WordPress.org
Get WordPress

Plugin Directory

Changeset 3125701


Ignore:
Timestamp:
07/26/2024 06:13:14 AM (20 months ago)
Author:
webangon
Message:

Version update

Location:
news-element/trunk
Files:
21 edited

Legend:

Unmodified
Added
Removed

  • news-element/trunk/includes/ajax_posts.php

    r3119746 r3125701  
    4242 
    4343            $per_page = esc_attr($_POST['xlxtra_data']['per_page']);
    44             $template = sanitize_key($_POST['xlxtra_data']['template']);
     44            $template = $_POST['xlxtra_data']['template'];
    4545            $metaf = esc_attr($_POST['xlxtra_data']['metaf']);
    4646            $metar = esc_attr($_POST['xlxtra_data']['metar']);
     
    143143        $i = 0;
    144144        ob_start();
    145         require dirname(__FILE__) .'/loops/'. $template .'.php';
     145        if (!preg_match("/[^[:alnum:]_\/-]/",$template)) {
     146            require dirname(__FILE__) .'/loops/'. $template .'.php';
     147        }               
    146148        $list .= ob_get_clean();
    147149
     
    170172    if ( true === $isAjaxCall )
    171173    {
    172         die(json_encode($buffyArray));
     174        die(wp_json_encode($buffyArray));
    173175    }
    174176    else
    175177    {
    176         return json_encode($buffyArray);
     178        return wp_json_encode($buffyArray);
    177179    }
    178180   

  • news-element/trunk/index.php

    r3116211 r3125701  
    44 * Plugin URI:  http://webangon.com
    55 * Description: Elementor blog & magazine addon.
    6  * Version:     1.0.5
     6 * Version:     1.0.6
    77 * Author:      Ashraf
    88 * Author URI:  http://webangon.com

  • news-element/trunk/readme.txt

    r3116211 r3125701  
    66Tested up to: 6.5
    77Requires PHP: 7.0
    8 Stable tag: 1.0.5
     8Stable tag: 1.0.6
    99License: GPLv3 or later
    1010License URI: http://www.gnu.org/licenses/gpl-3.0.html

  • news-element/trunk/widgets/block/arc-list/index.php

    r2966276 r3125701  
    857857}
    858858
    859 
    860859if ( defined( 'ELEMENTOR_VERSION' ) && version_compare( ELEMENTOR_VERSION, '3.5.0', '>=' ) ) {
    861860    $widgets_manager->register(new \News_Element\Widgets\khbh_arclist());

  • news-element/trunk/widgets/block/counter-post-a/view.php

    r2700091 r3125701  
    1111    $wp_query = new WP_Query($query_args);
    1212    echo'<div class="khbcounter-a line-clip '.$stylecls.'">';
    13         require dirname(__FILE__) .'/'. $settings['style'] .'.php';
     13        require dirname(__FILE__) .'/'. sanitize_key($settings['style']) .'.php';
    1414    echo '</div>';?>
    1515   

  • news-element/trunk/widgets/block/hero-grid14/view.php

    r2700091 r3125701  
    66$query_args = Khobish_Helper::hero_slide_query($settings,'query');
    77$wp_query = new WP_Query($query_args);
    8 require dirname(__FILE__) .'/'. $settings['tmpl'] .'.php';
     8require dirname(__FILE__) .'/'. sanitize_key($settings['tmpl']) .'.php';
    99?>

  • news-element/trunk/widgets/block/hero-grid16/view.php

    r2700091 r3125701  
    77$query_args = Khobish_Helper::hero_slide_query($settings,'query');
    88$wp_query = new WP_Query($query_args);
    9 require dirname(__FILE__) .'/'. $settings['tmpl'] .'.php';
     9require dirname(__FILE__) .'/'. sanitize_key($settings['tmpl']) .'.php';
    1010?>

  • news-element/trunk/widgets/block/hero-grid24/view.php

    r2783668 r3125701  
    88$wp_query = new WP_Query($query_args);
    99
    10 require dirname(__FILE__) .'/'. $settings['style'] .'.php';
     10require dirname(__FILE__) .'/'. sanitize_key($settings['style']) .'.php';
    1111?>

  • news-element/trunk/widgets/block/hero-grid3/view.php

    r2700091 r3125701  
    77$query_args = Khobish_Helper::hero_slide_query($settings,'query');
    88$wp_query = new WP_Query($query_args);
    9 require dirname(__FILE__) .'/'. $settings['style'] .'.php';
     9require dirname(__FILE__) .'/'. sanitize_key($settings['style']) .'.php';
    1010?>

  • news-element/trunk/widgets/block/imagebg/view.php

    r2700091 r3125701  
    2727        echo'<div class="bgimgwrp '.$designcls.'">';?>
    2828       
    29         <?php require dirname(__FILE__) .'/'. $settings['tmpl'] .'.php';?>   
     29        <?php require dirname(__FILE__) .'/'. sanitize_key($settings['tmpl']) .'.php';?>   
    3030 
    3131        <?php echo Khobish_Helper::xl_ajax_pagination($settings['pagination'],$post_count,$post_found);

