POST",data:{action:"badgeos_validate_open_badge",bg:s,eid:t,uid:i,type:"issued_by"},dataType:"json",success:function(e){"success"==e.type&&parseInt(e.result)>0?a(".badgeos_verification_modal_panel").append('<div class="badgeos_modal_badge"><div class="badgeos_verification_checkbox"><i class="fas fa-check"></i></div><div class="badgeos_verification_badge_title"><span>'+e.message+"</span></div></div>"):a(".badgeos_verification_modal_panel").append('<div class="badgeos_modal_badge"><div class="badgeos_verification_checkbox"><i class="fas fa-times"></i></div><div class="badgeos_verification_badge_title"><span>'+e.message+"</span></div></div>"),d+=parseInt(e.result),a.ajax({url:BadgeosData.ajax_url,type:"POST",data:{action:"badgeos_validate_open_badge",bg:s,eid:t,uid:i,type:"issued_using"},dataType:"json",success:function(e){"success"==e.type&&parseInt(e.result)>0?a(".badgeos_verification_modal_panel").append('<div class="badgeos_modal_badge"><div class="badgeos_verification_checkbox"><i class="fas fa-check"></i></div><div class="badgeos_verification_badge_title"><span>'+e.message+"</span></div></div>"):a(".badgeos_verification_modal_panel").append('<div class="badgeos_modal_badge"><div class="badgeos_verification_checkbox"><i class="fas fa-times"></i></div><div class="badgeos_verification_badge_title"><span>'+e.message+"</span></div></div>"),d+=parseInt(e.result),a.ajax({url:BadgeosData.ajax_url,type:"POST",data:{action:"badgeos_validate_open_badge",bg:s,eid:t,uid:i,type:"issued_to"},dataType:"json",success:function(e){"success"==e.type&&parseInt(e.result)>0?a(".badgeos_verification_modal_panel").append('<div class="badgeos_modal_badge"><div class="badgeos_verification_checkbox"><i class="fas fa-check"></i></div><div class="badgeos_verification_badge_title"><span>'+e.message+"</span></div></div>"):a(".badgeos_verification_modal_panel").append('<div class="badgeos_modal_badge"><div class="badgeos_verification_checkbox"><i class="fas fa-times"></i></div><div class="badgeos_verification_badge_title"><span>'+e.message+"</span></div></div>"),d+=parseInt(e.result),a.ajax({url:BadgeosData.ajax_url,type:"POST",data:{action:"badgeos_validate_open_badge",bg:s,eid:t,uid:i,type:"expiry_date"},dataType:"json",success:function(e){"success"==e.type&&parseInt(e.result)>0?a(".badgeos_verification_modal_panel").append('<div class="badgeos_modal_badge"><div class="badgeos_verification_checkbox"><i class="fas fa-check"></i></div><div class="badgeos_verification_badge_title"><span>'+e.message+"</span></div></div>"):a(".badgeos_verification_modal_panel").append('<div class="badgeos_modal_badge"><div class="badgeos_verification_checkbox"><i class="fas fa-times"></i></div><div class="badgeos_verification_badge_title"><span>'+e.message+"</span></div></div>"),(d+=parseInt(e.result))<5?a(".badgeos_verification_modal_panel").append('<div class="badgeos_modal_badge"><div class="badgeos_verification_checkbox"><i class="fas fa-times"></i></div><div class="badgeos_verification_badge_title"><span class="badgeos_verified">'+e.notverified_label+"</span></div></div>"):a(".badgeos_verification_modal_panel").append('<div class="badgeos_modal_badge"><div class="badgeos_verification_checkbox"><i class="fas fa-check"></i></div><div class="badgeos_verification_badge_title"><span class="badgeos_verified">'+e.verified_label+"</span></div></div>")}})}})}})}})}})}a(".achievements_list_filter").change(function(){d(a(this).parents('div[class^="badgeos_achievement_main_container"]').eq(0))}).change(),a(".rank_lists_list_search_go_form").submit(function(s){s.preventDefault();var t,i=a(this).parents('div[class^="badgeos_ranks_list_main_container"]').eq(0);(t=i).find("#badgeos_rank_lists_offset").val(0),t.find("#badgeos_ranks_count").val(0),t.find("div#badgeos-list-ranks-container").html(""),t.find(".rank_lists_list_load_more").hide(),e(t)}),a(".earned_ranks_list_search_go").click(function(e){e.preventDefault();var t,i=a(this).parents('div[class^="badgeos_earned_rank_main_container"]').eq(0);(t=i).find("#badgeos_earned_ranks_offset").val(0),t.find("#badgeos_ranks_count").val(0),t.find("div#badgeos-earned-ranks-container").html(""),t.find(".earned_ranks_list_load_more").hide(),s(t)}),a(".achievements_list_search_go_form").submit(function(e){e.preventDefault();var