Changeset 3161680

Timestamp:

10/02/2024 06:44:28 PM (17 months ago)

Author:

switcorp

Message:

v1.1.0
Security fixes

Location:

activitytime

Files:

• tags/1.0.9 (added)
• tags/1.0.9/LICENSE.txt (added)
• tags/1.0.9/README.txt (added)
• tags/1.0.9/activitytime.php (added)
• tags/1.0.9/admin (added)
• tags/1.0.9/admin/class-activitytime-admin.php (added)
• tags/1.0.9/admin/css (added)
• tags/1.0.9/admin/css/activitytime-admin.css (added)
• tags/1.0.9/admin/css/basic.css (added)
• tags/1.0.9/admin/css/contact-admin.css (added)
• tags/1.0.9/admin/css/font-awesome.css (added)
• tags/1.0.9/admin/css/font-awesome.min.css (added)
• tags/1.0.9/admin/css/frontend-dashboard.css (added)
• tags/1.0.9/admin/css/select.dataTables.min.css (added)
• tags/1.0.9/admin/css/style.css (added)
• tags/1.0.9/admin/css/style_rtl.css (added)
• tags/1.0.9/admin/css/sweet-energy-efficiency-admin.css (added)
• tags/1.0.9/admin/css/unwrapped.css (added)
• tags/1.0.9/admin/fonts (added)
• tags/1.0.9/admin/fonts/FontAwesome.otf (added)
• tags/1.0.9/admin/fonts/fontawesome-webfont.eot (added)
• tags/1.0.9/admin/fonts/fontawesome-webfont.svg (added)
• tags/1.0.9/admin/fonts/fontawesome-webfont.ttf (added)
• tags/1.0.9/admin/fonts/fontawesome-webfont.woff (added)
• tags/1.0.9/admin/fonts/fontawesome-webfont.woff2 (added)
• tags/1.0.9/admin/fonts/glyphicons-halflings-regular.eot (added)
• tags/1.0.9/admin/fonts/glyphicons-halflings-regular.svg (added)
• tags/1.0.9/admin/fonts/glyphicons-halflings-regular.ttf (added)
• tags/1.0.9/admin/fonts/glyphicons-halflings-regular.woff (added)
• tags/1.0.9/admin/fonts/glyphicons-halflings-regular.woff2 (added)
• tags/1.0.9/admin/fonts/verdana.ttf (added)
• tags/1.0.9/admin/images (added)
• tags/1.0.9/admin/images/ajax-loader-white-small.gif (added)
• tags/1.0.9/admin/images/ajax-loader-white.gif (added)
• tags/1.0.9/admin/images/ajax-loader.gif (added)
• tags/1.0.9/admin/img (added)
• tags/1.0.9/admin/img/details_close.png (added)
• tags/1.0.9/admin/img/details_open.png (added)
• tags/1.0.9/admin/index.php (added)
• tags/1.0.9/admin/js (added)
• tags/1.0.9/admin/js/activitytime-admin.js (added)
• tags/1.0.9/admin/js/chartjs (added)
• tags/1.0.9/admin/js/chartjs/Chart.bundle.min.js (added)
• tags/1.0.9/admin/js/chartjs/Chart.min.css (added)
• tags/1.0.9/admin/js/chartjs/chartjs_utils.js (added)
• tags/1.0.9/admin/js/dataTables.responsive.js (added)
• tags/1.0.9/admin/js/dataTables.select.min.js (added)
• tags/1.0.9/admin/js/datatables.min.js (added)
• tags/1.0.9/admin/js/jquery-confirm (added)
• tags/1.0.9/admin/js/jquery-confirm/jquery-confirm.min.css (added)
• tags/1.0.9/admin/js/jquery-confirm/jquery-confirm.min.js (added)
• tags/1.0.9/admin/js/magnific-popup (added)
• tags/1.0.9/admin/js/magnific-popup/jquery.magnific-popup.js (added)
• tags/1.0.9/admin/js/magnific-popup/jquery.magnific-popup.min.js (added)
• tags/1.0.9/admin/js/magnific-popup/magnific-popup.css (added)
• tags/1.0.9/admin/partials (added)
• tags/1.0.9/admin/partials/activitytime-admin-display.php (added)
• tags/1.0.9/application (added)
• tags/1.0.9/application/controllers (added)
• tags/1.0.9/application/controllers/Activitytime.php (added)
• tags/1.0.9/application/controllers/Actt_contact_us.php (added)
• tags/1.0.9/application/controllers/Actt_current_active.php (added)
