Changeset 2934680
- Timestamp:
- 07/05/2023 04:47:52 PM (3 years ago)
- Location:
- yet-another-stars-rating/trunk
- Files:
-
- 1 added
- 1 deleted
- 16 edited
-
admin/classes/YasrAdmin.php (modified) (1 diff)
-
admin/css/yasr-admin.css (modified) (1 diff)
-
admin/editor/YasrMetaboxBelowEditor.php (modified) (2 diffs)
-
admin/yasr-optin-page.php (deleted)
-
readme.txt (modified) (2 diffs)
-
vendor/freemius/wordpress-sdk/includes/class-freemius.php (modified) (15 diffs)
-
vendor/freemius/wordpress-sdk/includes/class-fs-plugin-updater.php (modified) (2 diffs)
-
vendor/freemius/wordpress-sdk/includes/fs-core-functions.php (modified) (5 diffs)
-
vendor/freemius/wordpress-sdk/includes/fs-html-escaping-functions.php (added)
-
vendor/freemius/wordpress-sdk/require.php (modified) (1 diff)
-
vendor/freemius/wordpress-sdk/start.php (modified) (1 diff)
-
vendor/freemius/wordpress-sdk/templates/account.php (modified) (9 diffs)
-
vendor/freemius/wordpress-sdk/templates/account/billing.php (modified) (3 diffs)
-
vendor/freemius/wordpress-sdk/templates/admin-notice.php (modified) (2 diffs)
-
vendor/freemius/wordpress-sdk/templates/connect.php (modified) (5 diffs)
-
vendor/freemius/wordpress-sdk/templates/forms/optout.php (modified) (3 diffs)
-
vendor/freemius/wordpress-sdk/templates/partials/network-activation.php (modified) (1 diff)
-
yet-another-stars-rating.php (modified) (2 diffs)
Legend:
- Unmodified
- Added
- Removed
-
yet-another-stars-rating/trunk/admin/classes/YasrAdmin.php
r2929048 r2934680 65 65 */ 66 66 private function freemiusHooks() { 67 //customize optin page to force to be in English68 yasr_fs()->add_filter('templates/connect.php', static function ($vars) {69 include YASR_ABSOLUTE_PATH_ADMIN . '/yasr-optin-page.php';70 });71 72 67 /** 73 68 * Customize Freemius permission list TO NOT ALLOW TRANSLATIONS -
yet-another-stars-rating/trunk/admin/css/yasr-admin.css
r2929048 r2934680 99 99 } 100 100 101 /**** Below Editor ****/ 102 .yasr-dash-before-text { 103 vertical-align: text-bottom; 104 } 105 101 106 /**** Metabox multi ****/ 102 107 -
yet-another-stars-rating/trunk/admin/editor/YasrMetaboxBelowEditor.php
r2902165 r2934680 105 105 ?> 106 106 <a href="#" id="yasr-metabox-below-editor-structured-data-tab" class="nav-tab nav-tab-active yasr-nav-tab"> 107 <?php esc_html_e('Structured Data', 'yet-another-stars-rating'); ?> 107 <span class="dashicons dashicons-screenoptions yasr-dash-before-text"></span> 108 <span> 109 <?php esc_html_e('Schema', 'yet-another-stars-rating'); ?> 110 </span> 108 111 </a> 109 112 <?php … … 133 136 ?> 134 137 <a href="#" id="yasr-metabox-below-editor-multiset-tab" class="nav-tab yasr-nav-tab"> 135 <?php esc_html_e('Multi Criteria', 'yet-another-stars-rating'); ?> 138 <span class="dashicons dashicons-chart-bar" style="transform: scaleX(-1);"></span> 139 <span> 140 <?php esc_html_e('Multi Criteria', 'yet-another-stars-rating'); ?> 141 </span> 136 142 </a> 137 143 <?php -
yet-another-stars-rating/trunk/readme.txt
r2929048 r2934680 5 5 Contributors: Dudo 6 6 Tested up to: 6.2 7 Stable tag: 3.4. 17 Stable tag: 3.4.2 8 8 License URI: http://www.gnu.org/licenses/gpl-2.0.html 9 9 … … 207 207 The full changelog can be found in the plugin's directory. Recent entries: 208 208 209 = 3.4.2 = 210 * Minor Changes 211 * Updated Freemius SDK 212 209 213 = 3.4.1 = 210 214 * FIXED: in the Dashboard, the "Recent Ratings" widget did not update the IP upon page change -
yet-another-stars-rating/trunk/vendor/freemius/wordpress-sdk/includes/class-freemius.php
r2929048 r2934680 1547 1547 fs_request_is_action( 'reset_pending_activation_mode' ) 1548 1548 ) && 1549 $this->get_unique_affix() === fs_request_get ( 'fs_unique_affix' )1549 $this->get_unique_affix() === fs_request_get_raw( 'fs_unique_affix' ) 1550 1550 ) { 1551 1551 add_action( 'admin_init', array( &$this, 'connect_again' ) ); … … 3760 3760 } 3761 3761 3762 $option_value = fs_request_get ( 'option_value' );3762 $option_value = fs_request_get_raw( 'option_value' ); 3763 3763 3764 3764 if ( ! empty( $option_value ) ) { … … 13675 13675 $this->check_ajax_referer( 'activate_license' ); 13676 13676 13677 $license_key = trim( fs_request_get ( 'license_key' ) );13677 $license_key = trim( fs_request_get_raw( 'license_key' ) ); 13678 13678 13679 13679 if ( empty( $license_key ) ) { … … 16688 16688 16689 16689 return $clone; 16690 }16691 16692 /**16693 * Tries to activate account based on POST params.16694 *16695 * @author Vova Feldman (@svovaf)16696 * @since 1.0.216697 *16698 * @deprecated Not in use, outdated.16699 */16700 function _activate_account() {16701 if ( $this->is_registered() ) {16702 // Already activated.16703 return;16704 }16705 16706 self::_clean_admin_content_section();16707 16708 if ( fs_request_is_action( 'activate' ) && fs_request_is_post() ) {16709 // check_admin_referer( 'activate_' . $this->_plugin->public_key );16710 16711 // Verify matching plugin details.16712 if ( $this->_plugin->id != fs_request_get( 