Plugin Directory

Changeset 3069174


Ignore:
Timestamp:
04/11/2024 05:50:09 PM (11 months ago)
Author:
zapier
Message:

Fix User-Agent header validation

Location:
zapier
Files:
4 edited
1 copied

Legend:

Unmodified
Added
Removed
  • zapier/tags/1.0.7/readme.txt

    r3043294 r3069174  
    55Tested up to: 6.4
    66Requires PHP: 7.0
    7 Stable tag: 1.0.6
     7Stable tag: 1.0.7
    88License: Expat (MIT License)
    99License URI: https://spdx.org/licenses/MIT.html
     
    1313== Description ==
    1414
    15 Zapier is the #1 workflow automation platform for small and midsize businesses that supports 6,000+ of the most popular apps, like Instagram, Facebook, and Pinterest. In just a few minutes, you can set up automated workflows (called _Zaps_) that connect WordPress with the other apps you use most. You can share your latest WordPress posts to Facebook or Instagram, create drafts from an RSS feed or Mailchimp newsletter, or be notified when you get new comments and much more–no manual work or coding required.
     15Zapier is the #1 workflow automation platform for small and midsize businesses that supports 7,000+ of the most popular apps, like Instagram, Facebook, and Pinterest. In just a few minutes, you can set up automated workflows (called _Zaps_) that connect WordPress with the other apps you use most. You can share your latest WordPress posts to Facebook or Instagram, create drafts from an RSS feed or Mailchimp newsletter, or be notified when you get new comments and much more–no manual work or coding required.
    1616
    1717= Some things you can do with Zapier + WordPress =
     
    6464
    6565If you have any feature requests, issues, or questions with Zapier for WordPress, please contact us using our [help form](https://zapier.com/app/get-help?utm_source=partner_wordpress_support&utm_medium=plugin_listing&utm_campaign=partner_wordpress).
     66
     67== Changelog ==
     68
     69= 1.0.0 =
     70
     71* Initial release.
     72
     73= 1.0.1 =
     74
     75* Improved verification of headers.
     76
     77= 1.0.2 =
     78
     79* Updated readme.
     80
     81= 1.0.3 =
     82
     83* Added a leeway value for JWT token validation.
     84
     85= 1.0.4 =
     86
     87* Updated register_rest_route to match >5.6 required arguments.
     88* Updated latest tested Wordpress version to 5.9.
     89
     90= 1.0.5 =
     91
     92* Updated latest tested Wordpress version to 6.4.
     93* Updated description.
     94
     95= 1.0.6 =
     96
     97* Updated short description.
     98
     99= 1.0.7 =
     100
     101* Updated assets.
     102* Updated description.
     103* Hotfix: Fix User-Agent header validation.
  • zapier/tags/1.0.7/zapier.php

    r3043294 r3069174  
    44 * Plugin Name:       Zapier for WordPress
    55 * Description:       Zapier enables you to automatically share your posts to social media, create WordPress posts from Mailchimp newsletters, and much more. Visit https://zapier.com/apps/wordpress/integrations for more details.
    6  * Version:           1.0.6
     6 * Version:           1.0.7
    77 * Author:            Zapier
    88 * Author URI:        https://zapier.com
     
    175175        $is_valid_rest_api_uri = strpos($_SERVER['REQUEST_URI'], $rest_api_slug);
    176176        $is_valid_token_uri = strpos($_SERVER['REQUEST_URI'], $this->namespace . '/token');
    177         $is_zapier_request = $_SERVER['HTTP_USER_AGENT'] === 'Zapier' && isset($_SERVER['HTTP_X_ZAPIER_AUTH']);
     177        $is_zapier_request = isset($_SERVER['HTTP_USER_AGENT']) && $_SERVER['HTTP_USER_AGENT'] === 'Zapier' && isset($_SERVER['HTTP_X_ZAPIER_AUTH']);
    178178
    179179        if ($is_zapier_request && $is_valid_rest_api_uri && !$is_valid_token_uri) {
  • zapier/trunk/readme.txt

    r3043294 r3069174  
    55Tested up to: 6.4
    66Requires PHP: 7.0
    7 Stable tag: 1.0.6
     7Stable tag: 1.0.7
    88License: Expat (MIT License)
    99License URI: https://spdx.org/licenses/MIT.html
     
    1313== Description ==
    1414
    15 Zapier is the #1 workflow automation platform for small and midsize businesses that supports 6,000+ of the most popular apps, like Instagram, Facebook, and Pinterest. In just a few minutes, you can set up automated workflows (called _Zaps_) that connect WordPress with the other apps you use most. You can share your latest WordPress posts to Facebook or Instagram, create drafts from an RSS feed or Mailchimp newsletter, or be notified when you get new comments and much more–no manual work or coding required.
     15Zapier is the #1 workflow automation platform for small and midsize businesses that supports 7,000+ of the most popular apps, like Instagram, Facebook, and Pinterest. In just a few minutes, you can set up automated workflows (called _Zaps_) that connect WordPress with the other apps you use most. You can share your latest WordPress posts to Facebook or Instagram, create drafts from an RSS feed or Mailchimp newsletter, or be notified when you get new comments and much more–no manual work or coding required.
    1616
    1717= Some things you can do with Zapier + WordPress =
     
    6464
    6565If you have any feature requests, issues, or questions with Zapier for WordPress, please contact us using our [help form](https://zapier.com/app/get-help?utm_source=partner_wordpress_support&utm_medium=plugin_listing&utm_campaign=partner_wordpress).
     66
     67== Changelog ==
     68
     69= 1.0.0 =
     70
     71* Initial release.
     72
     73= 1.0.1 =
     74
     75* Improved verification of headers.
     76
     77= 1.0.2 =
     78
     79* Updated readme.
     80
     81= 1.0.3 =
     82
     83* Added a leeway value for JWT token validation.
     84
     85= 1.0.4 =
     86
     87* Updated register_rest_route to match >5.6 required arguments.
     88* Updated latest tested Wordpress version to 5.9.
     89
     90= 1.0.5 =
     91
     92* Updated latest tested Wordpress version to 6.4.
     93* Updated description.
     94
     95= 1.0.6 =
     96
     97* Updated short description.
     98
     99= 1.0.7 =
     100
     101* Updated assets.
     102* Updated description.
     103* Hotfix: Fix User-Agent header validation.
  • zapier/trunk/zapier.php

    r3043294 r3069174  
    44 * Plugin Name:       Zapier for WordPress
    55 * Description:       Zapier enables you to automatically share your posts to social media, create WordPress posts from Mailchimp newsletters, and much more. Visit https://zapier.com/apps/wordpress/integrations for more details.
    6  * Version:           1.0.6
     6 * Version:           1.0.7
    77 * Author:            Zapier
    88 * Author URI:        https://zapier.com
     
    175175        $is_valid_rest_api_uri = strpos($_SERVER['REQUEST_URI'], $rest_api_slug);
    176176        $is_valid_token_uri = strpos($_SERVER['REQUEST_URI'], $this->namespace . '/token');
    177         $is_zapier_request = $_SERVER['HTTP_USER_AGENT'] === 'Zapier' && isset($_SERVER['HTTP_X_ZAPIER_AUTH']);
     177        $is_zapier_request = isset($_SERVER['HTTP_USER_AGENT']) && $_SERVER['HTTP_USER_AGENT'] === 'Zapier' && isset($_SERVER['HTTP_X_ZAPIER_AUTH']);
    178178
    179179        if ($is_zapier_request && $is_valid_rest_api_uri && !$is_valid_token_uri) {
Note: See TracChangeset for help on using the changeset viewer.