s=a(this).parents('div[class^="badgeos_achievement_main_container"]').eq(0);d(s),s.find(".achievements_list_search_go").attr("disabled","disabled")}),a(".earned_achievements_list_search_go").click(function(e){e.preventDefault();var s,i=a(this).parents('div[class^="badgeos_earned_achievement_main_container"]').eq(0);(s=i).find("#badgeos_achievements_offset").val(0),s.find("#badgeos_achievements_count").val(0),s.find("div#badgeos-earned-achievements-container").html(""),s.find(".achievements_list_load_more").hide(),t(s)}),a(".achievements_list_search").focus(function(e){a(this).removeAttr("disabled"),a(".achievements_list_search_go").removeAttr("disabled")}),a(".achievements_list_load_more").click(function(){var e=a(this).parents('div[class^="badgeos_achievement_main_container"]').eq(0);e.find(".badgeos-spinner").show(),i(e)}),a(".earned_achievements_list_load_more").click(function(){var e=a(this).parents('div[class^="badgeos_earned_achievement_main_container"]').eq(0);e.find(".badgeos-earned-spinner").show(),t(e)}),a(".earned_ranks_list_load_more").click(function(){var e=a(this).parents('div[class^="badgeos_earned_rank_main_container"]').eq(0);e.find(".badgeos-earned-ranks-spinner").show(),s(e)}),a(".rank_lists_list_load_more").click(function(){var s=a(this).parents('div[class^="badgeos_ranks_list_main_container"]').eq(0);s.find(".badgeos-rank-lists-spinner").show(),e(s)}),a("#badgeos-achievements-container,.badgeos-single-achievement").on("click",".badgeos-open-close-switch a",function(e){e.preventDefault();var s=a(this);"close"==s.data("action")?(s.parent().siblings(".badgeos-extras-window").slideUp(300),s.data("action","open").prop("class","show-hide-open").text("Show Details")):(s.parent().siblings(".badgeos-extras-window").slideDown(300),s.data("action","close").prop("class","show-hide-close").text("Hide Details"))}),a(".badgeos_earned_achievements_offset").val("0"),a(".badgeos_earned_achievement_main_container").each(function(e){t(a(this))}),a(".badgeos_earned_ranks_offset").val("0"),a(".badgeos_earned_rank_main_container").each(function(e){s(a(this))}),a(".badgeos_rank_lists_offset").val("0"),a(".badgeos_ranks_list_main_container").each(function(s){e(a(this))}),a(document).on("click",".bos_ob_convert_to_ob_btn",function(e){e.preventDefault();var s=a(this),t=s.val();return a.ajax({url:BadgeosData.ajax_url,type:"POST",dataType:"json",data:{action:"bos_ob_convert_to_open_badge",entry_id:t},beforeSend:function(a){s.attr("disabled",!0).find(".bos_ob_btn_fa").show()},success:function(a){"success"==a.status&&s.text(a.message).delay(200).fadeOut()},error:function(a){},complete:function(){s.attr("disabled",!1).find(".bos_ob_btn_fa").hide()}})}),a("#open_badge_enable_baking").change(function(){"0"==a(this).val()?a("#open-badge-setting-section").hide():a("#open-badge-setting-section").show()}).change(),a(".badgeos_verification_close").click(function(){a(".badgeos_verification_modal_popup").fadeToggle(),a(".badgeos_verification_modal_popup").css({visibility:"hidden",display:"none"})}),a("#open-badgeos-verification").on("click",function(){n(this)})});
	1	jQuery(function($){function a(a){var b=a.attr("data-url"),c=a.attr("data-types"),d=a.attr("data-limit");a.attr("data-show_search");var e=a.attr("data-user_id"),f=a.attr("data-orderby"),g=a.attr("data-order"),h=a.attr("data-show_title"),i=a.attr("data-show_thumb"),j=a.attr("data-show_description"),k=a.attr("data-default_view"),l=a.attr("data-image_width"),m=a.attr("data-image_height");a.find("div.badgeos-rank-lists-spinner").show(),$.ajax({url:b,data:{action:"get-ranks-list",nonce:BadgeosData.security,types:c,limit:d,user_id:e,offset:a.find("#badgeos_rank_lists_offset").val(),count:a.find("#badgeos_ranks_count").val(),search:a.find("#rank_lists_list_search").val(),orderby:f,order:g,show_title:h,show_thumb:i,default_view:k,show_description:j,image_width:l,image_height:m},dataType:"json",success:function(b){a.find("div.badgeos-rank-lists-spinner").hide(),null===b.data.message\|\|(parseInt(a.find("#badgeos_rank_lists_offset").val())>0?a.find("div#badgeos-list-ranks-container .ls_grid_container").append(b.data.message):a.find("div#badgeos-list-ranks-container").append(b.data.message),a.find("#badgeos_rank_lists_offset").val(b.data.offset),a.find("#badgeos_ranks_count").val(b.data.badge_count),b.data.query_count<=b.data.offset?a.find(".rank_lists_list_load_more").hide():a.find(".rank_lists_list_load_more").show(),$(".badgeos-arrange-buttons button").on("click",function(){$(".badgeos-arrange-buttons button").removeClass("selected"),$(this).addClass("selected"),$(this).hasClass("grid")?