• tags/1.0.9/application/controllers/Actt_related.php (added)
• tags/1.0.9/application/controllers/Actt_sessions.php (added)
• tags/1.0.9/application/controllers/Actt_shortcodes.php (added)
• tags/1.0.9/application/controllers/Actt_time_by_postacc.php (added)
• tags/1.0.9/application/controllers/Actt_time_per_page.php (added)
• tags/1.0.9/application/controllers/Actt_time_per_pageacc.php (added)
• tags/1.0.9/application/controllers/Actt_widgets.php (added)
• tags/1.0.9/application/core (added)
• tags/1.0.9/application/core/MY_Model.php (added)
• tags/1.0.9/application/core/index.html (added)
• tags/1.0.9/application/models (added)
• tags/1.0.9/application/models/Usersessions_m.php (added)
• tags/1.0.9/application/models/Visitedpages_m.php (added)
• tags/1.0.9/application/models/Visitedpagesacc_m.php (added)
• tags/1.0.9/application/views (added)
• tags/1.0.9/application/views/acct_contact (added)
• tags/1.0.9/application/views/acct_contact/index.php (added)
• tags/1.0.9/application/views/acct_shortcodes (added)
• tags/1.0.9/application/views/acct_shortcodes/actt_time_page.php (added)
• tags/1.0.9/application/views/activitytime (added)
• tags/1.0.9/application/views/activitytime/index.php (added)
• tags/1.0.9/application/views/actt_current_active (added)
• tags/1.0.9/application/views/actt_current_active/index.php (added)
• tags/1.0.9/application/views/actt_related (added)
• tags/1.0.9/application/views/actt_related/index.php (added)
• tags/1.0.9/application/views/actt_sessions (added)
• tags/1.0.9/application/views/actt_sessions/index.php (added)
• tags/1.0.9/application/views/actt_time_by_post_pageacc (added)
• tags/1.0.9/application/views/actt_time_by_post_pageacc/index.php (added)
• tags/1.0.9/application/views/actt_time_per_page (added)
• tags/1.0.9/application/views/actt_time_per_page/index.php (added)
• tags/1.0.9/application/views/actt_time_per_pageacc (added)
• tags/1.0.9/application/views/actt_time_per_pageacc/index.php (added)
• tags/1.0.9/application/views/general (added)
• tags/1.0.9/application/views/general/footer.php (added)
• tags/1.0.9/freemius (added)
• tags/1.0.9/freemius/LICENSE.txt (added)
• tags/1.0.9/freemius/README.md (added)
• tags/1.0.9/freemius/assets (added)
• tags/1.0.9/freemius/assets/css (added)
• tags/1.0.9/freemius/assets/css/admin (added)
• tags/1.0.9/freemius/assets/css/admin/account.css (added)
• tags/1.0.9/freemius/assets/css/admin/add-ons.css (added)
• tags/1.0.9/freemius/assets/css/admin/affiliation.css (added)
• tags/1.0.9/freemius/assets/css/admin/checkout.css (added)
• tags/1.0.9/freemius/assets/css/admin/clone-resolution.css (added)
• tags/1.0.9/freemius/assets/css/admin/common.css (added)
• tags/1.0.9/freemius/assets/css/admin/connect.css (added)
• tags/1.0.9/freemius/assets/css/admin/debug.css (added)
• tags/1.0.9/freemius/assets/css/admin/dialog-boxes.css (added)
• tags/1.0.9/freemius/assets/css/admin/gdpr-optin-notice.css (added)
• tags/1.0.9/freemius/assets/css/admin/index.php (added)
• tags/1.0.9/freemius/assets/css/admin/optout.css (added)
• tags/1.0.9/freemius/assets/css/admin/plugins.css (added)
• tags/1.0.9/freemius/assets/css/customizer.css (added)
• tags/1.0.9/freemius/assets/css/index.php (added)
• tags/1.0.9/freemius/assets/img (added)
• tags/1.0.9/freemius/assets/img/index.php (added)
• tags/1.0.9/freemius/assets/img/plugin-icon.png (added)