'plugin_id' ) || $this->_slug != fs_request_get( 'plugin_slug' ) ) {16713 return;16714 }16715 16716 $user = new FS_User();16717 $user->id = fs_request_get( 'user_id' );16718 $user->public_key = fs_request_get( 'user_public_key' );16719 $user->secret_key = fs_request_get( 'user_secret_key' );16720 $user->email = fs_request_get( 'user_email' );16721 $user->first = fs_request_get( 'user_first' );16722 $user->last = fs_request_get( 'user_last' );16723 $user->is_verified = fs_request_get_bool( 'user_is_verified' );16724 16725 $site = new FS_Site();16726 $site->id = fs_request_get( 'install_id' );16727 $site->public_key = fs_request_get( 'install_public_key' );16728 $site->secret_key = fs_request_get( 'install_secret_key' );16729 $site->plan_id = fs_request_get( 'plan_id' );16730 16731 $plans = array();16732 $plans_data = json_decode( urldecode( fs_request_get( 'plans' ) ) );16733 foreach ( $plans_data as $p ) {16734 $plan = new FS_Plugin_Plan( $p );16735 if ( $site->plan_id == $plan->id ) {16736 $plan->title = fs_request_get( 'plan_title' );16737 $plan->name = fs_request_get( 'plan_name' );16738 }16739 16740 $plans[] = $plan;16741 }16742 16743 $this->_set_account( $user, $site, $plans );16744 16745 // Reload the page with the keys.16746 fs_redirect( $this->_get_admin_page_url() );16747 }16748 16690 } 16749 16691 … … 17762 17704 $this->install_many_pending_with_user( 17763 17705 fs_request_get( 'user_id' ), 17764 fs_request_get ( 'user_public_key' ),17765 fs_request_get ( 'user_secret_key' ),17706 fs_request_get_raw( 'user_public_key' ), 17707 fs_request_get_raw( 'user_secret_key' ), 17766 17708 fs_request_get_bool( 'is_marketing_allowed', null ), 17767 17709 fs_request_get_bool( 'is_extensions_tracking_allowed', null ), … … 17774 17716 $this->install_with_new_user( 17775 17717 fs_request_get( 'user_id' ), 17776 fs_request_get ( 'user_public_key' ),17777 fs_request_get ( 'user_secret_key' ),17718 fs_request_get_raw( 'user_public_key' ), 17719 fs_request_get_raw( 'user_secret_key' ), 17778 17720 fs_request_get_bool( 'is_marketing_allowed', null ), 17779 17721 fs_request_get_bool( 'is_extensions_tracking_allowed', null ), 17780 17722 fs_request_get_bool( 'is_diagnostic_tracking_allowed', null ), 17781 17723 fs_request_get( 'install_id' ), 17782 fs_request_get ( 'install_public_key' ),17783 fs_request_get ( 'install_secret_key' ),17724 fs_request_get_raw( 'install_public_key' ), 17725 fs_request_get_raw( 'install_secret_key' ), 17784 17726 true, 17785 17727 fs_request_get_bool( 'auto_install' ) … … 18120 18062 18121 18063 if ( fs_request_is_action( $this->get_unique_affix() . '_activate_existing' ) && fs_request_is_post() ) { 18122 // check_admin_referer( 'activate_existing_' . $this->_plugin->public_key);18064 check_admin_referer( $this->get_unique_affix() . '_activate_existing' ); 18123 18065 18124 18066 /** … … 18126 18068 * @since 1.1.9 Add license key if given. 18127 18069 */ 18128 $license_key = fs_request_get ( 'license_secret_key' );18070 $license_key = fs_request_get_raw( 'license_secret_key' ); 18129 18071 18130 18072 FS_Permission_Manager::instance( $this )->update_permissions_tracking_flag( array( … … 20861 20803 } 20862 20804 20863 $license_or_user_key = fs_request_get ( 'license_or_user_key' );20805 $license_or_user_key = fs_request_get_raw( 'license_or_user_key' ); 20864 20806 20865 20807 $transient_value = ( ! empty( $license_or_user_key ) ) ? … … 22699 22641 $user = new FS_User(); 22700 22642 $user->id = fs_request_get( 'user_id' ); 22701 $user->public_key = fs_request_get ( 'user_public_key' );22702 $user->secret_key = fs_request_get ( 'user_secret_key' );22643 $user->public_key = fs_request_get_raw( 'user_public_key' ); 22644 $user->secret_key = fs_request_get_raw( 'user_secret_key' ); 22703 22645 22704 22646 $prev_user = $this->_user; … … 23196 23138 switch ( $state ) { 23197 23139 case 'init': 23140 // The nonce is injected by the error handler in `_email_address_update_ajax_handler` function. 23141 check_admin_referer( 'change_owner' ); 23142 23198 23143 $candidate_email = fs_request_get( 'candidate_email' ); 23199 23144 $transfer_type = fs_request_get( 'transfer_type' ); … … 23208 23153 break; 23209 23154 case 'owner_confirmed': 23155 // We cannot (or need not to) check the nonce and referer here, because the link comes from the email sent by our API. 23210 23156 $candidate_email = fs_request_get( 'candidate_email', '' ); 23157 23158 if ( ! is_email($candidate_email ) ) { 23159 return; 23160 } 23211 23161 23212 23162 $this->_admin_notices->add( sprintf( $this->get_text_inline( 'Thanks for confirming the ownership change. An email was just sent to %s for final approval.', 'change-owner-request_owner-confirmed' ), '<b>' . $candidate_email . '</b>' ) ); 23213 23163 break; 23214 23164 case 'candidate_confirmed': 23165 // We do not need to validate the authenticity of this request here, because the `complete_change_owner` does that for us through API calls. 