WordPress.org
Get WordPress

Plugin Directory

Changeset 3049153


Ignore:
Timestamp:
03/11/2024 01:09:54 PM (2 years ago)
Author:
tagembed
Message:

Fix Issue.

Location:
tagembed-widget
Files:
28 edited

Legend:

Unmodified
Added
Removed

  • tagembed-widget/tags/4.7/assets/js/account/tagembed.account.script.js

    r3040127 r3049153  
    6565        formData = new FormData(formData);
    6666        formData.append('action', 'data');
     67        formData.append('__tagembed__ajax_call_nones', __tagembed__ajax_call_nones);
    6768        formData.append('__tagembed__ajax_action', '__tagembed__register');
    6869        fetch(__tagembed__ajax_url, {
     
    126127        formData = new FormData(formData);
    127128        formData.append('action', 'data');
     129        formData.append('__tagembed__ajax_call_nones', __tagembed__ajax_call_nones);
    128130        formData.append('__tagembed__ajax_action', '__tagembed__login');
    129131        fetch(__tagembed__ajax_url, {

  • tagembed-widget/tags/4.7/assets/js/customize/tagembed.customize.script.js

    r3040127 r3049153  
    2626    formData.append('action', 'data');
    2727    formData.append('widgetId', widgetId);
     28    formData.append('__tagembed__ajax_call_nones', __tagembed__ajax_call_nones);
    2829    formData.append('__tagembed__ajax_action', '__tagembed__get_customization_option');
    2930    __tagembed__open_loader();
     
    285286    formData.append('action', 'data');
    286287    formData.append('widgetId', widgetId);
     288    formData.append('__tagembed__ajax_call_nones', __tagembed__ajax_call_nones);
    287289    formData.append('__tagembed__ajax_action', '__tagembed__update_' + __tagembed__optionType + '_customization_option');
    288290    __tagembed__open_loader();

  • tagembed-widget/tags/4.7/assets/js/editor/editor.js

    r3040127 r3049153  
    6363                    }
    6464                    function __showPreview(event) {
    65                         if (props.attributes.__widgetId !== '' && props.attributes.__widgetId !== null && typeof (props.attributes.__widgetId) != "undefined") {
     65                        let regex = /^\d+(px|%|)$/;
     66                        let extraParameter = (props.attributes.__width !== '' && !regex.test(props.attributes.__width)) || (props.attributes.__height !== '' && !regex.test(props.attributes.__height));
     67                        if (!extraParameter && props.attributes.__widgetId !== '' && props.attributes.__widgetId !== null && typeof (props.attributes.__widgetId) != "undefined" && !isNaN(props.attributes.__widgetId)) {
    6668                            var parent = jQuery(event.target).closest(".is-selected");
    6769                            parent.children(".__tagembed__tagembed-preview").show();

  • tagembed-widget/tags/4.7/assets/js/feed/tagembed.feed.create.script.js

    r3040127 r3049153  
    5151            formData.append('filterId', __tagembed__feed_data.filterId);
    5252            formData.append('filterName', __tagembed__feed_data.filterName);
     53            formData.append('__tagembed__ajax_call_nones', __tagembed__ajax_call_nones);
    5354            formData.append('__tagembed__ajax_action', '__tagembed__create_feed');
    5455            fetch(__tagembed__ajax_url, {

  • tagembed-widget/tags/4.7/assets/js/feed/tagembed.feed.script.js

    r3040127 r3049153  
    196196        formData.append('action', 'data');
    197197        formData.append('connectedAccountsId', __tagembed__connected_accountsId);
     198        formData.append('__tagembed__ajax_call_nones', __tagembed__ajax_call_nones);
    198199        formData.append('__tagembed__ajax_action', '__tagembed__get_facebook_page_albums');
    199200        fetch(__tagembed__ajax_url, {
     
    276277            formData.append('action', 'data');
    277278            formData.append('facebookPageData', __tagembed__facebook_search_page);
     279            formData.append('__tagembed__ajax_call_nones', __tagembed__ajax_call_nones);
    278280            formData.append('__tagembed__ajax_action', '__tagembed__search_facebook_page');
    279281            fetch(__tagembed__ajax_url, {method: 'POST', headers: {'x-requested-with': 'XMLHttpRequest'}, body: formData,
     
    354356        formData.append('action', 'data');
    355357        formData.append('googleLocationName', __tagembed__google_location);
     358        formData.append('__tagembed__ajax_call_nones', __tagembed__ajax_call_nones);
    356359        formData.append('__tagembed__ajax_action', '__tagembed__search_google_location');
    357360        fetch(__tagembed__ajax_url, {
     
    516519        formData.append('action', 'data');
    517520        formData.append('youtubeChannelData', __tagembed__youtube_channel_data);
     521        formData.append('__tagembed__ajax_call_nones', __tagembed__ajax_call_nones);
    518522        formData.append('__tagembed__ajax_action', '__tagembed__search_youtube_channel');
    519523        fetch(__tagembed__ajax_url, {
     
    581585    let formData = new FormData();
    582586    formData.append('action', 'data');
     587    formData.append('__tagembed__ajax_call_nones', __tagembed__ajax_call_nones);
    583588    formData.append('__tagembed__ajax_action', '__tagembed__get_youtube_playlist');
    584589    formData.append('youtubeId', youtubeId);
     
    802807        formData.append('connectedAccountsId', __tagembed__get_connected_accountsId);
    803808        formData.append('__tagembed__ajax_action', '__tagembed__get_slack_channel_list');
     809        formData.append('__tagembed__ajax_call_nones', __tagembed__ajax_call_nones);
    804810        fetch(__tagembed__ajax_url, {method: 'POST', headers: {'x-requested-with': 'XMLHttpRequest'}, body: formData,
    805811        }).then(response => {
     
    955961        formData.append('action', 'data');
    956962        formData.append('vkCommunitiesName', __tagembed__vk_communities);
     963        formData.append('__tagembed__ajax_call_nones', __tagembed__ajax_call_nones);
    957964        formData.append('__tagembed__ajax_action', '__tagembed__search_vk_communities');
    958965        fetch(__tagembed__ajax_url, {
     
    11321139    formData.append('status', __tagembed__feed_status);
    11331140    formData.append('action', 'data');
     1141    formData.append('__tagembed__ajax_call_nones', __tagembed__ajax_call_nones);
    11341142    formData.append('__tagembed__ajax_action', '__tagembed__update_feed_status');
    11351143    __tagembed__open_loader();
     
    11801188        formData.append('widgetId', __tagembed__widget_id);
    11811189        formData.append('action', 'data');
     1190        formData.append('__tagembed__ajax_call_nones', __tagembed__ajax_call_nones);
    11821191        formData.append('__tagembed__ajax_action', '__tagembed__delete_feed');
    11831192        __tagembed__open_loader();
     
    12241233    let formData = new FormData();
    12251234    formData.append('action', 'data');
     1235    formData.append('__tagembed__ajax_call_nones', __tagembed__ajax_call_nones);
    12261236    formData.append('__tagembed__ajax_action', '__tagembed__get_feed');
    12271237    formData.append('widgetId', __tagembed__widgetId);

  • tagembed-widget/tags/4.7/assets/js/lazyload.js

    r3040127 r3049153  
    1 /*!
    2  * Lazy Load - JavaScript plugin for lazy loading images
    3  *
    4  * Copyright (c) 2007-2019 Mika Tuupola
    5  *
    6  * Licensed under the MIT license:
    7  *   http://www.opensource.org/licenses/mit-license.php
    8  *
    9  * Project home:
    10  *   https://appelsiini.net/projects/lazyload
    11  *
    12  * Version: 2.0.0-rc.2
    13  *
    14  */
    15 
    161(function (root, factory) {
    172    if (typeof exports === "object") {
     
    227        root.LazyLoad = factory(root);
    238    }
    24 }) (typeof global !== "undefined" ? global : this.window || this.global, function (root) {
    25 
     9})(typeof global !== "undefined" ? global : this.window || this.global, function (root) {
    2610    "use strict";
    27 
    28     if (typeof define === "function" && define.amd){
     11    if (typeof define === "function" && define.amd) {
    2912        root = window;
    3013    }
    31 
    3214    const defaults = {
    3315        src: "data-src",
     
    3820        threshold: 0
    3921    };
    40 
    41     /**
    42     * Merge two or more objects. Returns a new object.
    43     * @private
    44     * @param {Boolean}  deep     If true, do a deep (or recursive) merge [optional]
    45     * @param {Object}   objects  The objects to merge together
    46     * @returns {Object}          Merged values of defaults and options
    47     */
    48     const extend = function ()  {
    49 
     22    const extend = function () {
    5023        let extended = {};
    5124        let deep = false;
    5225        let i = 0;
    5326        let length = arguments.length;
    54 
    55         /* Check if a deep merge */
    5627        if (Object.prototype.toString.call(arguments[0]) === "[object Boolean]") {
    5728            deep = arguments[0];
    5829            i++;
    5930        }
    60 
    61         /* Merge the object into the extended object */
    6231        let merge = function (obj) {
    6332            for (let prop in obj) {
     
    7241            }
    7342        };
    74 
    75         /* Loop through each object and conduct a merge */
    7643        for (; i < length; i++) {
    7744            let obj = arguments[i];
    7845            merge(obj);
    7946        }
    80 
    8147        return extended;
    8248    };
    83 
    8449    function LazyLoad(images, options) {
    8550        this.settings = extend(defaults, options || {});
     
    8853        this.init();
    8954    }
    90 
    9155    LazyLoad.prototype = {
    92         init: function() {
    93 
    94             /* Without observers load everything and bail out early. */
     56        init: function () {
    9557            if (!root.IntersectionObserver) {
    9658                this.loadImages();
    9759                return;
    9860            }
    99 
    10061            let self = this;
    10162            let observerConfig = {
     