• tags/1.0.9/freemius/assets/img/theme-icon.png (added)
• tags/1.0.9/freemius/assets/index.php (added)
• tags/1.0.9/freemius/assets/js (added)
• tags/1.0.9/freemius/assets/js/index.php (added)
• tags/1.0.9/freemius/assets/js/nojquery.ba-postmessage.js (added)
• tags/1.0.9/freemius/assets/js/nojquery.ba-postmessage.min.js (added)
• tags/1.0.9/freemius/assets/js/postmessage.js (added)
• tags/1.0.9/freemius/config.php (added)
• tags/1.0.9/freemius/includes (added)
• tags/1.0.9/freemius/includes/class-freemius-abstract.php (added)
• tags/1.0.9/freemius/includes/class-freemius.php (added)
• tags/1.0.9/freemius/includes/class-fs-admin-notices.php (added)
• tags/1.0.9/freemius/includes/class-fs-api.php (added)
• tags/1.0.9/freemius/includes/class-fs-lock.php (added)
• tags/1.0.9/freemius/includes/class-fs-logger.php (added)
• tags/1.0.9/freemius/includes/class-fs-options.php (added)
• tags/1.0.9/freemius/includes/class-fs-plugin-updater.php (added)
• tags/1.0.9/freemius/includes/class-fs-security.php (added)
• tags/1.0.9/freemius/includes/class-fs-storage.php (added)
• tags/1.0.9/freemius/includes/class-fs-user-lock.php (added)
• tags/1.0.9/freemius/includes/customizer (added)
• tags/1.0.9/freemius/includes/customizer/class-fs-customizer-support-section.php (added)
• tags/1.0.9/freemius/includes/customizer/class-fs-customizer-upsell-control.php (added)
• tags/1.0.9/freemius/includes/customizer/index.php (added)
• tags/1.0.9/freemius/includes/debug (added)
• tags/1.0.9/freemius/includes/debug/class-fs-debug-bar-panel.php (added)
• tags/1.0.9/freemius/includes/debug/debug-bar-start.php (added)
• tags/1.0.9/freemius/includes/debug/index.php (added)
• tags/1.0.9/freemius/includes/entities (added)
• tags/1.0.9/freemius/includes/entities/class-fs-affiliate-terms.php (added)
• tags/1.0.9/freemius/includes/entities/class-fs-affiliate.php (added)
• tags/1.0.9/freemius/includes/entities/class-fs-billing.php (added)
• tags/1.0.9/freemius/includes/entities/class-fs-entity.php (added)
• tags/1.0.9/freemius/includes/entities/class-fs-payment.php (added)
• tags/1.0.9/freemius/includes/entities/class-fs-plugin-info.php (added)
• tags/1.0.9/freemius/includes/entities/class-fs-plugin-license.php (added)
• tags/1.0.9/freemius/includes/entities/class-fs-plugin-plan.php (added)
• tags/1.0.9/freemius/includes/entities/class-fs-plugin-tag.php (added)
• tags/1.0.9/freemius/includes/entities/class-fs-plugin.php (added)
• tags/1.0.9/freemius/includes/entities/class-fs-pricing.php (added)
• tags/1.0.9/freemius/includes/entities/class-fs-scope-entity.php (added)
• tags/1.0.9/freemius/includes/entities/class-fs-site.php (added)
• tags/1.0.9/freemius/includes/entities/class-fs-subscription.php (added)
• tags/1.0.9/freemius/includes/entities/class-fs-user.php (added)
• tags/1.0.9/freemius/includes/entities/index.php (added)
• tags/1.0.9/freemius/includes/fs-core-functions.php (added)
• tags/1.0.9/freemius/includes/fs-essential-functions.php (added)
• tags/1.0.9/freemius/includes/fs-html-escaping-functions.php (added)
• tags/1.0.9/freemius/includes/fs-plugin-info-dialog.php (added)
• tags/1.0.9/freemius/includes/index.php (added)
• tags/1.0.9/freemius/includes/l10n.php (added)
• tags/1.0.9/freemius/includes/managers (added)
• tags/1.0.9/freemius/includes/managers/class-fs-admin-menu-manager.php (added)