23215 23166 if ( $this->complete_change_owner() ) { 23216 23167 $this->_admin_notices->add_sticky( … … 23245 23196 23246 23197 #region Actions that might be called from external links (e.g. email) 23198 23199 /** 23200 * !!IMPORTANT!!: We cannot check for a valid nonce in this region, because the links could be coming from emails. 23201 */ 23247 23202 23248 23203 case 'cancel_trial': … … 23552 23507 'is_enriched' => true, 23553 23508 'trial' => fs_request_get_bool( 'trial' ), 23554 'sandbox' => fs_request_get ( 'sandbox' ),23555 's_ctx_type' => fs_request_get ( 's_ctx_type' ),23556 's_ctx_id' => fs_request_get ( 's_ctx_id' ),23557 's_ctx_ts' => fs_request_get ( 's_ctx_ts' ),23558 's_ctx_secure' => fs_request_get ( 's_ctx_secure' ),23509 'sandbox' => fs_request_get_raw( 'sandbox' ), 23510 's_ctx_type' => fs_request_get_raw( 's_ctx_type' ), 23511 's_ctx_id' => fs_request_get_raw( 's_ctx_id' ), 23512 's_ctx_ts' => fs_request_get_raw( 's_ctx_ts' ), 23513 's_ctx_secure' => fs_request_get_raw( 's_ctx_secure' ), 23559 23514 ); 23560 23515 … … 26175 26130 $this->check_ajax_referer( 'fetch_is_marketing_required_flag_value' ); 26176 26131 26177 $license_key = fs_request_get ( 'license_key' );26132 $license_key = fs_request_get_raw( 'license_key' ); 26178 26133 26179 26134 if ( empty($license_key) ) { -
yet-another-stars-rating/trunk/vendor/freemius/wordpress-sdk/includes/class-fs-plugin-updater.php
r2875904 r2934680 135 135 if ( 136 136 'plugin-information' !== fs_request_get( 'tab', false ) || 137 $this->_fs->get_slug() !== fs_request_get ( 'plugin', false )137 $this->_fs->get_slug() !== fs_request_get_raw( 'plugin', false ) 138 138 ) { 139 139 return; … … 154 154 if ( 155 155 'plugin-information' !== fs_request_get( 'tab', false ) || 156 $this->_fs->get_slug() !== fs_request_get ( 'plugin', false )156 $this->_fs->get_slug() !== fs_request_get_raw( 'plugin', false ) 157 157 ) { 158 158 return; -
yet-another-stars-rating/trunk/vendor/freemius/wordpress-sdk/includes/fs-core-functions.php
r2827555 r2934680 134 134 #-------------------------------------------------------------------------------- 135 135 136 if ( ! function_exists( 'fs_request_get_raw' ) ) { 137 /** 138 * A helper function to fetch GET/POST user input with an optional default value when the input is not set. 139 * This function does not do sanitization. It is up to the caller to properly sanitize and validate the input. 140 * 141 * The return of this function is always unslashed. 142 * 143 * @since 2.5.10 144 * 145 * @param string $key 146 * @param mixed $def 147 * @param string|bool $type When set to 'get', it will look for the value passed via query string. When 148 * set to 'post', it will look for the value passed via the POST request's body. Otherwise, 149 * it will check if the parameter was passed using any of the mentioned two methods. 150 * 151 * @return mixed 152 */ 153 function fs_request_get_raw( $key, $def = false, $type = false ) { 154 if ( is_string( $type ) ) { 155 $type = strtolower( $type ); 156 } 157 158 /** 159 * Note to WordPress.org reviewers: 160 * This is a helper function to fetch GET/POST user input with an optional default value when the input is not set. The actual sanitization is done in the scope of the function's usage. 161 */ 162 switch ( $type ) { 163 case 'post': 164 // phpcs:ignore WordPress.Security.NonceVerification.Missing 165 $value = isset( $_POST[ $key ] ) ? $_POST[ $key ] : $def; 166 break; 167 case 'get': 168 // phpcs:ignore WordPress.Security.NonceVerification.Recommended 169 $value = isset( $_GET[ $key ] ) ? $_GET[ $key ] : $def; 170 break; 171 default: 172 // phpcs:ignore WordPress.Security.NonceVerification.Recommended 173 $value = isset( $_REQUEST[ $key ] ) ? $_REQUEST[ $key ] : $def; 174 break; 175 } 176 177 // Don't unslash if the value itself is empty (empty string, null, empty array etc). 178 return empty( $value ) ? $value : wp_unslash( $value ); 179 } 180 } 181 182 if ( ! function_exists( 'fs_sanitize_input' ) ) { 183 /** 184 * Sanitizes input recursively (if an array). 185 * 186 * @param mixed $input 187 * 188 * @return mixed 189 * @uses sanitize_text_field() 190 * @since 2.5.10 191 */ 192 function fs_sanitize_input( $input ) { 193 if ( is_array( $input ) ) { 194 foreach ( $input as $key => $value ) { 195 $input[ $key ] = fs_sanitize_input( $value ); 196 } 197 } else { 198 // Allow empty values to pass through as-is, like `null`, `''`, `0`, `'0'` etc. 199 $input = empty( $input ) ? $input : sanitize_text_field( $input ); 200 } 201 202 return $input; 203 } 204 } 205 136 206 if ( ! function_exists( 'fs_request_get' ) ) { 137 207 /** 138 208 * A helper method to fetch GET/POST user input with an optional default value when the input is not set. 139 * @author Vova Feldman (@svovaf) 209 * 210 * @author Vova Feldman (@svovaf) 211 * 212 * @note The return value is always sanitized with sanitize_text_field(). 