    10465                threshold: [this.settings.threshold]
    10566            };
    106 
    107             this.observer = new IntersectionObserver(function(entries) {
     67            this.observer = new IntersectionObserver(function (entries) {
    10868                Array.prototype.forEach.call(entries, function (entry) {
    10969                    if (entry.isIntersecting) {
     
    12484                });
    12585            }, observerConfig);
    126 
    12786            Array.prototype.forEach.call(this.images, function (image) {
    12887                self.observer.observe(image);
    12988            });
    13089        },
    131 
    13290        loadAndDestroy: function () {
    133             if (!this.settings) { return; }
     91            if (!this.settings) {
     92                return;
     93            }
    13494            this.loadImages();
    13595            this.destroy();
    13696        },
    137 
    13897        loadImages: function () {
    139             if (!this.settings) { return; }
    140 
     98            if (!this.settings) {
     99                return;
     100            }
    141101            let self = this;
    142102            Array.prototype.forEach.call(this.images, function (image) {
     
    155115            });
    156116        },
    157 
    158117        destroy: function () {
    159             if (!this.settings) { return; }
     118            if (!this.settings) {
     119                return;
     120            }
    160121            this.observer.disconnect();
    161122            this.settings = null;
    162123        }
    163124    };
    164 
    165     root.lazyload = function(images, options) {
     125    root.lazyload = function (images, options) {
    166126        return new LazyLoad(images, options);
    167127    };
    168 
    169128    if (root.jQuery) {
    170129        const $ = root.jQuery;
     
    176135        };
    177136    }
    178 
    179137    return LazyLoad;
    180138});

  • tagembed-widget/tags/4.7/assets/js/network/tagembed.networks.script.js

    r3040127 r3049153  
    99    let formData = new FormData();
    1010    formData.append('action', 'data');
     11    formData.append('__tagembed__ajax_call_nones', __tagembed__ajax_call_nones);
    1112    formData.append('__tagembed__ajax_action', '__tagembed__source_networks');
    1213    __tagembed__open_loader();
     
    5556        formData.append('networkId', networkId);
    5657        formData.append('action', 'data');
     58        formData.append('__tagembed__ajax_call_nones', __tagembed__ajax_call_nones);
    5759        formData.append('__tagembed__ajax_action', '__tagembed__get_network_filter');
    5860        fetch(__tagembed__ajax_url, {

  • tagembed-widget/tags/4.7/assets/js/tagembed.common.js

    r3040127 r3049153  
    3131    let formData = new FormData();
    3232    formData.append('action', 'data');
     33    formData.append('__tagembed__ajax_call_nones', __tagembed__ajax_call_nones);
    3334    formData.append('__tagembed__ajax_action', '__tagembed__plugin_version');
    3435    fetch(__tagembed__ajax_url, {
     
    146147            let formData = new FormData();
    147148            formData.append('action', 'data');
     149            formData.append('__tagembed__ajax_call_nones', __tagembed__ajax_call_nones);
    148150            formData.append('__tagembed__ajax_action', '__tagembed__logout');
    149151            __tagembed__open_loader();
     
    183185    formData.append('action', 'data');
    184186    formData.append('menueId', __tagembed__menu_id);
     187    formData.append('__tagembed__ajax_call_nones', __tagembed__ajax_call_nones);
    185188    formData.append('__tagembed__ajax_action', '__tagembed__menue');
    186189    fetch(__tagembed__ajax_url, {
     
    214217    formData.append('networkId', __tagembed__network_id);
    215218    formData.append('action', 'data');
     219    formData.append('__tagembed__ajax_call_nones', __tagembed__ajax_call_nones);
    216220    formData.append('__tagembed__ajax_action', '__tagembed__get_already_exist_auth');
    217221    fetch(__tagembed__ajax_url, {
     
    258262    let formData = new FormData();
    259263    formData.append('action', 'data');
     264    formData.append('__tagembed__ajax_call_nones', __tagembed__ajax_call_nones);
    260265    formData.append('__tagembed__ajax_action', '__tagembed__manage_active_widget');
    261266    formData.append('widgetId', __tagembed__widgetId);
     
    307312                let __tagembed__toast = new TagembedToast;
    308313                formData.append('action', 'data');
     314                formData.append('__tagembed__ajax_call_nones', __tagembed__ajax_call_nones);
    309315                formData.append('__tagembed__ajax_action', '__tagembed__create_widget');
    310316                fetch(__tagembed__ajax_url, {
     
    375381        let formData = new FormData();
    376382        formData.append('action', 'data');
     383        formData.append('__tagembed__ajax_call_nones', __tagembed__ajax_call_nones);
    377384        formData.append('__tagembed__ajax_action', '__tagembed__add_or_update_account');
    378385        formData.append('type', __tagembed__type);

  • tagembed-widget/tags/4.7/assets/js/tagembed.deactive.js

    r3040127 r3049153  
    9191    formData.append('action', 'data');
    9292    formData.append('__tagembed__ajax_action', '__tagembed__plugin_deactivate');
     93    formData.append('__tagembed__ajax_call_nones', __tagembed__ajax_call_security_nones_object.__tagembed__ajax_call_security_nones);
    9394    formData.append('betterPlugin', __tagembed__better_plugin_input);
    9495    formData.append('otherReason', __tagembed__other_reason_input);

  • tagembed-widget/tags/4.7/assets/js/theme/tagembed.theme.script.js

    r3040127 r3049153  
    1212    formData.append('action', 'data');
    1313    formData.append('widgetId', widgetId);
     14    formData.append('__tagembed__ajax_call_nones', __tagembed__ajax_call_nones);
    1415    formData.append('__tagembed__ajax_action', '__tagembed__get_themes');
    1516    __tagembed__open_loader();
     
    6970    formData.append('widgetId', __tagembed__widget_id);
    7071    formData.append('themeId', __tagembed__theme_id);
     72    formData.append('__tagembed__ajax_call_nones', __tagembed__ajax_call_nones);
    7173    formData.append('__tagembed__ajax_action', '__tagembed__edit_themes');
    7274    __tagembed__open_loader();

  • tagembed-widget/tags/4.7/assets/js/upgrade/tagembed.upgrade.script.js

    r3040127 r3049153  
    6161    let formData = new FormData();
    6262    formData.append('action', 'data');
     63    formData.append('__tagembed__ajax_call_nones', __tagembed__ajax_call_nones);
    6364    formData.append('__tagembed__ajax_action', '__tagembed__get_account_details');
    6465    __tagembed__open_loader();
     
    207208        let formData = new FormData();
    208209        formData.append('action', 'data');
     210        formData.append('__tagembed__ajax_call_nones', __tagembed__ajax_call_nones);
    209211        formData.append('__tagembed__ajax_action', '__tagembed__make_payment');
    210212        formData.append('planId', planId);
     
    241243        formData.append('planId', planId);
    242244        formData.append('action', 'data');
     245        formData.append('__tagembed__ajax_call_nones', __tagembed__ajax_call_nones);
    243246        formData.append('__tagembed__ajax_action', '__tagembed__cancel_subscription');
    244247        __tagembed__open_loader();

  • tagembed-widget/tags/4.7/assets/js/widget/tagembed.widget.script.js

    r3040127 r3049153  
    1818            formData.append('action', 'data');
    1919            formData.append('widgetId', __tagembed__widget_id);
     20            formData.append('__tagembed__ajax_call_nones', __tagembed__ajax_call_nones);
    2021            formData.append('__tagembed__ajax_action', '__tagembed__edit_widget');
    2122            fetch(__tagembed__ajax_url, {
     
    7374    formData.append('status', __tagembed__widget_status);
    7475    formData.append('action', 'data');
     76    formData.append('__tagembed__ajax_call_nones', __tagembed__ajax_call_nones);
    7577    formData.append('__tagembed__ajax_action', '__tagembed__update_widget_status');
    7678    __tagembed__open_loader();
     
    119121        formData.append('widgetId', __tagembed__widget_id);
    120122        formData.append('action', 'data');
     123        formData.append('__tagembed__ajax_call_nones', __tagembed__ajax_call_nones);
    121124        formData.append('__tagembed__ajax_action', '__tagembed__delete_widget');
    122125        __tagembed__open_loader();

  • tagembed-widget/tags/4.7/tagembed.php

    r3040127 r3049153  
    4040        wp_enqueue_script('__tagembed__tagemedLoaderJs', TAGEMBED_PLUGIN_URL . '/assets/js/loader.js', ['jquery'], TAGEMBED_PLUGIN_VERSION, true);
    4141        wp_enqueue_script('__tagembed__deactive-js', TAGEMBED_PLUGIN_URL . '/assets/js/tagembed.deactive.js', ['jquery'], TAGEMBED_PLUGIN_VERSION, true);
     42        $__tagembed__ajax_call_security_nones = wp_create_nonce('__tagembed__ajax_call_security_nones');
     43        wp_localize_script('__tagembed__deactive-js', '__tagembed__ajax_call_security_nones_object', ['__tagembed__ajax_call_security_nones' => $__tagembed__ajax_call_security_nones]);
    4244        wp_enqueue_script('__tagembed__tagembedDialogFormJs', TAGEMBED_PLUGIN_URL . '/assets/js/dialog.form.js', ["jquery"], TAGEMBED_PLUGIN_VERSION, true);
    4345        /* --Start-- Gutenberge */
     