  • news-element/trunk/widgets/block/magazine-16/view.php

    r2783668 r3125701  
    2525            echo'<div class="magazine-16 line-clip">';
    2626           
    27             echo '<div class="khobish-ajax-wrap '.$settings['tmpl'].'">'; ?>
     27            echo '<div class="khobish-ajax-wrap '.esc_attr($settings['tmpl']).'">'; ?>
    2828            <div class="first">
    29                 <?php require dirname(__FILE__) .'/'. $settings['tmpl'] .'.php';?>
     29                <?php require dirname(__FILE__) .'/'. sanitize_key($settings['tmpl']) .'.php';?>
    3030            </div>
    3131

  • news-element/trunk/widgets/block/magazine-23/view.php

    r2700091 r3125701  
    2525            echo'<div class="magazine-23 '.$design_cls.'">';
    2626            echo '<div class="khobish-ajax-wrap">';
    27             require dirname(__FILE__) .'/'.$settings['tmpl'].'.php';
     27            require dirname(__FILE__) .'/'.sanitize_key($settings['tmpl']).'.php';
    2828            echo '</div>';
    2929

  • news-element/trunk/widgets/block/magazine-8/view.php

    r2851954 r3125701  
    2727            echo'<div class="magazine-1 mag8 '.$settings['tmpl'].'">';
    2828            echo '<div class="khobish-ajax-wrap line-clip no-margin">';
    29                 require dirname(__FILE__) .'/'. $settings['tmpl'] .'.php';
     29                require dirname(__FILE__) .'/'. sanitize_key($settings['tmpl']) .'.php';
    3030            echo '</div>';
    3131            echo Khobish_Helper::xl_ajax_pagination($settings['pagination'],$post_count,$post_found);

  • news-element/trunk/widgets/block/menu-1/view.php

    r3116211 r3125701  
    2525        if (!empty($value['lbl'])) {
    2626            if ($value['sticky']){ echo '<div class="xlmega-sticky-wrapper">';}
    27             require_once ''.esc_attr($value['lbl']).'.php';
     27            require_once ''.sanitize_key($value['lbl']).'.php';
    2828            if ($value['sticky']){ echo '</div>';}
    2929        }

  • news-element/trunk/widgets/block/post-navigation/view.php

    r2783668 r3125701  
    1414$next_post_id = Khobish_Helper::thepack_get_next_post_id($id);
    1515
    16 require dirname(__FILE__) .'/'. $settings['tmpl'] .'.php';
     16require dirname(__FILE__) .'/'. sanitize_key($settings['tmpl']) .'.php';
    1717?>

  • news-element/trunk/widgets/block/slider-5/view.php

    r2700324 r3125701  
    3333      <?php if ($loop->have_posts()) : ?>
    3434              <?php $post_count = 0;while ($loop->have_posts()) : $loop->the_post();$post_count++;
    35                 require dirname(__FILE__) .'/'. $settings['style'] .'.php';
     35                require dirname(__FILE__) .'/'. sanitize_key($settings['style']) .'.php';
    3636                  endwhile;
    3737                  wp_reset_postdata();

  • news-element/trunk/widgets/block/slider-thumbsync-b/view.php

    r2700324 r3125701  
    2222
    2323<?php echo '<div class="khobishthumbsync '.$settings['style'].'" data-xld =\''.wp_json_encode($slider_options).'\'>';?>
    24 <?php require dirname(__FILE__) .'/'. $settings['style'] .'.php';?>
     24<?php require dirname(__FILE__) .'/'. sanitize_key($settings['style']) .'.php';?>
    2525</div>

  • news-element/trunk/widgets/block/social/index.php

    r2966276 r3125701  
    347347
    348348        $settings = $this->get_settings();
    349         require dirname(__FILE__) .'/'. $settings['type'] .'.php';
     349        require dirname(__FILE__) .'/'. sanitize_key($settings['type']) .'.php';
    350350    }
    351351

  • news-element/trunk/widgets/block/social_2/index.php

    r2966276 r3125701  
    302302    protected function render() {
    303303        $settings = $this->get_settings();
    304         require dirname(__FILE__) .'/'. $settings['type'] .'.php';
     304        require dirname(__FILE__) .'/'. sanitize_key($settings['type']) .'.php';
    305305    }
    306306

  • news-element/trunk/widgets/block/thumb_bg/index.php

    r2966276 r3125701  
    476476    protected function render( ) {
    477477        $settings = $this->get_settings();
    478         require dirname(__FILE__) .'/'. $settings['style'] .'.php';
     478        require dirname(__FILE__) .'/'. sanitize_key($settings['style']) .'.php';
    479479    }
    480480}

  • news-element/trunk/widgets/block/video_playlist/view.php

    r2700091 r3125701  
    3030
    3131    echo '<div class="khobishvidplaylist '.$css_class.'" data-xld ='.wp_json_encode($slider_options).'>';
    32     require dirname(__FILE__) .'/'. $settings['style'] .'.php';
     32    require dirname(__FILE__) .'/'. sanitize_key($settings['style']) .'.php';
    3333?>
    3434</div>
Note: See TracChangeset for help on using the changeset viewer.