140 213 * 141 214 * @param string $key … … 145 218 * will check if the parameter was passed in any of the two. 146 219 * 220 * 147 221 * @return mixed 148 222 */ 149 223 function fs_request_get( $key, $def = false, $type = false ) { 150 if ( is_string( $type ) ) { 151 $type = strtolower( $type ); 152 } 153 154 /** 155 * Note to WordPress.org Reviewers: 156 * This is a helper method to fetch GET/POST user input with an optional default value when the input is not set. The actual sanitization is done in the scope of the function's usage. 157 */ 158 switch ( $type ) { 159 case 'post': 160 $value = isset( $_POST[ $key ] ) ? $_POST[ $key ] : $def; 161 break; 162 case 'get': 163 $value = isset( $_GET[ $key ] ) ? $_GET[ $key ] : $def; 164 break; 165 default: 166 $value = isset( $_REQUEST[ $key ] ) ? $_REQUEST[ $key ] : $def; 167 break; 168 } 169 170 return $value; 224 return fs_sanitize_input( fs_request_get_raw( $key, $def, $type ) ); 171 225 } 172 226 } … … 174 228 if ( ! function_exists( 'fs_request_has' ) ) { 175 229 function fs_request_has( $key ) { 230 // phpcs:ignore WordPress.Security.NonceVerification.Recommended 176 231 return isset( $_REQUEST[ $key ] ); 177 232 } … … 232 287 if ( ! function_exists( 'fs_get_action' ) ) { 233 288 function fs_get_action( $action_key = 'action' ) { 289 // phpcs:disable WordPress.Security.NonceVerification.Recommended 234 290 if ( ! empty( $_REQUEST[ $action_key ] ) && is_string( $_REQUEST[ $action_key ] ) ) { 235 291 return strtolower( $_REQUEST[ $action_key ] ); … … 245 301 246 302 return false; 303 // phpcs:enable WordPress.Security.NonceVerification.Recommended 247 304 } 248 305 } -
yet-another-stars-rating/trunk/vendor/freemius/wordpress-sdk/require.php
r2827555 r2934680 14 14 require_once dirname( __FILE__ ) . '/config.php'; 15 15 require_once WP_FS__DIR_INCLUDES . '/fs-core-functions.php'; 16 require_once WP_FS__DIR_INCLUDES . '/fs-html-escaping-functions.php'; 16 17 17 18 // Logger must be loaded before any other. -
yet-another-stars-rating/trunk/vendor/freemius/wordpress-sdk/start.php
r2929048 r2934680 16 16 * @var string 17 17 */ 18 $this_sdk_version = '2.5. 9';18 $this_sdk_version = '2.5.10'; 19 19 20 20 #region SDK Selection Logic -------------------------------------------------------------------- -
yet-another-stars-rating/trunk/vendor/freemius/wordpress-sdk/templates/account.php
r2929048 r2934680 257 257 <?php if ( ! $has_tabs && ! $fs->apply_filters( 'hide_account_tabs', false ) ) : ?> 258 258 <h2 class="nav-tab-wrapper"> 259 <a href="<?php echo $fs->get_account_url() ?>"259 <a href="<?php echo esc_url( $fs->get_account_url() ) ?>" 260 260 class="nav-tab nav-tab-active"><?php fs_esc_html_echo_inline( 'Account', 'account', $slug ) ?></a> 261 261 <?php if ( $fs->has_addons() ) : ?> 262 <a href="<?php echo $fs->_get_admin_page_url( 'addons') ?>"262 <a href="<?php echo esc_url( $fs->_get_admin_page_url( 'addons' ) ) ?>" 263 263 class="nav-tab"><?php echo esc_html( $addons_text ) ?></a> 264 264 <?php endif ?> 265 265 <?php if ( $show_upgrade ) : ?> 266 <a href="<?php echo $fs->get_upgrade_url() ?>" class="nav-tab"><?php echo esc_html( $upgrade_text ) ?></a>266 <a href="<?php echo esc_url( $fs->get_upgrade_url() ) ?>" class="nav-tab"><?php echo esc_html( $upgrade_text ) ?></a> 267 267 <?php if ( $fs->apply_filters( 'show_trial', true ) && ! $fs->is_trial_utilized() && $fs->has_trial_plan() ) : ?> 268 <a href="<?php echo $fs->get_trial_url() ?>" class="nav-tab"><?php fs_esc_html_echo_inline( 'Free Trial', 'free-trial', $slug ) ?></a>268 <a href="<?php echo esc_url( $fs->get_trial_url() ) ?>" class="nav-tab"><?php fs_esc_html_echo_inline( 'Free Trial', 'free-trial', $slug ) ?></a> 269 269 <?php endif ?> 270 270 <?php endif ?> … … 312 312 <?php if ( ! fs_is_network_admin() ) : ?> 313 313 <li> 314 <form action="<?php echo $fs->_get_admin_page_url( 'account') ?>" method="POST">314 <form action="<?php echo esc_url( $fs->_get_admin_page_url( 'account' ) ) ?>" method="POST"> 315 315 <input type="hidden" name="fs_action" value="deactivate_license"> 316 316 <?php wp_nonce_field( 'deactivate_license' ) ?> … … 326 326 ) : ?> 327 327 <li> 328 <form action="<?php echo $fs->_get_admin_page_url( 'account') ?>" method="POST">328 <form action="<?php echo esc_url( $fs->_get_admin_page_url( 'account' ) ) ?>" method="POST"> 329 329 <input type="hidden" name="fs_action" value="downgrade_account"> 330 330 <?php wp_nonce_field( 'downgrade_account' ) ?> … … 332 332 onclick="if ( confirm('<?php echo esc_attr( sprintf( 333 333 $downgrade_x_confirm_text, 334 ( $fs->is_only_premium() 334 ( $fs->is_only_premium() ? $cancelling_subscription_text : $downgrading_plan_text ), 335 335 $plan->title, 336 336 human_time_diff( time(), strtotime( $license->expiration ) ) … … 346 346 <?php if ( $is_plan_change_supported ) : ?> 347 347 <li> 348 <a href="<?php echo $fs->get_upgrade_url() ?>"><i348 <a href="<?php echo esc_url( $fs->get_upgrade_url() ) ?>"><i 349 349 class="dashicons dashicons-grid-view"></i> <?php echo esc_html( $change_plan_text ) ?