$("#badgeos-list-ranks-container ul").removeClass("list").addClass("grid"):$(this).hasClass("list")&&$("#badgeos-list-ranks-container ul").removeClass("grid").addClass("list")}))}})}function b(a){var b=a.attr("data-url"),c=a.attr("data-rank_type"),d=a.attr("data-limit");a.attr("data-show_search");var e=a.attr("data-user_id"),f=a.attr("data-orderby"),g=a.attr("data-order"),h=a.attr("data-show_title"),i=a.attr("data-show_thumb"),j=a.attr("data-show_description"),k=a.attr("data-default_view"),l=a.attr("data-image_width"),m=a.attr("data-image_height");a.find("div.badgeos-earned-spinner").show(),$.ajax({url:b,data:{action:"get-earned-ranks",nonce:BadgeosData.security,rank_type:c,limit:d,user_id:e,offset:a.find("#badgeos_earned_ranks_offset").val(),count:a.find("#badgeos_ranks_count").val(),search:a.find("#earned_ranks_list_search").val(),orderby:f,order:g,show_title:h,show_thumb:i,default_view:k,show_description:j,image_width:l,image_height:m},dataType:"json",success:function(b){a.find("div.badgeos-earned-spinner").hide(),null===b.data.message\|\|(parseInt(a.find("#badgeos_earned_ranks_offset").val())>0?a.find("div#badgeos-earned-ranks-container .ls_grid_container").append(b.data.message):a.find("div#badgeos-earned-ranks-container").append(b.data.message),a.find("#badgeos_earned_ranks_offset").val(b.data.offset),a.find("#badgeos_ranks_count").val(b.data.badge_count),b.data.query_count<=b.data.offset?a.find(".earned_ranks_list_load_more").hide():a.find(".earned_ranks_list_load_more").show(),$(".badgeos-arrange-buttons button").on("click",function(){$(".badgeos-arrange-buttons button").removeClass("selected"),$(this).addClass("selected"),$(this).hasClass("grid")?$("#badgeos-earned-ranks-container ul").removeClass("list").addClass("grid"):$(this).hasClass("list")&&$("#badgeos-earned-ranks-container ul").removeClass("grid").addClass("list")}))}})}function c(a){var b=a.attr("data-url"),c=a.attr("data-type"),d=a.attr("data-limit");a.attr("data-show_search");var e=a.attr("data-user_id"),g=a.attr("data-wpms"),h=a.attr("data-orderby"),i=a.attr("data-order"),j=a.attr("data-include"),k=a.attr("data-exclude"),l=a.attr("data-show_title"),m=a.attr("data-show_thumb"),n=a.attr("data-show_description"),o=a.attr("data-default_view"),p=a.attr("data-image_width"),q=a.attr("data-image_height");a.find("div.badgeos-earned-spinner").show(),$.ajax({url:b,data:{action:"get-earned-achievements",nonce:BadgeosData.security,type:c,limit:d,user_id:e,wpms:g,offset:a.find("#badgeos_achievements_offset").val(),count:a.find("#badgeos_achievements_count").val(),search:a.find("#earned_achievements_list_search").val(),orderby:h,order:i,include:j,exclude:k,show_title:l,show_thumb:m,show_description:n,default_view:o,image_width:p,image_height:q},dataType:"json",success:function(b){a.find("div.badgeos-earned-spinner").hide(),null===b.data.message\|\|(parseInt(a.find("#badgeos_achievements_offset").val())>0?a.find("div#badgeos-earned-achievements-container .ls_grid_container").append(b.data.message):a.find("div#badgeos-earned-achievements-container").append(b.data.message),a.find("#badgeos_achievements_offset").val(b.data.offset),a.find("#badgeos_achievements_count").val(b.data.badge_count),b.data.query_count<=b.data.offset?a.find(".earned_achievements_list_load_more").hide():a.find(".earned_achievements_list_load_more").show()),$(".badgeos-arrange-buttons button").on("click",function(){$(".badgeos-arrange-buttons button").removeClass("selected"),$(this).addClass("selected"),$(this).hasClass("grid")?