Changeset 2778744

Timestamp:

09/01/2022 11:08:02 AM (3 years ago)

Author:

yotuwp

Message:

version 1.3.6

Location:

yotuwp-easy-youtube-embed/trunk

Files:

• inc/misc-functions.php (modified) (1 diff)
• inc/tracking.php (modified) (1 diff)
• inc/views.php (modified) (1 diff)
• readme.txt (modified) (2 diffs)
• templates/grid.php (modified) (1 diff)
• templates/list.php (modified) (1 diff)
• templates/mix.php (modified) (1 diff)
• templates/pagination.php (modified) (1 diff)
• yotuwp.php (modified) (4 diffs)

yotuwp-easy-youtube-embed/trunk/inc/misc-functions.php

@@ -22 +22 @@
 function yotuwp_video_description( $video ) {
     $desc = apply_filters( 'yotuwp_video_description', nl2br(strip_tags($video->snippet->description)), $video );
-    return $desc;
+    return esc_html( $desc );
 }
 

yotuwp-easy-youtube-embed/trunk/inc/tracking.php

@@ -25 +25 @@
         $data['version'] = YOTUWP_VERSION;
         $data['wp_version']  = get_bloginfo( 'version' );
-        $data['server']      = isset( $_SERVER['SERVER_SOFTWARE'] ) ? $_SERVER['SERVER_SOFTWARE'] : '';
+        $data['server']      = isset( $_SERVER['SERVER_SOFTWARE'] ) ? sanitize_text_field( $_SERVER['SERVER_SOFTWARE'] ) : '';
 
         $data['multisite']   = is_multisite();
         $data['url']         = home_url();
-        $data['domain']      = preg_replace( '/www\./i', '', $_SERVER['SERVER_NAME'] );
+        $data['domain']      = preg_replace( '/www\./i', '', sanitize_text_field( $_SERVER['SERVER_NAME'] ) );
         $data['theme']       = $theme;
         $data['email']       = get_bloginfo( 'admin_email' );

yotuwp-easy-youtube-embed/trunk/inc/views.php

@@ -993 +993 @@
         <div class="yotu-wrap wrap">
             <div class="yotu-logo">
-                <img src="<?php echo $yotuwp->url . 'assets/images/yotu-small.png';?>" height="80"/>
-                <div><?php _e('Version', 'yotuwp-easy-youtube-embed'); echo ' '. $yotuwp->version;?></div>
+                <img src="<?php esc_attr_e( $yotuwp->url . 'assets/images/yotu-small.png' );?>" height="80"/>
+                <div><?php _e('Version', 'yotuwp-easy-youtube-embed'); echo ' '. esc_html_e( $yotuwp->version );?></div>
             </div>
             <div class="yotu-body shortcode_gen">

yotuwp-easy-youtube-embed/trunk/readme.txt

@@ -4 +4 @@
 Requires at least: 4.3
 Tested up to: 6.0
-Stable tag: 4.3
+Stable tag: 1.3
 Donate link: https://www.paypal.me/tuongpg
 License: GPLv2 or later
@@ -114 +114 @@
 
 == Changelog ==
+= 1.3.6 - Sept 1st, 2022 =
+* Resolve issues compability with wordpress.org requirements
+
 = 1.3.5 - Aug 20th, 2022 =
 * Fix issue admin with delete cache

yotuwp-easy-youtube-embed/trunk/templates/grid.php

@@ -26 +26 @@
             <li class="<?php echo $count==0?' yotu-first':''; echo ($count+1)==$total?' yotu-last':'';?>">
                 <?php do_action('yotuwp_before_link', $videoId, $video);?>
-                <a href="#<?php echo $videoId;?>" class="<?php echo implode(" ", $video_classes);?>" data-videoid="<?php echo $videoId;?>" data-title="<?php echo $yotuwp->encode($video_title);?>" title="<?php echo $video_title;?>">
+                <a href="#<?php esc_attr_e( $videoId );?>" class="<?php echo implode(" ", $video_classes);?>" data-videoid="<?php esc_attr_e( $videoId );?>" data-title="<?php esc_attr_e( $yotuwp->encode($video_title) );?>" title="<?php esc_attr_e( $video_title );?>">
                     <div class="yotu-video-thumb-wrp">
                         <div>
                             <?php do_action('yotuwp_before_thumbnail', $videoId, $video, $settings);?>
-                            <img class="yotu-video-thumb" src="<?php echo $thumb;?>" alt="<?php echo $video_title;?>">  
+                            <img class="yotu-video-thumb" src="<?php esc_attr_e( $thumb );?>" alt="<?php esc_attr_e( $video_title ) ;?>">   
                             <?php do_action('yotuwp_after_thumbnail', $videoId, $video);?>
                         </div>
                     </div>
                     <?php if( isset($settings['title']) && $settings['title'] == 'on' ):?>
-                        <h3 class="yotu-video-title"><?php echo $video_title;?></h3>
+                        <h3 class="yotu-video-title"><?php esc_html_e( $video_title );?></h3>
                     <?php endif;?>
                     <?php do_action('yotuwp_after_title', $videoId, $video);?>