    7880function __tagembed__view() {
    7981    if (!empty(__tagembed__user()->isLogin) && __tagembed__user()->isLogin == 'yes'):
    80         $__tagembed__menus = __tagembed__menus(['__tagembed__menu_condation' => 'STATUS = 1']);
     82        /* Remove This */ /* $__tagembed__menus = __tagembed__menus(['__tagembed__menu_condation' => 'STATUS = 1']); */
     83        $__tagembed__menus = __tagembed__menus(['__tagembed__menu_condation' => 1]);
    8184        if (empty($__tagembed__menus)):
    8285            include_once TAGEMBED_PLUGIN_DIR_PATH . "views/widget/widgetView.php";
     
    9699    $data = __tagembed__sanitizeRequestData($_REQUEST);
    97100    $data = (object) $data;
     101    /* --Start-- Manage Ajax call Request Security */
     102    $__tagembed__ajaxCallSecurityNones = isset($data->__tagembed__ajax_call_nones) ? sanitize_text_field($data->__tagembed__ajax_call_nones) : '';
     103    if (!wp_verify_nonce($__tagembed__ajaxCallSecurityNones, "__tagembed__ajax_call_security_nones"))
     104        return __tagembed__exitWithDanger();
     105    /* --End-- Manage Ajax call Request Security */
     106
    98107    /* --Start__ Sanetize All Input */
    99108    foreach ($data as $key => $value):
     
    162171            return __tagembed__exitWithDanger();
    163172            break;
     173
    164174        case "__tagembed__menue":
    165175            if (empty($data->menueId))
     
    169179            return __tagembed__exitWithDanger();
    170180            break;
     181
    171182        case "__tagembed__create_widget":
    172183            if (empty($__tagembed__user_details) || empty($data->name))
     
    10721083    $user = __tagembed__user($response->emailId);
    10731084    if (empty($user->email)):
    1074         if ($wpdb->insert('wp_tagembed_user', ["userId" => $response->userId, "name" => $response->name, "email" => $response->emailId, "accessToken" => $response->accessToken, "isLogin" => "yes"])):
     1085        if ($wpdb->query($wpdb->prepare("INSERT INTO wp_tagembed_user (userId, name, email, accessToken, isLogin) VALUES (%d, %s, %s, %s, %s)", $response->userId, $response->name, $response->emailId, $response->accessToken, 'yes'))):
    10751086            $return = true;
    10761087        endif;
    10771088    else:
    1078         if ($wpdb->update('wp_tagembed_user', ["userId" => $response->userId, "name" => $response->name, "email" => $response->emailId, "accessToken" => $response->accessToken, "isLogin" => "yes",], ['email' => $response->emailId])):
     1089        if ($wpdb->query($wpdb->prepare("UPDATE wp_tagembed_user SET userId = %d, name = %s, email = %s, accessToken = %s, isLogin = %s WHERE email = %s", $response->userId, $response->name, $response->emailId, $response->accessToken, 'yes', $response->emailId))):
    10791090            $return = true;
    10801091        endif;
     
    10921103    global $wpdb;
    10931104    if ($email == null && $other != null):
    1094         $wpdb->update('wp_tagembed_active_options', ["isLogin" => $other], ['id' => 1]);
     1105        $wpdb->query($wpdb->prepare("UPDATE wp_tagembed_active_options SET isLogin = %s WHERE id = %d", $other, 1));
    10951106    else:
    1096         $__tagembed__activeOptions = $wpdb->get_results("SELECT email FROM wp_tagembed_active_options WHERE(id = 1)");
     1107        $__tagembed__activeOptions = $wpdb->get_results($wpdb->prepare("SELECT email FROM wp_tagembed_active_options WHERE id = %d", 1));
    10971108        if (empty($__tagembed__activeOptions[0]->email)):
    1098             $wpdb->insert('wp_tagembed_active_options', ["email" => $email, "isLogin" => $other]);
     1109            $wpdb->query($wpdb->prepare("INSERT INTO wp_tagembed_active_options (email, isLogin) VALUES (%s, %s)", $email, $other));
    10991110        else:
    1100             $wpdb->update('wp_tagembed_active_options', ["email" => $email, "isLogin" => $other], ['id' => 1]);
     1111            $wpdb->query($wpdb->prepare("UPDATE wp_tagembed_active_options SET email = %s, isLogin = %s WHERE id = %d", $email, $other, 1));
    11011112        endif;
    11021113    endif;
     
    11061117function __tagembed__getActiveOptions() {
    11071118    global $wpdb;
    1108     $__tagembed__activeOptions = $wpdb->get_results("SELECT email,isLogin FROM wp_tagembed_active_options  WHERE(id = 1)");
     1119    $results = $wpdb->get_results($wpdb->prepare("SELECT email, isLogin FROM wp_tagembed_active_options WHERE id = %d", 1));
    11091120    return $__tagembed__activeOptions;
    11101121}
     
    11131124function tagembed_logout() {
    11141125    global $wpdb;
    1115     if ($wpdb->update('wp_tagembed_user', ["isLogin" => "no"], ["isLogin" => "yes"])):
     1126    if ($wpdb->query($wpdb->prepare("UPDATE wp_tagembed_user SET isLogin = %s  WHERE isLogin = %s", "no", "yes"))):
    11161127        __tagembed__manageActiveOptions(null, "no"); /* Manage Active Options */
    11171128        return true;
     
    11261137        return $wpdb->get_results("SELECT * FROM wp_tagembed_menus");
    11271138    if (array_key_exists('__tagembed__menu_condation', $__tagembed__menu_condatation))
    1128         return $wpdb->get_results("SELECT * FROM wp_tagembed_menus WHERE " . $__tagembed__menu_condatation['__tagembed__menu_condation']);
     1139        return $wpdb->get_results($wpdb->prepare("SELECT * FROM wp_tagembed_menus WHERE status = %s", $__tagembed__menu_condatation['__tagembed__menu_condation']));
    11291140    if (array_key_exists('__tagembed__menu_id', $__tagembed__menu_condatation)):
    1130         if ($wpdb->update('wp_tagembed_menus', ["status" => 0], ["status" => 1]) && $wpdb->update('wp_tagembed_menus', ["status" => 1], ["id" => $__tagembed__menu_condatation['__tagembed__menu_id']]))
     1141        if ($wpdb->query($wpdb->prepare("UPDATE wp_tagembed_menus SET status = %d WHERE status = %d", 0, 1)) && $wpdb->query($wpdb->prepare("UPDATE wp_tagembed_menus SET status = %d WHERE id = %d", 1, $__tagembed__menu_condatation['__tagembed__menu_id'])))
    11311142            return true;
    11321143        return false;
     
    11391150    $__tagembed__userResponse = "";
    11401151    if (empty($email)):
    1141         $__tagembed__userResponse = $wpdb->get_results("SELECT * FROM wp_tagembed_user WHERE(isLogin = 'yes')");
     1152        $__tagembed__userResponse = $wpdb->get_results($wpdb->prepare("SELECT * FROM wp_tagembed_user WHERE isLogin = %s", 'yes'));
    11421153    else:
    1143         $__tagembed__userResponse = $wpdb->get_results("SELECT * FROM wp_tagembed_user WHERE(email = '" . $email . "')");
     1154        $__tagembed__userResponse = $wpdb->get_results($wpdb->prepare("SELECT * FROM wp_tagembed_user WHERE email = %s", $email));
    11441155    endif;
    11451156    if (!empty($__tagembed__userResponse))
     
    11891200        return true;
    11901201    if (empty($activeWidgetUserId)):
    1191         $wpdb->insert('wp_tagembed_active_widget', ["widgetId" => $widgetId]);
     1202        $wpdb->query($wpdb->prepare("INSERT INTO wp_tagembed_active_widget (widgetId) VALUES (%s)", $widgetId));
    11921203        return true;
    11931204    else:
    1194         $wpdb->update('wp_tagembed_active_widget', ["widgetId" => $widgetId], ['id' => 1]);
     1205        $wpdb->query($wpdb->prepare("UPDATE wp_tagembed_active_widget SET widgetId = %s  WHERE id = %d", $widgetId, 1));
    11951206        return true;
    11961207    endif;
     
    12171228        return true;
    12181229    if (empty($activeWidgetUserId)):
    1219         $wpdb->insert('wp_tagembed_active_widget_user', ["userId" => $userId]);
     1230        $wpdb->query($wpdb->prepare("INSERT INTO wp_tagembed_active_widget_user (userId) VALUES (%d)", $userId));
    12201231        return true;
    12211232    else:
    1222         $wpdb->update('wp_tagembed_active_widget_user', ["userId" => $userId], ['id' => 1]);
     1233        $wpdb->query($wpdb->prepare("UPDATE wp_tagembed_active_widget_user SET userId = %d WHERE id = %d", $userId, 1));
    12231234        return true;
    12241235    endif;
     
    12421253        $__tagembed__menus = [['name' => 'Widget', 'status' => 0, 'path' => 'widget/widgetView'], ['name' => 'Feed', 'status' => 1, 'path' => 'feed/addView'], ['name' => 'Choose Theme', 'status' => 0, 'path' => 'theme/themeView'], ['name' => 'Filter', 'status' => 0, 'path' => 'filter/filterView'], ['name' => 'Customize', 'status' => 0, 'path' => 'customize/customizeView'], ['name' => 'Display', 'status' => 0, 'path' => 'display/displayView'], ['name' => 'Social Accounts', 'status' => 0, 'path' => 'socialAccount/socialAccountView'], ['name' => 'Support', 'status' => 0, 'path' => 'support/supportView'], ['name' => 'Upgrade', 'status' => 0, 'path' => 'upgrade/upgradeView'], ['name' => 'Analytics', 'status' => 0, 'path' => 'analytics/analyticsView']];
    12431254        foreach ($__tagembed__menus as $__tagembed__menu):
    1244             $wpdb->insert('wp_tagembed_menus', ["name" => $__tagembed__menu['name'], "status" => $__tagembed__menu['status'], "path" => $__tagembed__menu['path']]);
     1255            $wpdb->query($wpdb->prepare("INSERT INTO wp_tagembed_menus (name, status, path) VALUES (%s, %s, %s)", $__tagembed__menu['name'], $__tagembed__menu['status'], $__tagembed__menu['path']));
    12451256        endforeach;
    12461257    endif;
     