></a> 350 350 </li> … … 353 353 <?php elseif ( $is_paid_trial ) : ?> 354 354 <li> 355 <form action="<?php echo $fs->_get_admin_page_url( 'account') ?>" method="POST">355 <form action="<?php echo esc_url( $fs->_get_admin_page_url( 'account' ) ) ?>" method="POST"> 356 356 <input type="hidden" name="fs_action" value="cancel_trial"> 357 357 <?php wp_nonce_field( 'cancel_trial' ) ?> … … 364 364 <?php endif ?> 365 365 <li> 366 <form action="<?php echo $fs->_get_admin_page_url( 'account') ?>" method="POST">367 <input type="hidden" name="fs_action" value="<?php echo $fs->get_unique_affix() ?>_sync_license">366 <form action="<?php echo esc_url( $fs->_get_admin_page_url( 'account' ) ) ?>" method="POST"> 367 <input type="hidden" name="fs_action" value="<?php echo esc_attr( $fs->get_unique_affix() ) ?>_sync_license"> 368 368 <?php wp_nonce_field( $fs->get_unique_affix() . '_sync_license' ) ?> 369 369 <a href="#" onclick="this.parentNode.submit(); return false;"><i … … 509 509 } 510 510 ?> 511 <tr class="fs-field-<?php echo $p['id']?><?php if ( $odd ) : ?> alternate<?php endif ?>">511 <tr class="fs-field-<?php echo esc_attr( $p['id'] ) ?><?php if ( $odd ) : ?> alternate<?php endif ?>"> 512 512 <td> 513 <nobr><?php echo $p['title']?><?php echo ( ! empty( $p['title'] ) ) ? ':' : '' ?></nobr>513 <nobr><?php echo esc_attr( $p['title'] ) ?><?php echo ( ! empty( $p['title'] ) ) ? ':' : '' ?></nobr> 514 514 </td> 515 515 <td<?php if ( 'plan' === $p['id'] || 'bundle_plan' === $p['id'] ) { echo ' colspan="2"'; }?>> … … 564 564 fs_require_template( 'account/partials/activate-license-button.php', $view_params ); ?> 565 565 <?php else : ?> 566 <form action="<?php echo $fs->_get_admin_page_url( 'account') ?>"566 <form action="<?php echo esc_url( $fs->_get_admin_page_url( 'account' ) ) ?>" 567 567 method="POST" class="button-group"> 568 568 <?php if ( $show_upgrade && $is_premium ) : ?> 569 <a class="button activate-license-trigger <?php echo $fs->get_unique_affix() ?>" href="#"><?php fs_esc_html_echo_inline( 'Activate License', 'activate-license', $slug ) ?></a>569 <a class="button activate-license-trigger <?php echo esc_attr( $fs->get_unique_affix() ) ?>" href="#"><?php fs_esc_html_echo_inline( 'Activate License', 'activate-license', $slug ) ?></a> 570 570 <?php endif ?> 571 571 <input type="submit" class="button" 572 572 value="<?php echo esc_attr( $sync_license_text ) ?>"> 573 573 <input type="hidden" name="fs_action" 574 value="<?php echo $fs->get_unique_affix() ?>_sync_license">574 value="<?php echo esc_attr( $fs->get_unique_affix() ) ?>_sync_license"> 575 575 <?php wp_nonce_field( $fs->get_unique_affix() . '_sync_license' ) ?> 576 576 <?php if ( $show_upgrade || $is_plan_change_supported ) : ?> 577 <a href="<?php echo $fs->get_upgrade_url() ?>"577 <a href="<?php echo esc_url( $fs->get_upgrade_url() ) ?>" 578 578 class="button<?php 579 579 echo $show_upgrade ? -
yet-another-stars-rating/trunk/vendor/freemius/wordpress-sdk/templates/account/billing.php
r2827555 r2934680 36 36 } ?>> 37 37 <tr> 38 <td><label><span><?php fs_esc_html_echo_inline( 'Business name', 'business-name', $slug ) ?>:</span> <input id="business_name" value="<?php echo $billing->business_name?>" placeholder="<?php fs_esc_attr_echo_inline( 'Business name', 'business-name', $slug ) ?>"></label></td>39 <td><label><span><?php fs_esc_html_echo_inline( 'Tax / VAT ID', 'tax-vat-id', $slug ) ?>:</span> <input id="tax_id" value="<?php echo $billing->tax_id?>" placeholder="<?php fs_esc_attr_echo_inline( 'Tax / VAT ID', 'tax-vat-id', $slug ) ?>"></label></td>38 <td><label><span><?php fs_esc_html_echo_inline( 'Business name', 'business-name', $slug ) ?>:</span> <input id="business_name" value="<?php echo esc_attr( $billing->business_name ) ?>" placeholder="<?php fs_esc_attr_echo_inline( 'Business name', 'business-name', $slug ) ?>"></label></td> 39 <td><label><span><?php fs_esc_html_echo_inline( 'Tax / VAT ID', 'tax-vat-id', $slug ) ?>:</span> <input id="tax_id" value="<?php echo esc_attr( $billing->tax_id ) ?>" placeholder="<?php fs_esc_attr_echo_inline( 'Tax / VAT ID', 'tax-vat-id', $slug ) ?>"></label></td> 40 40 </tr> 41 41 <tr> 42 <td><label><span><?php printf( fs_esc_html_inline( 'Address Line %d', 'address-line-n', $slug ), 1 ) ?>:</span> <input id="address_street" value="<?php echo $billing->address_street?>" placeholder="<?php printf( fs_esc_attr_inline( 'Address Line %d', 'address-line-n', $slug ), 1 ) ?>"></label></td>43 <td><label><span><?php printf( fs_esc_html_inline( 'Address Line %d', 'address-line-n', $slug ), 2 ) ?>:</span> <input id="address_apt" value="<?php echo $billing->address_apt?>" placeholder="<?php printf( fs_esc_attr_inline( 'Address Line %d', 'address-line-n', $slug ), 2 ) ?>"></label></td>42 <td><label><span><?php printf( fs_esc_html_inline( 'Address Line %d', 'address-line-n', $slug ), 1 ) ?>:</span> <input id="address_street" value="<?php echo esc_attr( $billing->address_street ) ?>" placeholder="<?php printf( fs_esc_attr_inline( 'Address Line %d', 'address-line-n', $slug ), 1 ) ?