$("#badgeos-earned-achievements-container ul").removeClass("list").addClass("grid"):$(this).hasClass("list")&&$("#badgeos-earned-achievements-container ul").removeClass("grid").addClass("list")}),$(".badgeos-ob-verification-buttons").on("click",function(){f(this)})}})}function d(a){var b=a.attr("data-url"),c=a.attr("data-type"),d=a.attr("data-limit"),e=a.attr("data-show_child"),f=a.attr("data-show_parent");a.attr("data-show_filter"),a.attr("data-show_search");var g=a.attr("data-group_id"),h=a.attr("data-user_id"),i=a.attr("data-wpms"),j=a.attr("data-orderby"),k=a.attr("data-order"),l=a.attr("data-include"),m=a.attr("data-exclude"),n=a.attr("data-meta_key"),o=a.attr("data-meta_value"),p=a.attr("data-show_title"),q=a.attr("data-show_thumb"),r=a.attr("data-show_description"),s=a.attr("data-show_steps"),t=a.attr("data-default_view"),u=a.attr("data-image_width"),v=a.attr("data-image_height");$.ajax({url:b,data:{action:"get-achievements",nonce:BadgeosData.security,type:c,limit:d,show_parent:e,show_child:f,group_id:g,user_id:h,wpms:i,offset:a.find("#badgeos_achievements_offset").val(),count:a.find("#badgeos_achievements_count").val(),filter:a.find("#achievements_list_filter").val(),search:a.find("#achievements_list_search").val(),orderby:j,order:k,include:l,exclude:m,meta_key:n,meta_value:o,show_title:p,show_thumb:q,show_description:r,show_steps:s,default_view:t,image_width:u,image_height:v},dataType:"json",success:function(b){a.find("div.badgeos-spinner").hide(),null===b.data.message\|\|(parseInt(a.find("#badgeos_achievements_offset").val())>0?a.find("div#badgeos-achievements-container .ls_grid_container").append(b.data.message):a.find("div#badgeos-achievements-container").append(b.data.message),a.find("#badgeos_achievements_offset").val(b.data.offset),a.find("#badgeos_achievements_count").val(b.data.badge_count),b.data.query_count<=b.data.offset?a.find(".achievements_list_load_more").hide():a.find(".achievements_list_load_more").show()),$(".badgeos-arrange-buttons button").on("click",function(){$(".badgeos-arrange-buttons button").removeClass("selected"),$(this).addClass("selected"),$(this).hasClass("grid")?$("#badgeos-achievements-container ul").removeClass("list").addClass("grid"):$(this).hasClass("list")&&$("#badgeos-achievements-container ul").removeClass("grid").addClass("list")})}})}function e(a){a.find("#badgeos_achievements_offset").val(0),a.find("#badgeos_achievements_count").val(0),a.find("div#badgeos-achievements-container").html(""),a.find(".achievements_list_load_more").hide(),d(a)}function f(a){$("#badgeos-ob-verification-res-list").html("");var b=$(a).data("bg"),c=$(a).data("eid"),d=$(a).data("uid");$(".badgeos_verification_modal_popup").fadeToggle(),$(".badgeos_verification_modal_popup").css({visibility:"visible",display:"block"});var e=0;$.ajax({url:BadgeosData.ajax_url,type:"POST",data:{action:"badgeos_validate_open_badge",bg:b,eid:c,uid:d,type:"issued_on"},dataType:"json",success:function(a){"success"==a.type&&parseInt(a.result)>0?$(".badgeos_verification_modal_panel").html('<div class="badgeos_modal_badge"><div class="badgeos_verification_checkbox"><i class="fas fa-check"></i></div><div class="badgeos_verification_badge_title"><span>'+a.message+"</span></div></div>"):$(".badgeos_verification_modal_panel").html('<div class="badgeos_modal_badge"><div class="badgeos_verification_checkbox"><i class="fas fa-times"></i></div><div class="badgeos_verification_badge_title"><span>'+a.message+"</span></div></div>"),e+=parseInt(a.result),$.ajax({url:BadgeosData.ajax_url,type:"POST",data:{action:"badgeos_validate_open_badge",bg:b,eid:c,uid:d,type:"issued_by"},dataType:"json",success:function(a){"success"==a.type&&parseInt(a.result)>0?$(".badgeos_verification_modal_panel").append('<div class="badgeos_modal_badge"><div class="badgeos_verification_checkbox"><i class="fas fa-check"></i></div><div class="badgeos_verification_badge_title"><span>'+a.message+"</span></div></div>"):$(".badgeos_verification_modal_panel").append('<div class="badgeos_modal_badge"><div class="badgeos_verification_checkbox"><i class="fas fa-times"></i></div><div class="badgeos_verification_badge_title"><span>'+a.message+"</span></div></div>"),e+=parseInt(a.result),$.ajax({url:BadgeosData.ajax_url,type:"POST",data:{action:"badgeos_validate_open_badge",bg:b,eid:c,uid:d,type:"issued_using"},dataType:"json",success:function(a){"success"==a.type&&parseInt(a.result)>0?