    12891300add_filter("plugin_action_links_" . plugin_basename(__FILE__), '__tagembed__settingsLink');
    12901301/* --End--Manage Setting Link */
    1291 
    12921302/* --Start--Manage Database On Plugin Update Time */
    12931303function __tagembed__manageDatabaseOnPluginUpdateTime() {
     
    12981308add_action('upgrader_process_complete', '__tagembed__manageDatabaseOnPluginUpdateTime', 10, 2);
    12991309/* --End--Manage Database On Plugin Update Time */
    1300 
    13011310/* --Sart--Manage Chat Hide And Show */
    13021311function __tagembed__chat() {
     
    13931402/* --End-- Drop Database Table */
    13941403/* --Start-- Create Short Code */
     1404function __tagembed__PluginShortCode($attr) {
     1405    extract(shortcode_atts(['width' => '', 'height' => '',], $attr, 'tagembed'));
     1406    $widgetId = (isset($attr[1]) ? $attr[1] : '');
     1407    if (!empty($widgetId) && is_numeric($widgetId) && (($width === '' || preg_match('/^\d+(px|%|)$/', $width)) && ($height === '' || preg_match('/^\d+(px|%|)$/', $height)))):
     1408        $output = '<span class=""></span>';
     1409        $output .= '<div style="width:' . $width . '; height:' . $height . ';overflow: auto;" class="tagembed-container">';
     1410        $output .= '<div style="width:100%; height:100%;" class="tagembed-socialwall tagembed-analystic" data-wall-id="' . $widgetId . '"></div>';
     1411        $output .= '</div>';
     1412    else:
     1413        $output = '<span style="display: block;text-align: center;border: 1px solid #eee;padding: 5px 15px;background-color: #fafafa;">Invalid Parameters Provided In The Tagembed Shortcode.</span>';
     1414    endif;
     1415    return $output;
     1416}
    13951417add_shortcode("tagembed", "__tagembed__PluginShortCode");
    1396 function __tagembed__PluginShortCode($attr) {
    1397     $widgetId = (isset($attr[1]) ? $attr[1] : '');
    1398     $width = (isset($attr['width']) ? $attr['width'] : '');
    1399     $height = (isset($attr['height']) ? $attr['height'] : '');
    1400     $code = '<span class=""></span>';
    1401     $code .= '<div style="width:' . $width . '; height:' . $height . ';overflow: auto;" class="tagembed-container">';
    1402     $code .= '<div style="width:100%; height:100%;" class="tagembed-socialwall tagembed-analystic" data-wall-id="' . $widgetId . '"></div>';
    1403     $code .= '</div>';
    1404     return $code;
    1405 }
    14061418/* --End-- Create Short Code */
    14071419

  • tagembed-widget/tags/4.7/views/includes/headView.php

    r3040127 r3049153  
    11<script type="text/javascript">
     2    var __tagembed__ajax_call_nones = "<?php echo wp_create_nonce("__tagembed__ajax_call_security_nones"); ?>";
    23    var __tagembed__ajax_url = "<?php echo esc_html(admin_url('admin-ajax.php')); ?>";
    34    var __tagembed__plugin_server_url = "<?php echo esc_html(TAGEMBED_PLUGIN_SERVER_URL); ?>";
     
    4041            let formData = new FormData();
    4142            formData.append('action', 'data');
     43            formData.append('__tagembed__ajax_call_nones', __tagembed__ajax_call_nones);
    4244            formData.append('__tagembed__ajax_action', '__tagembed__check_user_token');
    4345            fetch(__tagembed__ajax_url, {

  • tagembed-widget/tags/4.8/assets/js/editor/editor.js

    r3047140 r3049153  
    6363                    }
    6464                    function __showPreview(event) {
    65                         if (props.attributes.__widgetId !== '' && props.attributes.__widgetId !== null && typeof (props.attributes.__widgetId) != "undefined") {
     65                        let regex = /^\d+(px|%|)$/;
     66                        let extraParameter = (props.attributes.__width !== '' && !regex.test(props.attributes.__width)) || (props.attributes.__height !== '' && !regex.test(props.attributes.__height));
     67                        if (!extraParameter && props.attributes.__widgetId !== '' && props.attributes.__widgetId !== null && typeof (props.attributes.__widgetId) != "undefined" && !isNaN(props.attributes.__widgetId)) {
    6668                            var parent = jQuery(event.target).closest(".is-selected");
    6769                            parent.children(".__tagembed__tagembed-preview").show();

  • tagembed-widget/tags/4.8/assets/js/lazyload.js

    r3047140 r3049153  
    2121    };
    2222    const extend = function () {
    23 
    2423        let extended = {};
    2524        let deep = false;

  • tagembed-widget/tags/4.8/assets/js/tagembed.deactive.js

    r3047140 r3049153  
    9191    formData.append('action', 'data');
    9292    formData.append('__tagembed__ajax_action', '__tagembed__plugin_deactivate');
     93    formData.append('__tagembed__ajax_call_nones', __tagembed__ajax_call_security_nones_object.__tagembed__ajax_call_security_nones);
    9394    formData.append('betterPlugin', __tagembed__better_plugin_input);
    9495    formData.append('otherReason', __tagembed__other_reason_input);

  • tagembed-widget/tags/4.8/assets/js/widget/tagembed.widget.script.js

    r3047140 r3049153  
    1818            formData.append('action', 'data');
    1919            formData.append('widgetId', __tagembed__widget_id);
     20            formData.append('__tagembed__ajax_call_nones', __tagembed__ajax_call_nones);
    2021            formData.append('__tagembed__ajax_action', '__tagembed__edit_widget');
    2122            fetch(__tagembed__ajax_url, {
     
    7374    formData.append('status', __tagembed__widget_status);
    7475    formData.append('action', 'data');
     76    formData.append('__tagembed__ajax_call_nones', __tagembed__ajax_call_nones);
    7577    formData.append('__tagembed__ajax_action', '__tagembed__update_widget_status');
    7678    __tagembed__open_loader();
     
    119121        formData.append('widgetId', __tagembed__widget_id);
    120122        formData.append('action', 'data');
     123        formData.append('__tagembed__ajax_call_nones', __tagembed__ajax_call_nones);
    121124        formData.append('__tagembed__ajax_action', '__tagembed__delete_widget');
    122125        __tagembed__open_loader();

  • tagembed-widget/tags/4.8/readme.txt

    r3047140 r3049153  
    259259== Changelog ==
    260260= 4.8 =
    261   * Fix Security Nounce
     261  * Fix Security Nounce - for Instagram Feed, Facebook Feed, Twitter Feed, Google Reviews, Rss Feed, YouTube Gallery, and more.
    262262
    263263= 4.7 =
     
    504504== Upgrade Notice ==
    505505= 4.8 =
    506   * Fix Security Nounce
     506  * Fix Security Nounce - for Instagram Feed, Facebook Feed, Twitter Feed, Google Reviews, Rss Feed, YouTube Gallery, and more.
    507507
    508508= 4.7 =

  • tagembed-widget/tags/4.8/tagembed.php

    r3047140 r3049153  
    4040        wp_enqueue_script('__tagembed__tagemedLoaderJs', TAGEMBED_PLUGIN_URL . '/assets/js/loader.js', ['jquery'], TAGEMBED_PLUGIN_VERSION, true);
    4141        wp_enqueue_script('__tagembed__deactive-js', TAGEMBED_PLUGIN_URL . '/assets/js/tagembed.deactive.js', ['jquery'], TAGEMBED_PLUGIN_VERSION, true);
     42        $__tagembed__ajax_call_security_nones = wp_create_nonce('__tagembed__ajax_call_security_nones');
     43        wp_localize_script('__tagembed__deactive-js', '__tagembed__ajax_call_security_nones_object', ['__tagembed__ajax_call_security_nones' => $__tagembed__ajax_call_security_nones]);
    4244        wp_enqueue_script('__tagembed__tagembedDialogFormJs', TAGEMBED_PLUGIN_URL . '/assets/js/dialog.form.js', ["jquery"], TAGEMBED_PLUGIN_VERSION, true);
    4345        /* --Start-- Gutenberge */
     
    7880function __tagembed__view() {
    7981    if (!empty(__tagembed__user()->isLogin) && __tagembed__user()->isLogin == 'yes'):
    80         $__tagembed__menus = __tagembed__menus(['__tagembed__menu_condation' => 'STATUS = 1']);
     82        /* Remove This */ /* $__tagembed__menus = __tagembed__menus(['__tagembed__menu_condation' => 'STATUS = 1']); */
     83        $__tagembed__menus = __tagembed__menus(['__tagembed__menu_condation' => 1]);
    8184        if (empty($__tagembed__menus)):
    8285            include_once TAGEMBED_PLUGIN_DIR_PATH . "views/widget/widgetView.php";
     
    9699    $data = __tagembed__sanitizeRequestData($_REQUEST);
    97100    $data = (object) $data;
    98 
    99101    /* --Start-- Manage Ajax call Request Security */
    100102    $__tagembed__ajaxCallSecurityNones = isset($data->__tagembed__ajax_call_nones) ? sanitize_text_field($data->__tagembed__ajax_call_nones) : '';
     
    169171            return __tagembed__exitWithDanger();
    170172            break;
     173
    171174        case "__tagembed__menue":
    172175            if (empty($data->menueId))
     