>"></label></td> 43 <td><label><span><?php printf( fs_esc_html_inline( 'Address Line %d', 'address-line-n', $slug ), 2 ) ?>:</span> <input id="address_apt" value="<?php echo esc_attr( $billing->address_apt ) ?>" placeholder="<?php printf( fs_esc_attr_inline( 'Address Line %d', 'address-line-n', $slug ), 2 ) ?>"></label></td> 44 44 </tr> 45 45 <tr> 46 <td><label><span><?php fs_esc_html_echo_inline( 'City', 'city', $slug ) ?> / <?php fs_esc_html_echo_inline( 'Town', 'town', $slug ) ?>:</span> <input id="address_city" value="<?php echo $billing->address_city?>" placeholder="<?php fs_esc_attr_echo_inline( 'City', 'city', $slug ) ?> / <?php fs_esc_attr_echo_inline( 'Town', 'town', $slug ) ?>"></label></td>47 <td><label><span><?php fs_esc_html_echo_inline( 'ZIP / Postal Code', 'zip-postal-code', $slug ) ?>:</span> <input id="address_zip" value="<?php echo $billing->address_zip?>" placeholder="<?php fs_esc_attr_echo_inline( 'ZIP / Postal Code', 'zip-postal-code', $slug ) ?>"></label></td>46 <td><label><span><?php fs_esc_html_echo_inline( 'City', 'city', $slug ) ?> / <?php fs_esc_html_echo_inline( 'Town', 'town', $slug ) ?>:</span> <input id="address_city" value="<?php echo esc_attr( $billing->address_city ) ?>" placeholder="<?php fs_esc_attr_echo_inline( 'City', 'city', $slug ) ?> / <?php fs_esc_attr_echo_inline( 'Town', 'town', $slug ) ?>"></label></td> 47 <td><label><span><?php fs_esc_html_echo_inline( 'ZIP / Postal Code', 'zip-postal-code', $slug ) ?>:</span> <input id="address_zip" value="<?php echo esc_attr( $billing->address_zip ) ?>" placeholder="<?php fs_esc_attr_echo_inline( 'ZIP / Postal Code', 'zip-postal-code', $slug ) ?>"></label></td> 48 48 </tr> 49 49 <tr> … … 306 306 <?php foreach ( $countries as $code => $country ) : ?> 307 307 <option 308 value="<?php echo $code ?>" <?php selected( $billing->address_country_code, $code ) ?>><?php echo $country?></option>308 value="<?php echo esc_attr( $code ) ?>" <?php selected( $billing->address_country_code, $code ) ?>><?php echo esc_html( $country ) ?></option> 309 309 <?php endforeach ?> 310 310 </select></label></td> 311 311 <td><label><span><?php fs_esc_html_echo_inline( 'State', 'state', $slug ) ?> / <?php fs_esc_html_echo_inline( 'Province', 'province', $slug ) ?>:</span> 312 <input id="address_state" value="<?php echo $billing->address_state?>" placeholder="<?php fs_esc_html_echo_inline( 'State', 'state', $slug ) ?> / <?php fs_esc_html_echo_inline( 'Province', 'province', $slug ) ?>"></label></td>312 <input id="address_state" value="<?php echo esc_attr( $billing->address_state ) ?>" placeholder="<?php fs_esc_html_echo_inline( 'State', 'state', $slug ) ?> / <?php fs_esc_html_echo_inline( 'Province', 'province', $slug ) ?>"></label></td> 313 313 </tr> 314 314 <tr> … … 381 381 method : 'POST', 382 382 data : { 383 action : '<?php echo $fs->get_ajax_action( 'update_billing' ) ?>',384 security : '<?php echo $fs->get_ajax_security( 'update_billing' ) ?>',385 module_id: '<?php echo $fs->get_id() ?>',383 action : <?php echo wp_json_encode( $fs->get_ajax_action( 'update_billing' ) ) ?>, 384 security : <?php echo wp_json_encode( $fs->get_ajax_security( 'update_billing' ) ) ?>, 385 module_id: <?php echo wp_json_encode( $fs->get_id() ) ?>, 386 386 billing : billing 387 387 }, -
yet-another-stars-rating/trunk/vendor/freemius/wordpress-sdk/templates/admin-notice.php
r2827555 r2934680 10 10 exit; 11 11 } 12 13 /** 14 * @var array $VARS 15 */ 12 16 13 17 $dismiss_text = fs_text_x_inline( 'Dismiss', 'as close a window', 'dismiss' ); … … 36 40 } 37 41 } 42 43 $attributes = array(); 44 if ( ! empty( $VARS['id'] ) ) { 45 $attributes['data-id'] = $VARS['id']; 46 } 47 if ( ! empty( $VARS['manager_id'] ) ) { 48 $attributes['data-manager-id'] = $VARS['manager_id']; 49 } 50 if ( ! empty( $slug ) ) { 51 $attributes['data-slug'] = $slug; 52 } 53 if ( ! empty( $type ) ) { 54 $attributes['data-type'] = $type; 55 } 56 57 $classes = array( 'fs-notice' ); 58 switch ( $VARS['type'] ) { 59 case 'error': 60 $classes[] = 'error'; 61 $classes[] = 'form-invalid'; 62 break; 63 case 'promotion': 64 $classes[] = 'updated'; 65 $classes[] = 'promotion'; 66 break; 67 case 'warn': 68 $classes[] = 'notice'; 69 $classes[] = 'notice-warning'; 70 break; 71 case 'update': 72 case 'success': 73 default: 74 $classes[] = 'updated'; 75 $classes[] = 'success'; 76 break; 77 } 78 if ( ! empty( $VARS['sticky'] ) ) { 79 $classes[] = 'fs-sticky'; 80 } 81 if ( ! empty( $VARS['plugin'] ) ) { 82 $classes[] = 'fs-has-title'; 83 } 84 if ( ! empty( $slug ) ) { 85 $classes[] = "fs-slug-{$slug}"; 86 } 87 if ( ! empty( $type ) ) { 88 $classes[] = "fs-type-{$type}"; 89 } 38 90 ?> 39 <div<?php if ( ! empty( $VARS['id'] ) ) : ?> data-id="<?php echo $VARS['id'] ?>"<?php endif ?><?php if ( ! empty( $VARS['manager_id'] ) ) : ?> data-manager-id="<?php echo $VARS['manager_id'] ?>"<?php endif ?><?php if ( ! empty( $slug ) ) : ?> data-slug="<?php echo $slug ?