$(".badgeos_verification_modal_panel").append('<div class="badgeos_modal_badge"><div class="badgeos_verification_checkbox"><i class="fas fa-check"></i></div><div class="badgeos_verification_badge_title"><span>'+a.message+"</span></div></div>"):$(".badgeos_verification_modal_panel").append('<div class="badgeos_modal_badge"><div class="badgeos_verification_checkbox"><i class="fas fa-times"></i></div><div class="badgeos_verification_badge_title"><span>'+a.message+"</span></div></div>"),e+=parseInt(a.result),$.ajax({url:BadgeosData.ajax_url,type:"POST",data:{action:"badgeos_validate_open_badge",bg:b,eid:c,uid:d,type:"issued_to"},dataType:"json",success:function(a){"success"==a.type&&parseInt(a.result)>0?$(".badgeos_verification_modal_panel").append('<div class="badgeos_modal_badge"><div class="badgeos_verification_checkbox"><i class="fas fa-check"></i></div><div class="badgeos_verification_badge_title"><span>'+a.message+"</span></div></div>"):$(".badgeos_verification_modal_panel").append('<div class="badgeos_modal_badge"><div class="badgeos_verification_checkbox"><i class="fas fa-times"></i></div><div class="badgeos_verification_badge_title"><span>'+a.message+"</span></div></div>"),e+=parseInt(a.result),$.ajax({url:BadgeosData.ajax_url,type:"POST",data:{action:"badgeos_validate_open_badge",bg:b,eid:c,uid:d,type:"expiry_date"},dataType:"json",success:function(a){"success"==a.type&&parseInt(a.result)>0?$(".badgeos_verification_modal_panel").append('<div class="badgeos_modal_badge"><div class="badgeos_verification_checkbox"><i class="fas fa-check"></i></div><div class="badgeos_verification_badge_title"><span>'+a.message+"</span></div></div>"):$(".badgeos_verification_modal_panel").append('<div class="badgeos_modal_badge"><div class="badgeos_verification_checkbox"><i class="fas fa-times"></i></div><div class="badgeos_verification_badge_title"><span>'+a.message+"</span></div></div>"),(e+=parseInt(a.result))<5?$(".badgeos_verification_modal_panel").append('<div class="badgeos_modal_badge"><div class="badgeos_verification_checkbox"><i class="fas fa-times"></i></div><div class="badgeos_verification_badge_title"><span class="badgeos_verified">'+a.notverified_label+"</span></div></div>"):$(".badgeos_verification_modal_panel").append('<div class="badgeos_modal_badge"><div class="badgeos_verification_checkbox"><i class="fas fa-check"></i></div><div class="badgeos_verification_badge_title"><span class="badgeos_verified">'+a.verified_label+"</span></div></div>")}})}})}})}})}})}$("body"),$(".achievements_list_filter").change(function(){e($(this).parents('div[class^="badgeos_achievement_main_container"]').eq(0))}).change(),$(".rank_lists_list_search_go_form").submit(function(c){var b;c.preventDefault(),(b=$(this).parents('div[class^="badgeos_ranks_list_main_container"]').eq(0)).find("#badgeos_rank_lists_offset").val(0),b.find("#badgeos_ranks_count").val(0),b.find("div#badgeos-list-ranks-container").html(""),b.find(".rank_lists_list_load_more").hide(),a(b)}),$(".earned_ranks_list_search_go").click(function(c){var a;c.preventDefault(),(a=$(this).parents('div[class^="badgeos_earned_rank_main_container"]').eq(0)).find("#badgeos_earned_ranks_offset").val(0),a.find("#badgeos_ranks_count").val(0),a.find("div#badgeos-earned-ranks-container").html(""),a.find(".earned_ranks_list_load_more").hide(),b(a)}),$(".achievements_list_search_go_form").submit(function(b){b.preventDefault();var a=$(this).parents('div[class^="badgeos_achievement_main_container"]').eq(0);e(a),a.find(".achievements_list_search_go").attr("disabled","disabled")}),$(".earned_achievements_list_search_go").click(function(b){var a;b.preventDefault(),(a=$(this).parents('div[class^="badgeos_earned_achievement_main_container"]').eq(0)).find("#badgeos_achievements_offset").val(0),a.find("#badgeos_achievements_count").val(0),a.find("div#badgeos-earned-achievements-container").html(""),a.find(".achievements_list_load_more").hide(),c(a)}),$(".achievements_list_search").focus(function(a){$(this).removeAttr("disabled"),$(".achievements_list_search_go").removeAttr("disabled")}),$(".achievements_list_load_more").click(function(){var