    176179            return __tagembed__exitWithDanger();
    177180            break;
     181
    178182        case "__tagembed__create_widget":
    179183            if (empty($__tagembed__user_details) || empty($data->name))
     
    10791083    $user = __tagembed__user($response->emailId);
    10801084    if (empty($user->email)):
    1081         if ($wpdb->insert('wp_tagembed_user', ["userId" => $response->userId, "name" => $response->name, "email" => $response->emailId, "accessToken" => $response->accessToken, "isLogin" => "yes"])):
     1085        if ($wpdb->query($wpdb->prepare("INSERT INTO wp_tagembed_user (userId, name, email, accessToken, isLogin) VALUES (%d, %s, %s, %s, %s)", $response->userId, $response->name, $response->emailId, $response->accessToken, 'yes'))):
    10821086            $return = true;
    10831087        endif;
    10841088    else:
    1085         if ($wpdb->update('wp_tagembed_user', ["userId" => $response->userId, "name" => $response->name, "email" => $response->emailId, "accessToken" => $response->accessToken, "isLogin" => "yes",], ['email' => $response->emailId])):
     1089        if ($wpdb->query($wpdb->prepare("UPDATE wp_tagembed_user SET userId = %d, name = %s, email = %s, accessToken = %s, isLogin = %s WHERE email = %s", $response->userId, $response->name, $response->emailId, $response->accessToken, 'yes', $response->emailId))):
    10861090            $return = true;
    10871091        endif;
     
    10991103    global $wpdb;
    11001104    if ($email == null && $other != null):
    1101         $wpdb->update('wp_tagembed_active_options', ["isLogin" => $other], ['id' => 1]);
     1105        $wpdb->query($wpdb->prepare("UPDATE wp_tagembed_active_options SET isLogin = %s WHERE id = %d", $other, 1));
    11021106    else:
    1103         $__tagembed__activeOptions = $wpdb->get_results("SELECT email FROM wp_tagembed_active_options WHERE(id = 1)");
     1107        $__tagembed__activeOptions = $wpdb->get_results($wpdb->prepare("SELECT email FROM wp_tagembed_active_options WHERE id = %d", 1));
    11041108        if (empty($__tagembed__activeOptions[0]->email)):
    1105             $wpdb->insert('wp_tagembed_active_options', ["email" => $email, "isLogin" => $other]);
     1109            $wpdb->query($wpdb->prepare("INSERT INTO wp_tagembed_active_options (email, isLogin) VALUES (%s, %s)", $email, $other));
    11061110        else:
    1107             $wpdb->update('wp_tagembed_active_options', ["email" => $email, "isLogin" => $other], ['id' => 1]);
     1111            $wpdb->query($wpdb->prepare("UPDATE wp_tagembed_active_options SET email = %s, isLogin = %s WHERE id = %d", $email, $other, 1));
    11081112        endif;
    11091113    endif;
     
    11131117function __tagembed__getActiveOptions() {
    11141118    global $wpdb;
    1115     $__tagembed__activeOptions = $wpdb->get_results("SELECT email,isLogin FROM wp_tagembed_active_options  WHERE(id = 1)");
     1119    $results = $wpdb->get_results($wpdb->prepare("SELECT email, isLogin FROM wp_tagembed_active_options WHERE id = %d", 1));
    11161120    return $__tagembed__activeOptions;
    11171121}
     
    11201124function tagembed_logout() {
    11211125    global $wpdb;
    1122     if ($wpdb->update('wp_tagembed_user', ["isLogin" => "no"], ["isLogin" => "yes"])):
     1126    if ($wpdb->query($wpdb->prepare("UPDATE wp_tagembed_user SET isLogin = %s  WHERE isLogin = %s", "no", "yes"))):
    11231127        __tagembed__manageActiveOptions(null, "no"); /* Manage Active Options */
    11241128        return true;
     
    11331137        return $wpdb->get_results("SELECT * FROM wp_tagembed_menus");
    11341138    if (array_key_exists('__tagembed__menu_condation', $__tagembed__menu_condatation))
    1135         return $wpdb->get_results("SELECT * FROM wp_tagembed_menus WHERE " . $__tagembed__menu_condatation['__tagembed__menu_condation']);
     1139        return $wpdb->get_results($wpdb->prepare("SELECT * FROM wp_tagembed_menus WHERE status = %s", $__tagembed__menu_condatation['__tagembed__menu_condation']));
    11361140    if (array_key_exists('__tagembed__menu_id', $__tagembed__menu_condatation)):
    1137         if ($wpdb->update('wp_tagembed_menus', ["status" => 0], ["status" => 1]) && $wpdb->update('wp_tagembed_menus', ["status" => 1], ["id" => $__tagembed__menu_condatation['__tagembed__menu_id']]))
     1141        if ($wpdb->query($wpdb->prepare("UPDATE wp_tagembed_menus SET status = %d WHERE status = %d", 0, 1)) && $wpdb->query($wpdb->prepare("UPDATE wp_tagembed_menus SET status = %d WHERE id = %d", 1, $__tagembed__menu_condatation['__tagembed__menu_id'])))
    11381142            return true;
    11391143        return false;
     
    11461150    $__tagembed__userResponse = "";
    11471151    if (empty($email)):
    1148         $__tagembed__userResponse = $wpdb->get_results("SELECT * FROM wp_tagembed_user WHERE(isLogin = 'yes')");
     1152        $__tagembed__userResponse = $wpdb->get_results($wpdb->prepare("SELECT * FROM wp_tagembed_user WHERE isLogin = %s", 'yes'));
    11491153    else:
    1150         $__tagembed__userResponse = $wpdb->get_results("SELECT * FROM wp_tagembed_user WHERE(email = '" . $email . "')");
     1154        $__tagembed__userResponse = $wpdb->get_results($wpdb->prepare("SELECT * FROM wp_tagembed_user WHERE email = %s", $email));
    11511155    endif;
    11521156    if (!empty($__tagembed__userResponse))
     
    11961200        return true;
    11971201    if (empty($activeWidgetUserId)):
    1198         $wpdb->insert('wp_tagembed_active_widget', ["widgetId" => $widgetId]);
     1202        $wpdb->query($wpdb->prepare("INSERT INTO wp_tagembed_active_widget (widgetId) VALUES (%s)", $widgetId));
    11991203        return true;
    12001204    else:
    1201         $wpdb->update('wp_tagembed_active_widget', ["widgetId" => $widgetId], ['id' => 1]);
     1205        $wpdb->query($wpdb->prepare("UPDATE wp_tagembed_active_widget SET widgetId = %s  WHERE id = %d", $widgetId, 1));
    12021206        return true;
    12031207    endif;
     
    12241228        return true;
    12251229    if (empty($activeWidgetUserId)):
    1226         $wpdb->insert('wp_tagembed_active_widget_user', ["userId" => $userId]);
     1230        $wpdb->query($wpdb->prepare("INSERT INTO wp_tagembed_active_widget_user (userId) VALUES (%d)", $userId));
    12271231        return true;
    12281232    else:
    1229         $wpdb->update('wp_tagembed_active_widget_user', ["userId" => $userId], ['id' => 1]);
     1233        $wpdb->query($wpdb->prepare("UPDATE wp_tagembed_active_widget_user SET userId = %d WHERE id = %d", $userId, 1));
    12301234        return true;
    12311235    endif;
     
    12491253        $__tagembed__menus = [['name' => 'Widget', 'status' => 0, 'path' => 'widget/widgetView'], ['name' => 'Feed', 'status' => 1, 'path' => 'feed/addView'], ['name' => 'Choose Theme', 'status' => 0, 'path' => 'theme/themeView'], ['name' => 'Filter', 'status' => 0, 'path' => 'filter/filterView'], ['name' => 'Customize', 'status' => 0, 'path' => 'customize/customizeView'], ['name' => 'Display', 'status' => 0, 'path' => 'display/displayView'], ['name' => 'Social Accounts', 'status' => 0, 'path' => 'socialAccount/socialAccountView'], ['name' => 'Support', 'status' => 0, 'path' => 'support/supportView'], ['name' => 'Upgrade', 'status' => 0, 'path' => 'upgrade/upgradeView'], ['name' => 'Analytics', 'status' => 0, 'path' => 'analytics/analyticsView']];
    12501254        foreach ($__tagembed__menus as $__tagembed__menu):
    1251             $wpdb->insert('wp_tagembed_menus', ["name" => $__tagembed__menu['name'], "status" => $__tagembed__menu['status'], "path" => $__tagembed__menu['path']]);
     1255            $wpdb->query($wpdb->prepare("INSERT INTO wp_tagembed_menus (name, status, path) VALUES (%s, %s, %s)", $__tagembed__menu['name'], $__tagembed__menu['status'], $__tagembed__menu['path']));
    12521256        endforeach;
    12531257    endif;
     
    12961300add_filter("plugin_action_links_" . plugin_basename(__FILE__), '__tagembed__settingsLink');
    12971301/* --End--Manage Setting Link */
    1298 
    12991302/* --Start--Manage Database On Plugin Update Time */
    13001303function __tagembed__manageDatabaseOnPluginUpdateTime() {
     
    13051308add_action('upgrader_process_complete', '__tagembed__manageDatabaseOnPluginUpdateTime', 10, 2);
    13061309/* --End--Manage Database On Plugin Update Time */
    1307 
    13081310/* --Sart--Manage Chat Hide And Show */
    13091311function __tagembed__chat() {
     