>"<?php endif ?><?php if ( ! empty( $type ) ) : ?> data-type="<?php echo $type ?>"<?php endif ?> 40 class="<?php 41 switch ( $VARS['type'] ) { 42 case 'error': 43 echo 'error form-invalid'; 44 break; 45 case 'promotion': 46 echo 'updated promotion'; 47 break; 48 case 'warn': 49 echo 'notice notice-warning'; 50 break; 51 case 'update': 52 // echo 'update-nag update'; 53 // break; 54 case 'success': 55 default: 56 echo 'updated success'; 57 break; 58 } 59 ?> fs-notice<?php if ( ! empty( $VARS['sticky'] ) ) { 60 echo ' fs-sticky'; 61 } ?><?php if ( ! empty( $VARS['plugin'] ) ) { 62 echo ' fs-has-title'; 63 } ?><?php if ( ! empty( $slug ) ) { 64 echo " fs-slug-{$slug}"; 65 } ?><?php if ( ! empty( $type ) ) { 66 echo " fs-type-{$type}"; 67 } ?>"><?php if ( ! empty( $VARS['plugin'] ) ) : ?> 68 <label class="fs-plugin-title"><?php echo $VARS['plugin'] ?></label> 91 <div class="<?php echo fs_html_get_classname( $classes ); ?>" <?php echo fs_html_get_attributes( $attributes ); ?>> 92 <?php if ( ! empty( $VARS['plugin'] ) ) : ?> 93 <label class="fs-plugin-title"> 94 <?php echo esc_html( $VARS['plugin'] ); ?> 95 </label> 69 96 <?php endif ?> 97 70 98 <?php if ( ! empty( $VARS['sticky'] ) && ( ! isset( $VARS['dismissible'] ) || false !== $VARS['dismissible'] ) ) : ?> 71 <div class="fs-close"><i class="dashicons dashicons-no" 72 title="<?php echo esc_attr( $dismiss_text ) ?>"></i> <span><?php echo esc_html( $dismiss_text ) ?></span> 99 <div class="fs-close"> 100 <i class="dashicons dashicons-no" title="<?php echo esc_attr( $dismiss_text ) ?>"></i> 101 <span><?php echo esc_html( $dismiss_text ); ?></span> 73 102 </div> 74 103 <?php endif ?> 104 75 105 <div class="fs-notice-body"> 76 <?php if ( ! empty( $VARS['title'] ) ) : ?><b><?php echo $VARS['title'] ?></b> <?php endif ?> 77 <?php echo $VARS['message'] ?> 106 <?php if ( ! empty( $VARS['title'] ) ) : ?> 107 <strong><?php echo fs_html_get_sanitized_html( $VARS['title'] ); ?></strong> 108 <?php endif ?> 109 110 <?php echo fs_html_get_sanitized_html( $VARS['message'] ); ?> 78 111 </div> 79 112 </div> -
yet-another-stars-rating/trunk/vendor/freemius/wordpress-sdk/templates/connect.php
r2919074 r2934680 366 366 <form action="" method="POST"> 367 367 <input type="hidden" name="fs_action" 368 value="<?php echo $fs->get_unique_affix() ?>_activate_existing">369 <?php wp_nonce_field( 'activate_existing_' . $fs->get_public_key()) ?>368 value="<?php echo esc_attr( $fs->get_unique_affix() . '_activate_existing' ) ?>"> 369 <?php wp_nonce_field( $fs->get_unique_affix() . '_activate_existing' ) ?> 370 370 <input type="hidden" name="is_extensions_tracking_allowed" value="1"> 371 371 <input type="hidden" name="is_diagnostic_tracking_allowed" value="1"> … … 377 377 <?php unset( $optin_params['sites']); ?> 378 378 <?php foreach ( $optin_params as $name => $value ) : ?> 379 <input type="hidden" name="<?php echo $name?>" value="<?php echo esc_attr( $value ) ?>">379 <input type="hidden" name="<?php echo esc_attr( $name ) ?>" value="<?php echo esc_attr( $value ) ?>"> 380 380 <?php endforeach ?> 381 381 <input type="hidden" name="is_extensions_tracking_allowed" value="1"> … … 388 388 <?php endif ?> 389 389 <?php if ( $require_license_key ) : ?> 390 <a id="license_issues_link" href="<?php echo $fs->apply_filters( 'known_license_issues_url', 'https://freemius.com/help/documentation/wordpress-sdk/license-activation-issues/' ) ?>" target="_blank"><?php fs_esc_html_echo_inline( 'License issues?', 'license-issues', $slug ) ?></a> 390 <a id="license_issues_link" 391 href="<?php echo esc_url( $fs->apply_filters( 'known_license_issues_url', 'https://freemius.com/help/documentation/wordpress-sdk/license-activation-issues/' ) ) ?>" 392 target="_blank"><?php fs_esc_html_echo_inline( 'License issues?', 'license-issues', $slug ) ?></a> 391 393 <?php endif ?> 392 394 … … 413 415 <a class="fs-trigger wp-core-ui" href="#" tabindex="1" style="color: inherit;"><?php echo sprintf( 414 416 fs_esc_html_inline( 'For delivery of security & feature updates, and license management, %s needs to', 'license-sync-disclaimer', $slug ) . '<b class="fs-arrow"></b>', 415 sprintf( '<nobr class="button-link" style="color: inherit;">%s</nobr>', $fs->get_plugin_title() )417 sprintf( '<nobr class="button-link" style="color: inherit;">%s</nobr>', esc_html( $fs->get_plugin_title() ) ) 416 418 ) ?></a> 417 419 <?php else : ?> 418 420 <a class="fs-trigger wp-core-ui" href="#" tabindex="1" style="color: inherit;"><?php printf( 419 421 fs_esc_html_inline( 'This will allow %s to', 'this-will-allow-x', $slug ) . '<b class="fs-arrow"></b>', 420 sprintf( '<nobr class="button-link" style="color: inherit;">%s</nobr>', $fs->get_plugin_title() )422 sprintf( '<nobr class="button-link" style="color: inherit;">%s</nobr>', esc_html( $fs->get_plugin_title() ) ) 421 423 ) ?></a> 422 424 <?php endif ?> … … 443 445 </div> 444 446 <div class="fs-terms"> 445 <a class="fs-tooltip-trigger<?php echo is_rtl() ? ' rtl' : '' ?