a=$(this).parents('div[class^="badgeos_achievement_main_container"]').eq(0);a.find(".badgeos-spinner").show(),d(a)}),$(".earned_achievements_list_load_more").click(function(){var a=$(this).parents('div[class^="badgeos_earned_achievement_main_container"]').eq(0);a.find(".badgeos-earned-spinner").show(),c(a)}),$(".earned_ranks_list_load_more").click(function(){var a=$(this).parents('div[class^="badgeos_earned_rank_main_container"]').eq(0);a.find(".badgeos-earned-ranks-spinner").show(),b(a)}),$(".rank_lists_list_load_more").click(function(){var b=$(this).parents('div[class^="badgeos_ranks_list_main_container"]').eq(0);b.find(".badgeos-rank-lists-spinner").show(),a(b)}),$("#badgeos-achievements-container,.badgeos-single-achievement").on("click",".badgeos-open-close-switch a",function(b){b.preventDefault();var a=$(this);"close"==a.data("action")?(a.parent().siblings(".badgeos-extras-window").slideUp(300),a.data("action","open").prop("class","show-hide-open").text("Show Details")):(a.parent().siblings(".badgeos-extras-window").slideDown(300),a.data("action","close").prop("class","show-hide-close").text("Hide Details"))}),$(".badgeos_earned_achievements_offset").val("0"),$(".badgeos_earned_achievement_main_container").each(function(a){c($(this))}),$(".badgeos_earned_ranks_offset").val("0"),$(".badgeos_earned_rank_main_container").each(function(a){b($(this))}),$(".badgeos_rank_lists_offset").val("0"),$(".badgeos_ranks_list_main_container").each(function(b){a($(this))}),$(document).on("click",".bos_ob_convert_to_ob_btn",function(a){a.preventDefault();var b=$(this),c=b.val();return $.ajax({url:BadgeosData.ajax_url,type:"POST",dataType:"json",data:{action:"bos_ob_convert_to_open_badge",entry_id:c},beforeSend:function(a){b.attr("disabled",!0).find(".bos_ob_btn_fa").show()},success:function(a){"success"==a.status&&b.text(a.message).delay(200).fadeOut()},error:function(a){},complete:function(){b.attr("disabled",!1).find(".bos_ob_btn_fa").hide()}})}),$("#open_badge_enable_baking").change(function(){"0"==$(this).val()?$("#open-badge-setting-section").hide():$("#open-badge-setting-section").show()}).change(),$(".badgeos_verification_close").click(function(){$(".badgeos_verification_modal_popup").fadeToggle(),$(".badgeos_verification_modal_popup").css({visibility:"hidden",display:"none"})}),$("#open-badgeos-verification").on("click",function(){f(this)})})

badgeos/trunk/js/badgeos-shortcode-embed.js

r2448573	r2765251
206	206	// custom minLength
207	207	var term = extractLast(this.value);
208		if (term.length < 3) {
	208	if (term.length < 2) {
209	209	return false;
210	210	}

badgeos/trunk/js/badgeos-shortcode-embed.min.js

r2448573	r2765251
1		!function(e){function t(){e(".ui-autocomplete-input").val("");var t=a(),n=function(t,a){var n="[";if(n+=t,a){for(i=0;i<a.length;i++)n+=" "+a[i];e.trim(n)}return n+="]"}(t,function(t){var a=[],n=function(t){return e(".text, .select","#"+t+"_wrapper")}(t);return e.each(n,function(t,n){if(""!==n.value&&void 0!==n.value){if(e(this).hasClass("select2-hidden-accessible")){var s=e(n).select2("data"),i=[];return e.each(s,function(e,t){i.push(t.id)}),a.push(n.name+'="'+i+'"'),a}return a.push(n.name+'="'+n.value+'"'),a}}),a}(t));window.send_to_editor(n)}function a(){return e("#select_shortcode").val()}e("#select_shortcode").on("change",function(){var t;e(".shortcode-section").hide(),t=a(),e("#"+t+"_wrapper").show()}).change(),e("#badgeos_insert").on("click",function(e){e.preventDefault(),t()}),e("#badgeos_cancel").on("click",function(e){e.preventDefault(),tb_remove()}),e("#insert_badgeos_shortcodes").on("click",function(t){var a=e(".select2-container");e.each(a,function(t,a){e(a).val("")})});var n={language:{noResults:function(){return"No Results"},errorLoading:function(){return"Searching..."