    14001402/* --End-- Drop Database Table */
    14011403/* --Start-- Create Short Code */
     1404function __tagembed__PluginShortCode($attr) {
     1405    extract(shortcode_atts(['width' => '', 'height' => '',], $attr, 'tagembed'));
     1406    $widgetId = (isset($attr[1]) ? $attr[1] : '');
     1407    if (!empty($widgetId) && is_numeric($widgetId) && (($width === '' || preg_match('/^\d+(px|%|)$/', $width)) && ($height === '' || preg_match('/^\d+(px|%|)$/', $height)))):
     1408        $output = '<span class=""></span>';
     1409        $output .= '<div style="width:' . $width . '; height:' . $height . ';overflow: auto;" class="tagembed-container">';
     1410        $output .= '<div style="width:100%; height:100%;" class="tagembed-socialwall tagembed-analystic" data-wall-id="' . $widgetId . '"></div>';
     1411        $output .= '</div>';
     1412    else:
     1413        $output = '<span style="display: block;text-align: center;border: 1px solid #eee;padding: 5px 15px;background-color: #fafafa;">Invalid Parameters Provided In The Tagembed Shortcode.</span>';
     1414    endif;
     1415    return $output;
     1416}
    14021417add_shortcode("tagembed", "__tagembed__PluginShortCode");
    1403 function __tagembed__PluginShortCode($attr) {
    1404     $widgetId = (isset($attr[1]) ? $attr[1] : '');
    1405     $width = (isset($attr['width']) ? $attr['width'] : '');
    1406     $height = (isset($attr['height']) ? $attr['height'] : '');
    1407     $code = '<span class=""></span>';
    1408     $code .= '<div style="width:' . $width . '; height:' . $height . ';overflow: auto;" class="tagembed-container">';
    1409     $code .= '<div style="width:100%; height:100%;" class="tagembed-socialwall tagembed-analystic" data-wall-id="' . $widgetId . '"></div>';
    1410     $code .= '</div>';
    1411     return $code;
    1412 }
    14131418/* --End-- Create Short Code */
    14141419

  • tagembed-widget/tags/4.9/assets/js/lazyload.js

    r3047774 r3049153  
    2121    };
    2222    const extend = function () {
    23 
    2423        let extended = {};
    2524        let deep = false;

  • tagembed-widget/tags/4.9/assets/js/tagembed.deactive.js

    r3047774 r3049153  
    9191    formData.append('action', 'data');
    9292    formData.append('__tagembed__ajax_action', '__tagembed__plugin_deactivate');
     93    formData.append('__tagembed__ajax_call_nones', __tagembed__ajax_call_security_nones_object.__tagembed__ajax_call_security_nones);
    9394    formData.append('betterPlugin', __tagembed__better_plugin_input);
    9495    formData.append('otherReason', __tagembed__other_reason_input);

  • tagembed-widget/tags/4.9/assets/js/widget/tagembed.widget.script.js

    r3047774 r3049153  
    1818            formData.append('action', 'data');
    1919            formData.append('widgetId', __tagembed__widget_id);
     20            formData.append('__tagembed__ajax_call_nones', __tagembed__ajax_call_nones);
    2021            formData.append('__tagembed__ajax_action', '__tagembed__edit_widget');
    2122            fetch(__tagembed__ajax_url, {
     
    7374    formData.append('status', __tagembed__widget_status);
    7475    formData.append('action', 'data');
     76    formData.append('__tagembed__ajax_call_nones', __tagembed__ajax_call_nones);
    7577    formData.append('__tagembed__ajax_action', '__tagembed__update_widget_status');
    7678    __tagembed__open_loader();
     
    119121        formData.append('widgetId', __tagembed__widget_id);
    120122        formData.append('action', 'data');
     123        formData.append('__tagembed__ajax_call_nones', __tagembed__ajax_call_nones);
    121124        formData.append('__tagembed__ajax_action', '__tagembed__delete_widget');
    122125        __tagembed__open_loader();

  • tagembed-widget/tags/4.9/tagembed.php

    r3047774 r3049153  
    4040        wp_enqueue_script('__tagembed__tagemedLoaderJs', TAGEMBED_PLUGIN_URL . '/assets/js/loader.js', ['jquery'], TAGEMBED_PLUGIN_VERSION, true);
    4141        wp_enqueue_script('__tagembed__deactive-js', TAGEMBED_PLUGIN_URL . '/assets/js/tagembed.deactive.js', ['jquery'], TAGEMBED_PLUGIN_VERSION, true);
     42        $__tagembed__ajax_call_security_nones = wp_create_nonce('__tagembed__ajax_call_security_nones');
     43        wp_localize_script('__tagembed__deactive-js', '__tagembed__ajax_call_security_nones_object', ['__tagembed__ajax_call_security_nones' => $__tagembed__ajax_call_security_nones]);
    4244        wp_enqueue_script('__tagembed__tagembedDialogFormJs', TAGEMBED_PLUGIN_URL . '/assets/js/dialog.form.js', ["jquery"], TAGEMBED_PLUGIN_VERSION, true);
    4345        /* --Start-- Gutenberge */
     
    7880function __tagembed__view() {
    7981    if (!empty(__tagembed__user()->isLogin) && __tagembed__user()->isLogin == 'yes'):
    80         $__tagembed__menus = __tagembed__menus(['__tagembed__menu_condation' => 'STATUS = 1']);
     82        /* Remove This */ /* $__tagembed__menus = __tagembed__menus(['__tagembed__menu_condation' => 'STATUS = 1']); */
     83        $__tagembed__menus = __tagembed__menus(['__tagembed__menu_condation' => 1]);
    8184        if (empty($__tagembed__menus)):
    8285            include_once TAGEMBED_PLUGIN_DIR_PATH . "views/widget/widgetView.php";
     
    9699    $data = __tagembed__sanitizeRequestData($_REQUEST);
    97100    $data = (object) $data;
    98 
    99101    /* --Start-- Manage Ajax call Request Security */
    100102    $__tagembed__ajaxCallSecurityNones = isset($data->__tagembed__ajax_call_nones) ? sanitize_text_field($data->__tagembed__ajax_call_nones) : '';
     
    169171            return __tagembed__exitWithDanger();
    170172            break;
     173
    171174        case "__tagembed__menue":
    172175            if (empty($data->menueId))
     
    176179            return __tagembed__exitWithDanger();
    177180            break;
     181
    178182        case "__tagembed__create_widget":
    179183            if (empty($__tagembed__user_details) || empty($data->name))
     
    10791083    $user = __tagembed__user($response->emailId);
    10801084    if (empty($user->email)):
    1081         if ($wpdb->insert('wp_tagembed_user', ["userId" => $response->userId, "name" => $response->name, "email" => $response->emailId, "accessToken" => $response->accessToken, "isLogin" => "yes"])):
     1085        if ($wpdb->query($wpdb->prepare("INSERT INTO wp_tagembed_user (userId, name, email, accessToken, isLogin) VALUES (%d, %s, %s, %s, %s)", $response->userId, $response->name, $response->emailId, $response->accessToken, 'yes'))):
    10821086            $return = true;
    10831087        endif;
    10841088    else:
    1085         if ($wpdb->update('wp_tagembed_user', ["userId" => $response->userId, "name" => $response->name, "email" => $response->emailId, "accessToken" => $response->accessToken, "isLogin" => "yes",], ['email' => $response->emailId])):
     1089        if ($wpdb->query($wpdb->prepare("UPDATE wp_tagembed_user SET userId = %d, name = %s, email = %s, accessToken = %s, isLogin = %s WHERE email = %s", $response->userId, $response->name, $response->emailId, $response->accessToken, 'yes', $response->emailId))):
    10861090            $return = true;
    10871091        endif;
     
    10991103    global $wpdb;
    11001104    if ($email == null && $other != null):
    1101         $wpdb->update('wp_tagembed_active_options', ["isLogin" => $other], ['id' => 1]);
     1105        $wpdb->query($wpdb->prepare("UPDATE wp_tagembed_active_options SET isLogin = %s WHERE id = %d", $other, 1));
    11021106    else:
    1103         $__tagembed__activeOptions = $wpdb->get_results("SELECT email FROM wp_tagembed_active_options WHERE(id = 1)");
     1107        $__tagembed__activeOptions = $wpdb->get_results($wpdb->prepare("SELECT email FROM wp_tagembed_active_options WHERE id = %d", 1));
    11041108        if (empty($__tagembed__activeOptions[0]->email)):
    1105             $wpdb->insert('wp_tagembed_active_options', ["email" => $email, "isLogin" => $other]);
     1109            $wpdb->query($wpdb->prepare("INSERT INTO wp_tagembed_active_options (email, isLogin) VALUES (%s, %s)", $email, $other));
    11061110        else:
    1107             $wpdb->update('wp_tagembed_active_options', ["email" => $email, "isLogin" => $other], ['id' => 1]);
     1111            $wpdb->query($wpdb->prepare("UPDATE wp_tagembed_active_options SET email = %s, isLogin = %s WHERE id = %d", $email, $other, 1));
    11081112        endif;
    11091113    endif;
     
    11131117function __tagembed__getActiveOptions() {
    11141118    global $wpdb;
    1115     $__tagembed__activeOptions = $wpdb->get_results("SELECT email,isLogin FROM wp_tagembed_active_options  WHERE(id = 1)");
     1119    $results = $wpdb->get_results($wpdb->prepare("SELECT email, isLogin FROM wp_tagembed_active_options WHERE id = %d", 1));
    11161120    return $__tagembed__activeOptions;
    11171121}
     
    11201124function tagembed_logout() {
    11211125    global $wpdb;
    1122     if ($wpdb->update('wp_tagembed_user', ["isLogin" => "no"], ["isLogin" => "yes"])):
     1126    if ($wpdb->query($wpdb->prepare("UPDATE wp_tagembed_user SET isLogin = %s  WHERE isLogin = %s", "no", "yes"))):
    11231127        __tagembed__manageActiveOptions(null, "no"); /* Manage Active Options */
    11241128        return true;
     