>" href="<?php echo esc_url( $freemius_activation_terms_url ) ?>" target="_blank" rel="noopener" tabindex="1">Powered by Freemius<?php if ( $require_license_key ) : ?> <span class="fs-tooltip" style="width: 170px"><?php echo $fs->get_text_inline( 'Freemius is our licensing and software updates engine', 'permissions-extensions_desc') ?></span><?php endif ?></a>447 <a class="fs-tooltip-trigger<?php echo is_rtl() ? ' rtl' : '' ?>" href="<?php echo esc_url( $freemius_activation_terms_url ) ?>" target="_blank" rel="noopener" tabindex="1">Powered by Freemius<?php if ( $require_license_key ) : ?> <span class="fs-tooltip" style="width: 170px"><?php echo esc_html( $fs->get_text_inline( 'Freemius is our licensing and software updates engine', 'permissions-extensions_desc' ) ) ?></span><?php endif ?></a> 446 448 - 447 449 <a href="https://freemius.com/privacy/" target="_blank" rel="noopener" -
yet-another-stars-rating/trunk/vendor/freemius/wordpress-sdk/templates/forms/optout.php
r2875904 r2934680 119 119 $form_id = "fs_opt_out_{$fs->get_id()}"; 120 120 ?> 121 <div id="<?php echo $form_id?>"121 <div id="<?php echo esc_attr( $form_id ) ?>" 122 122 class="fs-modal fs-modal-opt-out" 123 data-plugin-id="<?php echo $fs->get_id() ?>"124 data-action="<?php echo $fs->get_ajax_action( $ajax_action) ?>"125 data-security="<?php echo $fs->get_ajax_security( $ajax_action) ?>"123 data-plugin-id="<?php echo esc_attr( $fs->get_id() ) ?>" 124 data-action="<?php echo esc_attr( $fs->get_ajax_action( $ajax_action ) ) ?>" 125 data-security="<?php echo esc_attr( $fs->get_ajax_security( $ajax_action ) ) ?>" 126 126 style="display: none"> 127 127 <div class="fs-modal-dialog"> … … 146 146 <?php foreach ( $permission_groups as $i => $permission_group ) : ?> 147 147 <?php if ( ! empty( $permission_group[ 'prompt' ] ) ) : ?> 148 <div class="fs-<?php echo $permission_group[ 'id' ] ?>-opt-out fs-opt-out-disclaimer" data-group-id="<?php echo $permission_group[ 'id' ]?>" style="display: none">148 <div class="fs-<?php echo esc_attr( $permission_group[ 'id' ] ) ?>-opt-out fs-opt-out-disclaimer" data-group-id="<?php echo esc_attr( $permission_group[ 'id' ] ) ?>" style="display: none"> 149 149 <div class="fs-modal-body"> 150 150 <div class="fs-modal-panel active"> 151 151 <div class="notice notice-error inline opt-out-error-message"><p></p></div> 152 152 <?php foreach ( $permission_group[ 'prompt' ] as $p ) : ?> 153 <?php // phpcs:ignore WordPress.Security.EscapeOutput.OutputNotEscaped ?> 153 154 <p><?php echo $p ?></p> 154 155 <?php endforeach ?> … … 171 172 $( document ).ready(function() { 172 173 FS.OptOut( 173 '<?php echo $fs->get_id() ?>',174 '<?php echo $slug ?>',175 '<?php echo $fs->get_module_type() ?>',174 <?php echo wp_json_encode( $fs->get_id() ) ?>, 175 <?php echo wp_json_encode( $slug ) ?>, 176 <?php echo wp_json_encode( $fs->get_module_type() ) ?>, 176 177 <?php echo $fs->is_registered( true ) ? 'true' : 'false' ?>, 177 178 <?php echo $fs->is_tracking_allowed() ? 'true' : 'false' ?>, 178 '<?php echo esc_js( $reconnect_url ) ?>'179 <?php echo wp_json_encode( $reconnect_url ) ?> 179 180 ); 180 181 }); -
yet-another-stars-rating/trunk/vendor/freemius/wordpress-sdk/templates/partials/network-activation.php
r2827555 r2934680 62 62 <?php foreach ( $sites as $site ) : ?> 63 63 <tr<?php if ( ! empty( $site['license_id'] ) ) { 64 echo ' data-license-id="' . $site['license_id']. '"';64 echo ' data-license-id="' . esc_attr( $site['license_id'] ) . '"'; 65 65 } ?>> 66 66 <?php if ( $require_license_key ) : ?> 67 67 <td><input type="checkbox" value="true" /></td> 68 68 <?php endif ?> 69 <td class="blog-id"><span><?php echo $site['blog_id']?></span>.</td>69 <td class="blog-id"><span><?php echo esc_html( $site['blog_id'] ) ?></span>.</td> 70 70 <td width="600"><span><?php 71 71 $url = str_replace( 'http://', '', str_replace( 'https://', '', $site['url'] ) ); 72 echo $url;72 echo esc_html( $url ); 73 73 ?></span> 74 74 <?php foreach ($site_props as $prop) : ?> 75 <input class="<?php echo $prop?>" type="hidden" value="<?php echo esc_attr($site[$prop]) ?>" />75 <input class="<?php echo esc_attr( $prop ) ?>" type="hidden" value="<?php echo esc_attr($site[$prop]) ?>" /> 76 76 <?php endforeach ?> 77 77 </td> -
yet-another-stars-rating/trunk/yet-another-stars-rating.php
r2929048 r2934680 5 5 * Plugin URI: http://wordpress.org/plugins/yet-another-stars-rating/ 6 6 * Description: Boost the way people interact with your site with an easy WordPress stars rating system! With schema.org rich snippets YASR will improve your SEO 7 * Version: 3.4. 17 * Version: 3.4.2 8 8 * Requires at least: 4.7 9 9 * Requires PHP: 5.4 … … 79 79 // Signal that SDK was initiated. 80 80 do_action( 'yasr_fs_loaded' ); 81 define( 'YASR_VERSION_NUM', '3.4. 1' );81 define( 'YASR_VERSION_NUM', '3.4.2' ); 82 82 //Plugin absolute path 83 83 //e.g. /var/www/html/plugin_development/wp-content/plugins/yet-another-stars-rating
Note: See TracChangeset
for help on using the changeset viewer.