}},escapeMarkup:function(e){return e},placeholder:badgeos_shortcode_embed_messages.id_placeholder,allowClear:!0},s=e.extend(!0,{},n,{});function o(e){return(t=e,t.split(/,\s*/)).pop();var t}function r(t){setTimeout(function(){var a=t.attr("data-width");e(".badgeos-shortcode-thickbox").width(a);var n=e(".badgeos-shortcode-thickbox").height();e(".badgeos-shortcode-thickbox #TB_ajaxContent").width(a-30).height(n-50),e(".badgeos-shortcode-thickbox .wrap").width(a-50).height(n-50)},0)}e("#badgeos_achievement_id,#badgeos_rank_id, #badgeos_nomination_achievement_id, #badgeos_submission_achievement_id, #badgeos_user_earned_points_point_type, #badgeos_evidence_achievement").select2(n),e("#badgeos_achievements_list_include, #badgeos_achievements_list_exclude, #badgeos_user_earned_achievements_include, #badgeos_user_earned_achievements_exclude,#badgeos_user_earned_ranks_rank_type").attr("multiple",!0).select2(s),e("#badgeos_achievements_list_type, #badgeos_user_earned_achievements_type").html(badgeos_shortcode_embed_messages.achievements_select_options).attr("multiple",!0).select2({language:{noResults:function(){return"No Results"},errorLoading:function(){return"Searching..."}},escapeMarkup:function(e){return e},placeholder:badgeos_shortcode_embed_messages.id_multiple_placeholder,allowClear:!0}),e("#badgeos_ranks_list_types").attr("multiple",!0).select2({language:{noResults:function(){return"No Results"},errorLoading:function(){return"Searching..."}},escapeMarkup:function(e){return e},placeholder:badgeos_shortcode_embed_messages.id_multiple_placeholder,allowClear:!0}),e("#badgeos_achievements_list_user_id1, #badgeos_user_earned_achievements_user_id1, #badgeos_user_earned_ranks_user_id1, #badgeos_user_earned_points_user_id1, #badgeos_ranks_list_user_id1, #badgeos_evidence_user_id1").autocomplete({source:function(t,a){e.getJSON(ajaxurl,{q:o(t.term),action:"badgeos-get-users-list"},a)},multiselect:!1,search:function(){if(o(this.value).length<3)return!1},focus:function(){return!1},change:function(e,t){var a=jQuery(this);if(""==a.val()){var n=a.data("fieldname");"autocomplete"==a.data("type")&&jQuery("#"+n).val("")}},select:function(e,t){var a=jQuery(this),n=a.data("fieldname");return"autocomplete"==a.data("type")&&(""!=t.item.value?jQuery("#"+n).val(t.item.value):jQuery("#"+n).val(t.item.id)),this.value=t.item.label,!1}}),e("#badgeos_evidence_award_id1").autocomplete({source:function(t,a){e.getJSON(ajaxurl,{q:o(t.term),action:"get-achievements-award-list",achievement_id:e("#badgeos_evidence_achievement").val(),user_id:e("#badgeos_evidence_user_id").val()},a)},multiselect:!1,search:function(){if(o(this.value).length<3)return!1},focus:function(){return!1},change:function(e,t){var a=jQuery(this);if(""==a.val()){var n=a.data("fieldname");"autocomplete"==a.data("type")&&jQuery("#"+n).val("")}},select:function(e,t){var a=jQuery(this),n=a.data("fieldname");return"autocomplete"==a.data("type")&&(""!=t.item.value?jQuery("#"+n).val(t.item.value):jQuery("#"+n).val(t.item.id)),this.value=t.item.label,!1}}),e("body").on("click","#insert_badgeos_shortcodes",function(t){var a;t.preventDefault(),a=e(this),setTimeout(function(){e("#TB_window").addClass("badgeos-shortcode-thickbox"),r(a)},0),e(".ui-autocomplete-multiselect").css("width","90%")}),e(window).resize(function(){r(e("#insert_badgeos_shortcodes"))})}(jQuery);
	1	!function(e){function t(){e(".ui-autocomplete-input").val("");var t=a(),n=function(t,a){var n="[";if(n+=t,a){for(i=0;i<a.length;i++)n+=" "+a[i];e.trim(n)}return n+="]"}(t,function(t){var a=[],n=function(t){return e(".text, .select","#"+t+"_wrapper")}(t);return e.each(n,function(t,n){if(""!==n.value&&void 0!==n.value){if(e(this).hasClass("select2-hidden-accessible")){var s=e(n).select2("data"),i=[];return e.each(s,function(e,t){i.push(t.id)}),a.push(n.name+'="'+i+'"'),a}return a.push(n.name+'="'+n.value+'"'),a}}),a}(t));window.send_to_editor(n)}function a(){return e("#select_shortcode").val()}e("#select_shortcode").on("change",function(){var t;e(".shortcode-section").hide(),t=a(),e("#"+t+"_wrapper").show()}).change(),e("#badgeos_insert").on("click",function(e){e.preventDefault(),t()}),e("#badgeos_cancel").on("click",function(e){e.preventDefault(),tb_remove()}),e("#insert_badgeos_shortcodes").on("click",function(t){var a=e(".select2-container");e.each(a,function(t,a){e(a).val("")})});var n={language:{noResults:function(){return"No Results"},errorLoading:function(){return"Searching..."