yotuwp-easy-youtube-embed/trunk/templates/list.php

@@ -22 +22 @@
             <li class="<?php echo $count==0?' yotu-first':''; echo $count==$total?' yotu-last':'';?>">
                 <?php do_action('yotuwp_before_link', $videoId, $video);?>
-                <a href="#<?php echo $videoId;?>" class="<?php echo implode(" ", $video_classes);?>" data-videoid="<?php echo $videoId;?>" data-title="<?php echo $yotuwp->encode($video->snippet->title);?>">
+                <a href="#<?php esc_attr_e( $videoId );?>" class="<?php echo implode(" ", $video_classes);?>" data-videoid="<?php esc_attr_e( $videoId );?>" data-title="<?php echo $yotuwp->encode($video->snippet->title);?>">
                     <div class="yotu-video-thumb-wrp">
                         <div>
                             <?php do_action('yotuwp_before_thumbnail', $videoId, $video, $settings);?>
-                            <img class="yotu-video-thumb" src="<?php echo $thumb;?>" alt="<?php echo $video->snippet->title;?>"/>
+                            <img class="yotu-video-thumb" src="<?php echo $thumb;?>" alt="<?php esc_attr_e( $video->snippet->title );?>"/>
                             <?php do_action('yotuwp_after_thumbnail', $videoId, $video);?>
                         </div>

yotuwp-easy-youtube-embed/trunk/templates/mix.php

@@ -20 +20 @@
             <li class="<?php echo $count==0?' yotu-first':''; echo $count==$total?' yotu-last':'';?>">
                 <?php do_action('yotuwp_before_link', $videoId, $video);?>
-                <a href="#<?php echo $videoId;?>" class="<?php echo implode(" ", $video_classes);?>" data-videoid="<?php echo $videoId;?>" data-title="<?php echo $yotuwp->encode($video->snippet->title);?>">
+                <a href="#<?php esc_attr_e( $videoId );?>" class="<?php echo implode(" ", $video_classes);?>" data-videoid="<?php esc_attr_e( $videoId );?>" data-title="<?php echo $yotuwp->encode($video->snippet->title);?>">
                     <div class="yotu-video-thumb-wrp">
                         <div>
                             <?php do_action('yotuwp_before_thumbnail', $videoId, $video, $settings);?>
-                            <img class="yotu-video-thumb" src="<?php echo $thumb;?>" alt="<?php echo $video->snippet->title;?>"/>
+                            <img class="yotu-video-thumb" src="<?php esc_attr_e( $thumb );?>" alt="<?php esc_attr_e( $video->snippet->title );?>"/>
                             <?php do_action('yotuwp_after_thumbnail', $videoId, $video);?>
                         </div>

yotuwp-easy-youtube-embed/trunk/templates/pagination.php

@@ -14 +14 @@
 ?>
 <div class="yotu-pagination<?php echo ($data->totalPage == 1)? ' yotu-hide' : ''; echo $buton_layout;?>">
-<a href="#" class="yotu-pagination-prev<?php echo $buton_style;?>" data-page="prev"><?php echo $prev_text;?></a>
-<span class="yotu-pagination-current">1</span> <span><?php _e('of', 'yotuwp-easy-youtube-embed');?></span> <span class="yotu-pagination-total"><?php echo $data->totalPage;?></span>
-<a href="#" class="yotu-pagination-next<?php echo $buton_style;?>" data-page="next"><?php echo $next_text;?></a>
+<a href="#" class="yotu-pagination-prev<?php esc_attr_e( $buton_style );?>" data-page="prev"><?php esc_html_e( $prev_text );?></a>
+<span class="yotu-pagination-current">1</span> <span><?php _e('of', 'yotuwp-easy-youtube-embed');?></span> <span class="yotu-pagination-total"><?php esc_html_e( $data->totalPage );?></span>
+<a href="#" class="yotu-pagination-next<?php esc_attr_e( $buton_style );?>" data-page="next"><?php esc_html_e( $next_text );?></a>
 </div>
 <?php else:?>
 <div class="yotu-pagination<?php echo ($data->totalPage == 1)? ' yotu-hide' : '';?>">
-    <a href="#" class="yotu-pagination-more<?php echo $buton_style;?>" data-page="more"><?php echo $loadmore_text;?></a>
+    <a href="#" class="yotu-pagination-more<?php esc_attr_e( $buton_style );?>" data-page="more"><?php esc_html_e( $loadmore_text );?></a>
 </div>
 <?php endif;

yotuwp-easy-youtube-embed/trunk/yotuwp.php

@@ -4 +4 @@
 * Plugin URI: https://www.yotuwp.com/
 * Description: Easy embed YouTube playlist, channel, videos and user videos to posts/pages/widgets
-* Version: 1.3.5
+* Version: 1.3.6
 * Text Domain: yotuwp-easy-youtube-embed
 * Domain Path: /languages
@@ -18 +18 @@
 
 if( !defined( 'YOTUWP_VERSION' ) )
-    define( 'YOTUWP_VERSION', '1.3.5' );
+    define( 'YOTUWP_VERSION', '1.3.6' );
 
 global $yotuwp, $yotuwp_inline_script;
@@ -1133 +1133 @@
         if (isset( $_GET['yotuwp_rating_ignore_notice'] ) ) {
 
-            $rating_notice = $_GET['yotuwp_rating_ignore_notice'];
+            $rating_notice = sanitize_text_field( $_GET['yotuwp_rating_ignore_notice'] );
 
             switch ( $rating_notice) {
@@ -1149 +1149 @@
                     break;
             }
-            wp_redirect( $_SERVER['HTTP_REFERER'] );
+            wp_redirect( sanitize_url( $_SERVER['HTTP_REFERER'] ) );
             exit;
         }
 
-        if (isset( $_GET['yotuwp_scgen_ignore_notice'] ) ) {
+        if ( isset( $_GET['yotuwp_scgen_ignore_notice'] ) ) {
             update_user_meta( $user_id, 'yotuwp_scgen_ignore_notice', true);
         }