• tags/1.0.9/freemius/includes/managers/class-fs-admin-notice-manager.php (added)
• tags/1.0.9/freemius/includes/managers/class-fs-cache-manager.php (added)
• tags/1.0.9/freemius/includes/managers/class-fs-clone-manager.php (added)
• tags/1.0.9/freemius/includes/managers/class-fs-gdpr-manager.php (added)
• tags/1.0.9/freemius/includes/managers/class-fs-key-value-storage.php (added)
• tags/1.0.9/freemius/includes/managers/class-fs-license-manager.php (added)
• tags/1.0.9/freemius/includes/managers/class-fs-option-manager.php (added)
• tags/1.0.9/freemius/includes/managers/class-fs-permission-manager.php (added)
• tags/1.0.9/freemius/includes/managers/class-fs-plan-manager.php (added)
• tags/1.0.9/freemius/includes/managers/class-fs-plugin-manager.php (added)
• tags/1.0.9/freemius/includes/managers/index.php (added)
• tags/1.0.9/freemius/includes/sdk (added)
• tags/1.0.9/freemius/includes/sdk/Exceptions (added)
• tags/1.0.9/freemius/includes/sdk/Exceptions/ArgumentNotExistException.php (added)
• tags/1.0.9/freemius/includes/sdk/Exceptions/EmptyArgumentException.php (added)
• tags/1.0.9/freemius/includes/sdk/Exceptions/Exception.php (added)
• tags/1.0.9/freemius/includes/sdk/Exceptions/InvalidArgumentException.php (added)
• tags/1.0.9/freemius/includes/sdk/Exceptions/OAuthException.php (added)
• tags/1.0.9/freemius/includes/sdk/Exceptions/index.php (added)
• tags/1.0.9/freemius/includes/sdk/FreemiusBase.php (added)
• tags/1.0.9/freemius/includes/sdk/FreemiusWordPress.php (added)
• tags/1.0.9/freemius/includes/sdk/LICENSE.txt (added)
• tags/1.0.9/freemius/includes/sdk/index.php (added)
• tags/1.0.9/freemius/includes/supplements (added)
• tags/1.0.9/freemius/includes/supplements/fs-essential-functions-1.1.7.1.php (added)
• tags/1.0.9/freemius/includes/supplements/fs-essential-functions-2.2.1.php (added)
• tags/1.0.9/freemius/includes/supplements/fs-migration-2.5.1.php (added)
• tags/1.0.9/freemius/includes/supplements/index.php (added)
• tags/1.0.9/freemius/index.php (added)
• tags/1.0.9/freemius/languages (added)
• tags/1.0.9/freemius/languages/freemius-cs_CZ.mo (added)
• tags/1.0.9/freemius/languages/freemius-da_DK.mo (added)
• tags/1.0.9/freemius/languages/freemius-de_DE.mo (added)
• tags/1.0.9/freemius/languages/freemius-en.mo (added)
• tags/1.0.9/freemius/languages/freemius-es_ES.mo (added)
• tags/1.0.9/freemius/languages/freemius-fr_FR.mo (added)
• tags/1.0.9/freemius/languages/freemius-he_IL.mo (added)
• tags/1.0.9/freemius/languages/freemius-hu_HU.mo (added)
• tags/1.0.9/freemius/languages/freemius-it_IT.mo (added)
• tags/1.0.9/freemius/languages/freemius-ja.mo (added)
• tags/1.0.9/freemius/languages/freemius-nl_NL.mo (added)
• tags/1.0.9/freemius/languages/freemius-ru_RU.mo (added)
• tags/1.0.9/freemius/languages/freemius-ta.mo (added)
• tags/1.0.9/freemius/languages/freemius-zh_CN.mo (added)
• tags/1.0.9/freemius/languages/freemius.pot (added)
• tags/1.0.9/freemius/languages/index.php (added)
• tags/1.0.9/freemius/require.php (added)
• tags/1.0.9/freemius/start.php (added)
• tags/1.0.9/freemius/templates (added)
• tags/1.0.9/freemius/templates/account (added)
• tags/1.0.9/freemius/templates/account.php (added)
• tags/1.0.9/freemius/templates/account/billing.php (added)
• tags/1.0.9/freemius/templates/account/index.php (added)
