WordPress.org
Get WordPress

Plugin Directory

Changeset 2999517


Ignore:
Timestamp:
11/21/2023 11:00:25 AM (2 years ago)
Author:
jorisvanmontfort
Message:

1.2.6

Location:
jvm-rich-text-icons/trunk
Files:
4 edited

Legend:

Unmodified
Added
Removed

  • jvm-rich-text-icons/trunk/plugin.php

    r2999516 r2999517  
    33 * Plugin Name: JVM rich text icons
    44 * Description: Add Font Awesome icons, or icons from a custom icon set to the Gutenberg editor.
    5  * Version: 1.2.5
     5 * Version: 1.2.6
    66 * Author: Joris van Montfort
    77 * Author URI: https://jorisvm.nl
     
    1111 * @category Gutenberg
    1212 * @author Joris van Montfort
    13  * @version 1.2.5
     13 * @version 1.2.6
    1414 * @package JVM rich text icons
    1515 */

  • jvm-rich-text-icons/trunk/readme.txt

    r2999516 r2999517  
    8888== Changelog ==
    8989
    90 = 1.2.5 =
    91 Security update. Fixed a vulnerability issue in plugin settings delete icon option.
    92 
    93 = 1.2.4 =
    94 Security update. Fixed a vulnerability issue in the uploader and plugin settings.
     90= 1.2.6 =
     91Security update. Fixed a vulnerabilities in plugin settings upload and delete icon options.
    9592
    9693= 1.2.3 =

  • jvm-rich-text-icons/trunk/views/icon-list.php

    r2735941 r2999517  
    55<?php
    66    $css_class = JVM_Richtext_icons::get_class_prefix();
     7    $nonce = wp_create_nonce( 'jvm-rich-text-icons-delete-icon' );
    78    foreach ($files as $file) {
    89        $pi = pathinfo($file);
     
    1011        $icon_class = sanitize_title($pi['filename']);
    1112
    12         echo '<a id="icon-dialog-link-'.$icon_class.'" href="#icon-dialog" class="icon-dialog-link icon" data-icon-class-full="'.$css_class . ' ' . $icon_class .'" data-icon-class="'. $icon_class .'" data-file="'.esc_js(basename($file)).'">';
     13        echo '<a id="icon-dialog-link-'.$icon_class.'" href="#icon-dialog" class="icon-dialog-link icon" data-icon-class-full="'.$css_class . ' ' . $icon_class .'" data-icon-class="'. $icon_class .'" data-file="'.esc_js(basename($file)).'" data-nonce="'.$nonce.'">';
    1314        echo '<i class="' . $css_class . ' ' . $icon_class . '" aria-hidden="true"> </i>';
    1415        echo '</a>'."\n";

  • jvm-rich-text-icons/trunk/views/uploader.php

    r2735941 r2999517  
    88
    99$form_class = 'media-upload-form type-form validate';
     10$nonce = wp_create_nonce( 'jvm-rich-text-icons-upload-icon' );
    1011
    1112if ( get_user_setting( 'uploader' ) || isset( $_GET['browser-uploader'] ) ) {
     
    3334    </div>
    3435</div>
    35 <form id="jvm-rich-text-icons_custom_icon_uploader" action="<?php echo admin_url( 'admin-ajax.php' );?>?action=jvm-rich-text-icons-upload-icon" class="dropzone" style="display: none;">
     36<form id="jvm-rich-text-icons_custom_icon_uploader" action="<?php echo admin_url( 'admin-ajax.php' );?>?action=jvm-rich-text-icons-upload-icon&nonce=<?php echo $nonce;?>" class="dropzone" style="display: none;">
    3637    <div class="media-frame wp-core-ui mode-grid">
    3738        <div class="uploader-inline">
Note: See TracChangeset for help on using the changeset viewer.