}},escapeMarkup:function(e){return e},placeholder:badgeos_shortcode_embed_messages.id_placeholder,allowClear:!0},s=e.extend(!0,{},n,{});function o(e){return(t=e,t.split(/,\s*/)).pop();var t}function r(t){setTimeout(function(){var a=t.attr("data-width");e(".badgeos-shortcode-thickbox").width(a);var n=e(".badgeos-shortcode-thickbox").height();e(".badgeos-shortcode-thickbox #TB_ajaxContent").width(a-30).height(n-50),e(".badgeos-shortcode-thickbox .wrap").width(a-50).height(n-50)},0)}e("#badgeos_achievement_id,#badgeos_rank_id, #badgeos_nomination_achievement_id, #badgeos_submission_achievement_id, #badgeos_user_earned_points_point_type, #badgeos_evidence_achievement").select2(n),e("#badgeos_achievements_list_include, #badgeos_achievements_list_exclude, #badgeos_user_earned_achievements_include, #badgeos_user_earned_achievements_exclude,#badgeos_user_earned_ranks_rank_type").attr("multiple",!0).select2(s),e("#badgeos_achievements_list_type, #badgeos_user_earned_achievements_type").html(badgeos_shortcode_embed_messages.achievements_select_options).attr("multiple",!0).select2({language:{noResults:function(){return"No Results"},errorLoading:function(){return"Searching..."}},escapeMarkup:function(e){return e},placeholder:badgeos_shortcode_embed_messages.id_multiple_placeholder,allowClear:!0}),e("#badgeos_ranks_list_types").attr("multiple",!0).select2({language:{noResults:function(){return"No Results"},errorLoading:function(){return"Searching..."}},escapeMarkup:function(e){return e},placeholder:badgeos_shortcode_embed_messages.id_multiple_placeholder,allowClear:!0}),e("#badgeos_achievements_list_user_id1, #badgeos_user_earned_achievements_user_id1, #badgeos_user_earned_ranks_user_id1, #badgeos_user_earned_points_user_id1, #badgeos_ranks_list_user_id1, #badgeos_evidence_user_id1").autocomplete({source:function(t,a){e.getJSON(ajaxurl,{q:o(t.term),action:"badgeos-get-users-list"},a)},multiselect:!1,search:function(){if(o(this.value).length<3)return!1},focus:function(){return!1},change:function(e,t){var a=jQuery(this);if(""==a.val()){var n=a.data("fieldname");"autocomplete"==a.data("type")&&jQuery("#"+n).val("")}},select:function(e,t){var a=jQuery(this),n=a.data("fieldname");return"autocomplete"==a.data("type")&&(""!=t.item.value?jQuery("#"+n).val(t.item.value):jQuery("#"+n).val(t.item.id)),this.value=t.item.label,!1}}),e("#badgeos_evidence_award_id1").autocomplete({source:function(t,a){e.getJSON(ajaxurl,{q:o(t.term),action:"get-achievements-award-list",achievement_id:e("#badgeos_evidence_achievement").val(),user_id:e("#badgeos_evidence_user_id").val()},a)},multiselect:!1,search:function(){if(o(this.value).length<2)return!1},focus:function(){return!1},change:function(e,t){var a=jQuery(this);if(""==a.val()){var n=a.data("fieldname");"autocomplete"==a.data("type")&&jQuery("#"+n).val("")}},select:function(e,t){var a=jQuery(this),n=a.data("fieldname");return"autocomplete"==a.data("type")&&(""!=t.item.value?jQuery("#"+n).val(t.item.value):jQuery("#"+n).val(t.item.id)),this.value=t.item.label,!1}}),e("body").on("click","#insert_badgeos_shortcodes",function(t){var a;t.preventDefault(),a=e(this),setTimeout(function(){e("#TB_window").addClass("badgeos-shortcode-thickbox"),r(a)},0),e(".ui-autocomplete-multiselect").css("width","90%")}),e(window).resize(function(){r(e("#insert_badgeos_shortcodes"))})}(jQuery);

badgeos/trunk/readme.txt

-                      r2687806
+                      r2765251
 Tags: badge, badges, openbadges, gamification, learningtimes, OBI, mozilla, open badges, achievement, points, ranks, award, reward, engagement, submission, nomination, API, open credit, credit
 Requires at least: 4.0
 Tested up to: 5.9.1
 Stable tag: 3.7.0
+Tested up to: 6.0.1
+Stable tag: 3.7.1
 License: GNU AGPLv3
 License URI: http://www.gnu.org/licenses/agpl-3.0.html
 …
 == Changelog ==
+= 3.7.1 =
+* Fix: SQL tainted queries.
+* Fix: Unsanitize parameters in shortcodes/widgets/blocks.
+* Fix: Steps saving issue with achievements/points/ranks.
+* Fix: Achievement/Ranks/Points image resizing issues from default settings.
+* Fix: Remove limit for downloading assets from assets menu.
 = 3.7.0 =
 * New: Added "On User Birthday" trigger on achievements, ranks, and points award.

Context Navigation

3.7.1

Legend:

Download in other formats: