WordPress.org
Get WordPress

Plugin Directory

Changeset 3047500


Ignore:
Timestamp:
03/07/2024 10:10:39 PM (12 months ago)
Author:
CodeBard
Message:

2.2.1

  • Sanitized various inputs against xss attacks
Location:
patron-button-and-widgets-by-codebard/trunk
Files:
4 edited

Legend:

Unmodified
Added
Removed

  • patron-button-and-widgets-by-codebard/trunk/index.php

    r3000943 r3047500  
    44    Plugin URI: https://wordpress.org/plugins/patron-button-and-widgets-by-codebard/
    55    Description: Patreon Patron Buttons, Widgets and Patreon Functions
    6     Version: 2.2.0
     6    Version: 2.2.1
    77    Author: CodeBard
    8     Author URI: http://codebard.com
     8    Author URI: https://codebard.com
    99    Text Domain: cb_p6
    1010    Domain Path: /lang
     
    5353        require_once($this->internal['plugin_path'].'plugin/includes/hardcoded_vars.php');
    5454       
    55         if(isset($_REQUEST[$this->internal['prefix'].'action']))
    56         {
    57             $this->internal['requested_action'] = $_REQUEST[$this->internal['prefix'].'action'];
     55        if(isset($_REQUEST[$this->internal['prefix'].'action'] ))
     56        {
     57            $this->internal['requested_action'] = filter_var( $_REQUEST[$this->internal['prefix'].'action'], FILTER_SANITIZE_STRING);
    5858        }
    5959        else
     
    686686        if(isset($_REQUEST[$this->internal['prefix'].'tab']))
    687687        {
    688             $tab=$_REQUEST[$this->internal['prefix'].'tab'];
     688            $tab = filter_var( $_REQUEST[$this->internal['prefix'].'tab'], FILTER_SANITIZE_STRING ) ;
    689689        }
    690690
     
    806806        if(isset($_REQUEST[$this->internal['prefix'] . 'tab']))
    807807        {
    808             $tab = sanitize_text_field($_REQUEST[$this->internal['prefix'].'tab']);
     808            $tab = filter_var( $_REQUEST[$this->internal['prefix'].'tab'], FILTER_SANITIZE_STRING );
    809809        }
    810810        else
     
    855855        if(isset($_REQUEST[$this->internal['prefix'] . 'tab']))
    856856        {
    857             $tab = sanitize_text_field( $_REQUEST[$this->internal['prefix'] . 'tab'] );
     857            $tab = filter_var( $_REQUEST[$this->internal['prefix'] . 'tab'], FILTER_SANITIZE_STRING );
    858858           
    859859        }
     
    884884        if(isset($_REQUEST['tab']))
    885885        {
    886             $tab=$_REQUEST['tab'];
     886            $tab = filter_var( $_REQUEST['tab'], FILTER_SANITIZE_STRING );
    887887           
    888888        }

  • patron-button-and-widgets-by-codebard/trunk/plugin/includes/default_internal_vars.php

    r3000943 r3047500  
    1111        'plugin_id' => 'patron-button-and-widgets-by-codebard',
    1212        'prefix' => 'cb_p6_',
    13         'version' => '2.2.0',
     13        'version' => '2.2.1',
    1414        'plugin_name' => 'CodeBard\'s Patron Button and Widgets for Patreon',
    1515       

  • patron-button-and-widgets-by-codebard/trunk/plugin/plugin.php

    r3000943 r3047500  
    209209        $current_screen=get_current_screen();
    210210
    211         if($current_screen->base=='toplevel_page_settings_'.$this->internal['id'] OR ( isset( $_REQUEST['page']) AND $_REQUEST['page']== 'cb_p6_install_pw' ) )
     211        if($current_screen->base=='toplevel_page_settings_'.$this->internal['id'] OR ( isset( $_REQUEST['page']) AND $_REQUEST['page'] == 'cb_p6_install_pw' ) )
    212212        {
    213213            wp_enqueue_style( $this->internal['id'].'-css-admin', $this->internal['plugin_url'].'plugin/includes/css/admin.css' );
     
    13421342           
    13431343            if ( isset( $_REQUEST['cb_p6_admin_message_title'] ) ) {
    1344                 $heading = $this->lang[ $_REQUEST['cb_p6_admin_message_title'] ];
     1344                $heading = $this->lang[ filter_var( $_REQUEST['cb_p6_admin_message_title'], FILTER_SANITIZE_STRING) ];
    13451345            }
    13461346            if ( isset( $_REQUEST['cb_p6_admin_message_content'] ) ) {
    1347                 $content = $this->lang[ $_REQUEST['cb_p6_admin_message_content'] ];
     1347                $content = $this->lang[ filter_var( $_REQUEST['cb_p6_admin_message_content'], FILTER_SANITIZE_STRING) ];
    13481348            }
    13491349           

  • patron-button-and-widgets-by-codebard/trunk/readme.txt

    r3000943 r3047500  
    77License: GPL
    88Requires at least: 4.0
    9 Tested up to: 6.4.1
    10 Stable Tag: 2.2.0
     9Tested up to: 6.4.3
     10Stable Tag: 2.2.1
    1111
    1212Patron Button and Plugin allows you to add Patreon Buttons to your content and sidebars, along with offering other Patreon functions. Upgradable to Patron Plugin Pro with patron-only posts and powerful features.
     
    6161== Upgrade Notice ==
    6262
     63= 2.2.1 =
     64
     65* Sanitized various inputs against xss attacks
     66
    6367= 2.2.0 =
    6468
     
    203207== Changelog ==
    204208
     209= 2.2.1 =
     210
     211* Sanitized various inputs against xss attacks
     212
    205213= 2.2.0 =
    206214
Note: See TracChangeset for help on using the changeset viewer.