    11331137        return $wpdb->get_results("SELECT * FROM wp_tagembed_menus");
    11341138    if (array_key_exists('__tagembed__menu_condation', $__tagembed__menu_condatation))
    1135         return $wpdb->get_results("SELECT * FROM wp_tagembed_menus WHERE " . $__tagembed__menu_condatation['__tagembed__menu_condation']);
     1139        return $wpdb->get_results($wpdb->prepare("SELECT * FROM wp_tagembed_menus WHERE status = %s", $__tagembed__menu_condatation['__tagembed__menu_condation']));
    11361140    if (array_key_exists('__tagembed__menu_id', $__tagembed__menu_condatation)):
    1137         if ($wpdb->update('wp_tagembed_menus', ["status" => 0], ["status" => 1]) && $wpdb->update('wp_tagembed_menus', ["status" => 1], ["id" => $__tagembed__menu_condatation['__tagembed__menu_id']]))
     1141        if ($wpdb->query($wpdb->prepare("UPDATE wp_tagembed_menus SET status = %d WHERE status = %d", 0, 1)) && $wpdb->query($wpdb->prepare("UPDATE wp_tagembed_menus SET status = %d WHERE id = %d", 1, $__tagembed__menu_condatation['__tagembed__menu_id'])))
    11381142            return true;
    11391143        return false;
     
    11461150    $__tagembed__userResponse = "";
    11471151    if (empty($email)):
    1148         $__tagembed__userResponse = $wpdb->get_results("SELECT * FROM wp_tagembed_user WHERE(isLogin = 'yes')");
     1152        $__tagembed__userResponse = $wpdb->get_results($wpdb->prepare("SELECT * FROM wp_tagembed_user WHERE isLogin = %s", 'yes'));
    11491153    else:
    1150         $__tagembed__userResponse = $wpdb->get_results("SELECT * FROM wp_tagembed_user WHERE(email = '" . $email . "')");
     1154        $__tagembed__userResponse = $wpdb->get_results($wpdb->prepare("SELECT * FROM wp_tagembed_user WHERE email = %s", $email));
    11511155    endif;
    11521156    if (!empty($__tagembed__userResponse))
     
    11961200        return true;
    11971201    if (empty($activeWidgetUserId)):
    1198         $wpdb->insert('wp_tagembed_active_widget', ["widgetId" => $widgetId]);
     1202        $wpdb->query($wpdb->prepare("INSERT INTO wp_tagembed_active_widget (widgetId) VALUES (%s)", $widgetId));
    11991203        return true;
    12001204    else:
    1201         $wpdb->update('wp_tagembed_active_widget', ["widgetId" => $widgetId], ['id' => 1]);
     1205        $wpdb->query($wpdb->prepare("UPDATE wp_tagembed_active_widget SET widgetId = %s  WHERE id = %d", $widgetId, 1));
    12021206        return true;
    12031207    endif;
     
    12241228        return true;
    12251229    if (empty($activeWidgetUserId)):
    1226         $wpdb->insert('wp_tagembed_active_widget_user', ["userId" => $userId]);
     1230        $wpdb->query($wpdb->prepare("INSERT INTO wp_tagembed_active_widget_user (userId) VALUES (%d)", $userId));
    12271231        return true;
    12281232    else:
    1229         $wpdb->update('wp_tagembed_active_widget_user', ["userId" => $userId], ['id' => 1]);
     1233        $wpdb->query($wpdb->prepare("UPDATE wp_tagembed_active_widget_user SET userId = %d WHERE id = %d", $userId, 1));
    12301234        return true;
    12311235    endif;
     
    12491253        $__tagembed__menus = [['name' => 'Widget', 'status' => 0, 'path' => 'widget/widgetView'], ['name' => 'Feed', 'status' => 1, 'path' => 'feed/addView'], ['name' => 'Choose Theme', 'status' => 0, 'path' => 'theme/themeView'], ['name' => 'Filter', 'status' => 0, 'path' => 'filter/filterView'], ['name' => 'Customize', 'status' => 0, 'path' => 'customize/customizeView'], ['name' => 'Display', 'status' => 0, 'path' => 'display/displayView'], ['name' => 'Social Accounts', 'status' => 0, 'path' => 'socialAccount/socialAccountView'], ['name' => 'Support', 'status' => 0, 'path' => 'support/supportView'], ['name' => 'Upgrade', 'status' => 0, 'path' => 'upgrade/upgradeView'], ['name' => 'Analytics', 'status' => 0, 'path' => 'analytics/analyticsView']];
    12501254        foreach ($__tagembed__menus as $__tagembed__menu):
    1251             $wpdb->insert('wp_tagembed_menus', ["name" => $__tagembed__menu['name'], "status" => $__tagembed__menu['status'], "path" => $__tagembed__menu['path']]);
     1255            $wpdb->query($wpdb->prepare("INSERT INTO wp_tagembed_menus (name, status, path) VALUES (%s, %s, %s)", $__tagembed__menu['name'], $__tagembed__menu['status'], $__tagembed__menu['path']));
    12521256        endforeach;
    12531257    endif;
     
    12961300add_filter("plugin_action_links_" . plugin_basename(__FILE__), '__tagembed__settingsLink');
    12971301/* --End--Manage Setting Link */
    1298 
    12991302/* --Start--Manage Database On Plugin Update Time */
    13001303function __tagembed__manageDatabaseOnPluginUpdateTime() {
     
    13051308add_action('upgrader_process_complete', '__tagembed__manageDatabaseOnPluginUpdateTime', 10, 2);
    13061309/* --End--Manage Database On Plugin Update Time */
    1307 
    13081310/* --Sart--Manage Chat Hide And Show */
    13091311function __tagembed__chat() {

  • tagembed-widget/trunk/assets/js/lazyload.js

    r3047140 r3049153  
    2121    };
    2222    const extend = function () {
    23 
    2423        let extended = {};
    2524        let deep = false;

  • tagembed-widget/trunk/assets/js/tagembed.deactive.js

    r2833563 r3049153  
    9191    formData.append('action', 'data');
    9292    formData.append('__tagembed__ajax_action', '__tagembed__plugin_deactivate');
     93    formData.append('__tagembed__ajax_call_nones', __tagembed__ajax_call_security_nones_object.__tagembed__ajax_call_security_nones);
    9394    formData.append('betterPlugin', __tagembed__better_plugin_input);
    9495    formData.append('otherReason', __tagembed__other_reason_input);

  • tagembed-widget/trunk/assets/js/widget/tagembed.widget.script.js

    r2833563 r3049153  
    1818            formData.append('action', 'data');
    1919            formData.append('widgetId', __tagembed__widget_id);
     20            formData.append('__tagembed__ajax_call_nones', __tagembed__ajax_call_nones);
    2021            formData.append('__tagembed__ajax_action', '__tagembed__edit_widget');
    2122            fetch(__tagembed__ajax_url, {
     
    7374    formData.append('status', __tagembed__widget_status);
    7475    formData.append('action', 'data');
     76    formData.append('__tagembed__ajax_call_nones', __tagembed__ajax_call_nones);
    7577    formData.append('__tagembed__ajax_action', '__tagembed__update_widget_status');
    7678    __tagembed__open_loader();
     
    119121        formData.append('widgetId', __tagembed__widget_id);
    120122        formData.append('action', 'data');
     123        formData.append('__tagembed__ajax_call_nones', __tagembed__ajax_call_nones);
    121124        formData.append('__tagembed__ajax_action', '__tagembed__delete_widget');
    122125        __tagembed__open_loader();

  • tagembed-widget/trunk/tagembed.php

    r3047774 r3049153  
    4040        wp_enqueue_script('__tagembed__tagemedLoaderJs', TAGEMBED_PLUGIN_URL . '/assets/js/loader.js', ['jquery'], TAGEMBED_PLUGIN_VERSION, true);
    4141        wp_enqueue_script('__tagembed__deactive-js', TAGEMBED_PLUGIN_URL . '/assets/js/tagembed.deactive.js', ['jquery'], TAGEMBED_PLUGIN_VERSION, true);
     42        $__tagembed__ajax_call_security_nones = wp_create_nonce('__tagembed__ajax_call_security_nones');
     43        wp_localize_script('__tagembed__deactive-js', '__tagembed__ajax_call_security_nones_object', ['__tagembed__ajax_call_security_nones' => $__tagembed__ajax_call_security_nones]);
    4244        wp_enqueue_script('__tagembed__tagembedDialogFormJs', TAGEMBED_PLUGIN_URL . '/assets/js/dialog.form.js', ["jquery"], TAGEMBED_PLUGIN_VERSION, true);
    4345        /* --Start-- Gutenberge */
     
    7880function __tagembed__view() {
    7981    if (!empty(__tagembed__user()->isLogin) && __tagembed__user()->isLogin == 'yes'):
    80         $__tagembed__menus = __tagembed__menus(['__tagembed__menu_condation' => 'STATUS = 1']);
     82        /* Remove This */ /* $__tagembed__menus = __tagembed__menus(['__tagembed__menu_condation' => 'STATUS = 1']); */
     83        $__tagembed__menus = __tagembed__menus(['__tagembed__menu_condation' => 1]);
    8184        if (empty($__tagembed__menus)):
    8285            include_once TAGEMBED_PLUGIN_DIR_PATH . "views/widget/widgetView.php";
     
    9699    $data = __tagembed__sanitizeRequestData($_REQUEST);
    97100    $data = (object) $data;
    98 
    99101    /* --Start-- Manage Ajax call Request Security */
    100102    $__tagembed__ajaxCallSecurityNones = isset($data->__tagembed__ajax_call_nones) ? sanitize_text_field($data->__tagembed__ajax_call_nones) : '';
     
    169171            return __tagembed__exitWithDanger();
    170172            break;
     173
    171174        case "__tagembed__menue":
    172175            if (empty($data->menueId))
     
    176179            return __tagembed__exitWithDanger();
    177180            break;
     181
    178182        case "__tagembed__create_widget":
    179183            if (empty($__tagembed__user_details) || empty($data->name))
     
    10791083    $user = __tagembed__user($response->emailId);
    10801084    if (empty($user->email)):
    1081         if ($wpdb->insert('wp_tagembed_user', ["userId" => $response->userId, "name" => $response->name, "email" => $response->emailId, "accessToken" => $response->accessToken, "isLogin" => "yes"])):
     1085        if ($wpdb->query($wpdb->prepare("INSERT INTO wp_tagembed_user (userId, name, email, accessToken, isLogin) VALUES (%d, %s, %s, %s, %s)", $response->userId, $response->name, $response->emailId, $response->accessToken, 'yes'))):
    10821086            $return = true;
    10831087        endif;
    10841088    else:
    1085         if ($wpdb->update('wp_tagembed_user', ["userId" => $response->userId, "name" => $response->name, "email" => $response->emailId, "accessToken" => $response->accessToken, "isLogin" => "yes",], ['email' => $response->emailId])):
     1089        if ($wpdb->query($wpdb->prepare("UPDATE wp_tagembed_user SET userId = %d, name = %s, email = %s, accessToken = %s, isLogin = %s WHERE email = %s", $response->userId, $response->name, $response->emailId, $response->accessToken, 'yes', $response->emailId))):
    10861090            $return = true;
    10871091        endif;
     
    10991103    global $wpdb;
    11001104    if ($email == null && $other != null):
    1101         $wpdb->update('wp_tagembed_active_options', ["isLogin" => $other], ['id' => 1]);
     1105        $wpdb->query($wpdb->prepare("UPDATE wp_tagembed_active_options SET isLogin = %s WHERE id = %d", $other, 1));
    11021106    else:
    1103         $__tagembed__activeOptions = $wpdb->get_results("SELECT email FROM wp_tagembed_active_options WHERE(id = 1)");
     1107        $__tagembed__activeOptions = $wpdb->get_results($wpdb->prepare("SELECT email FROM wp_tagembed_active_options WHERE id = %d", 1));
    11041108        if (empty($__tagembed__activeOptions[0]->email)):
    1105             $wpdb->insert('wp_tagembed_active_options', ["email" => $email, "isLogin" => $other]);
     1109            $wpdb->query($wpdb->prepare("INSERT INTO wp_tagembed_active_options (email, isLogin) VALUES (%s, %s)", $email, $other));
    11061110        else:
    1107             $wpdb->update('wp_tagembed_active_options', ["email" => $email, "isLogin" => $other], ['id' => 1]);
     1111            $wpdb->query($wpdb->prepare("UPDATE wp_tagembed_active_options SET email = %s, isLogin = %s WHERE id = %d", $email, $other, 1));
    11081112        endif;
    11091113    endif;
     
    11131117function __tagembed__getActiveOptions() {
    11141118    global $wpdb;
    1115     $__tagembed__activeOptions = $wpdb->get_results("SELECT email,isLogin FROM wp_tagembed_active_options  WHERE(id = 1)");
     1119    $results = $wpdb->get_results($wpdb->prepare("SELECT email, isLogin FROM wp_tagembed_active_options WHERE id = %d", 1));
    11161120    return $__tagembed__activeOptions;
    11171121}
     
    11201124function tagembed_logout() {
    11211125    global $wpdb;
    1122     if ($wpdb->update('wp_tagembed_user', ["isLogin" => "no"], ["isLogin" => "yes"])):
     1126    if ($wpdb->query($wpdb->prepare("UPDATE wp_tagembed_user SET isLogin = %s  WHERE isLogin = %s", "no", "yes"))):
    11231127        __tagembed__manageActiveOptions(null, "no"); /* Manage Active Options */
    11241128        return true;
     
    11331137        return $wpdb->get_results("SELECT * FROM wp_tagembed_menus");
    11341138    if (array_key_exists('__tagembed__menu_condation', $__tagembed__menu_condatation))
    1135         return $wpdb->get_results("SELECT * FROM wp_tagembed_menus WHERE " . $__tagembed__menu_condatation['__tagembed__menu_condation']);
     1139        return $wpdb->get_results($wpdb->prepare("SELECT * FROM wp_tagembed_menus WHERE status = %s", $__tagembed__menu_condatation['__tagembed__menu_condation']));
    11361140    if (array_key_exists('__tagembed__menu_id', $__tagembed__menu_condatation)):
    1137         if ($wpdb->update('wp_tagembed_menus', ["status" => 0], ["status" => 1]) && $wpdb->update('wp_tagembed_menus', ["status" => 1], ["id" => $__tagembed__menu_condatation['__tagembed__menu_id']]))
     1141        if ($wpdb->query($wpdb->prepare("UPDATE wp_tagembed_menus SET status = %d WHERE status = %d", 0, 1)) && $wpdb->query($wpdb->prepare("UPDATE wp_tagembed_menus SET status = %d WHERE id = %d", 1, $__tagembed__menu_condatation['__tagembed__menu_id'])))
    11381142            return true;
    11391143        return false;
     
    11461150    $__tagembed__userResponse = "";
    11471151    if (empty($email)):
    1148         $__tagembed__userResponse = $wpdb->get_results("SELECT * FROM wp_tagembed_user WHERE(isLogin = 'yes')");
     1152        $__tagembed__userResponse = $wpdb->get_results($wpdb->prepare("SELECT * FROM wp_tagembed_user WHERE isLogin = %s", 'yes'));
    11491153    else:
    1150         $__tagembed__userResponse = $wpdb->get_results("SELECT * FROM wp_tagembed_user WHERE(email = '" . $email . "')");
     1154        $__tagembed__userResponse = $wpdb->get_results($wpdb->prepare("SELECT * FROM wp_tagembed_user WHERE email = %s", $email));
    11511155    endif;
    11521156    if (!empty($__tagembed__userResponse))
     
    11961200        return true;
    11971201    if (empty($activeWidgetUserId)):
    1198         $wpdb->insert('wp_tagembed_active_widget', ["widgetId" => $widgetId]);
     1202        $wpdb->query($wpdb->prepare("INSERT INTO wp_tagembed_active_widget (widgetId) VALUES (%s)", $widgetId));
    11991203        return true;
    12001204    else:
    1201         $wpdb->update('wp_tagembed_active_widget', ["widgetId" => $widgetId], ['id' => 1]);
     1205        $wpdb->query($wpdb->prepare("UPDATE wp_tagembed_active_widget SET widgetId = %s  WHERE id = %d", $widgetId, 1));
    12021206        return true;
    12031207    endif;
     
    12241228        return true;
    12251229    if (empty($activeWidgetUserId)):
    1226         $wpdb->insert('wp_tagembed_active_widget_user', ["userId" => $userId]);
     1230        $wpdb->query($wpdb->prepare("INSERT INTO wp_tagembed_active_widget_user (userId) VALUES (%d)", $userId));
    12271231        return true;
    12281232    else:
    1229         $wpdb->update('wp_tagembed_active_widget_user', ["userId" => $userId], ['id' => 1]);
     1233        $wpdb->query($wpdb->prepare("UPDATE wp_tagembed_active_widget_user SET userId = %d WHERE id = %d", $userId, 1));
    12301234        return true;
    12311235    endif;
     
    12491253        $__tagembed__menus = [['name' => 'Widget', 'status' => 0, 'path' => 'widget/widgetView'], ['name' => 'Feed', 'status' => 1, 'path' => 'feed/addView'], ['name' => 'Choose Theme', 'status' => 0, 'path' => 'theme/themeView'], ['name' => 'Filter', 'status' => 0, 'path' => 'filter/filterView'], ['name' => 'Customize', 'status' => 0, 'path' => 'customize/customizeView'], ['name' => 'Display', 'status' => 0, 'path' => 'display/displayView'], ['name' => 'Social Accounts', 'status' => 0, 'path' => 'socialAccount/socialAccountView'], ['name' => 'Support', 'status' => 0, 'path' => 'support/supportView'], ['name' => 'Upgrade', 'status' => 0, 'path' => 'upgrade/upgradeView'], ['name' => 'Analytics', 'status' => 0, 'path' => 'analytics/analyticsView']];
    12501254        foreach ($__tagembed__menus as $__tagembed__menu):
    1251             $wpdb->insert('wp_tagembed_menus', ["name" => $__tagembed__menu['name'], "status" => $__tagembed__menu['status'], "path" => $__tagembed__menu['path']]);
     1255            $wpdb->query($wpdb->prepare("INSERT INTO wp_tagembed_menus (name, status, path) VALUES (%s, %s, %s)", $__tagembed__menu['name'], $__tagembed__menu['status'], $__tagembed__menu['path']));
    12521256        endforeach;
    12531257    endif;
     
    12961300add_filter("plugin_action_links_" . plugin_basename(__FILE__), '__tagembed__settingsLink');
    12971301/* --End--Manage Setting Link */
    1298 
    12991302/* --Start--Manage Database On Plugin Update Time */
    13001303function __tagembed__manageDatabaseOnPluginUpdateTime() {
     
    13051308add_action('upgrader_process_complete', '__tagembed__manageDatabaseOnPluginUpdateTime', 10, 2);
    13061309/* --End--Manage Database On Plugin Update Time */
    1307 
    13081310/* --Sart--Manage Chat Hide And Show */
    13091311function __tagembed__chat() {
Note: See TracChangeset for help on using the changeset viewer.