• tags/1.0.9/freemius/templates/account/partials (added)
• tags/1.0.9/freemius/templates/account/partials/activate-license-button.php (added)
• tags/1.0.9/freemius/templates/account/partials/addon.php (added)
• tags/1.0.9/freemius/templates/account/partials/deactivate-license-button.php (added)
• tags/1.0.9/freemius/templates/account/partials/disconnect-button.php (added)
• tags/1.0.9/freemius/templates/account/partials/index.php (added)
• tags/1.0.9/freemius/templates/account/partials/site.php (added)
• tags/1.0.9/freemius/templates/account/payments.php (added)
• tags/1.0.9/freemius/templates/add-ons.php (added)
• tags/1.0.9/freemius/templates/add-trial-to-pricing.php (added)
• tags/1.0.9/freemius/templates/admin-notice.php (added)
• tags/1.0.9/freemius/templates/ajax-loader.php (added)
• tags/1.0.9/freemius/templates/api-connectivity-message-js.php (added)
• tags/1.0.9/freemius/templates/auto-installation.php (added)
• tags/1.0.9/freemius/templates/checkout.php (added)
• tags/1.0.9/freemius/templates/clone-resolution-js.php (added)
• tags/1.0.9/freemius/templates/connect (added)
• tags/1.0.9/freemius/templates/connect.php (added)
• tags/1.0.9/freemius/templates/connect/index.php (added)
• tags/1.0.9/freemius/templates/connect/permission.php (added)
• tags/1.0.9/freemius/templates/connect/permissions-group.php (added)
• tags/1.0.9/freemius/templates/contact.php (added)
• tags/1.0.9/freemius/templates/debug (added)
• tags/1.0.9/freemius/templates/debug.php (added)
• tags/1.0.9/freemius/templates/debug/api-calls.php (added)
• tags/1.0.9/freemius/templates/debug/index.php (added)
• tags/1.0.9/freemius/templates/debug/logger.php (added)
• tags/1.0.9/freemius/templates/debug/plugins-themes-sync.php (added)
• tags/1.0.9/freemius/templates/debug/scheduled-crons.php (added)
• tags/1.0.9/freemius/templates/email.php (added)
• tags/1.0.9/freemius/templates/forms (added)
• tags/1.0.9/freemius/templates/forms/affiliation.php (added)
• tags/1.0.9/freemius/templates/forms/data-debug-mode.php (added)
• tags/1.0.9/freemius/templates/forms/deactivation (added)
• tags/1.0.9/freemius/templates/forms/deactivation/contact.php (added)
• tags/1.0.9/freemius/templates/forms/deactivation/form.php (added)
• tags/1.0.9/freemius/templates/forms/deactivation/index.php (added)
• tags/1.0.9/freemius/templates/forms/deactivation/retry-skip.php (added)
• tags/1.0.9/freemius/templates/forms/email-address-update.php (added)
• tags/1.0.9/freemius/templates/forms/index.php (added)
• tags/1.0.9/freemius/templates/forms/license-activation.php (added)
• tags/1.0.9/freemius/templates/forms/optout.php (added)
• tags/1.0.9/freemius/templates/forms/premium-versions-upgrade-handler.php (added)
• tags/1.0.9/freemius/templates/forms/premium-versions-upgrade-metadata.php (added)
• tags/1.0.9/freemius/templates/forms/resend-key.php (added)
• tags/1.0.9/freemius/templates/forms/subscription-cancellation.php (added)
• tags/1.0.9/freemius/templates/forms/trial-start.php (added)
• tags/1.0.9/freemius/templates/forms/user-change.php (added)
• tags/1.0.9/freemius/templates/gdpr-optin-js.php (added)
• tags/1.0.9/freemius/templates/index.php (added)
• tags/1.0.9/freemius/templates/js (added)
• tags/1.0.9/freemius/templates/js/index.php (added)
• tags/1.0.9/freemius/templates/js/jquery.content-change.php (added)
• tags/1.0.9/freemius/templates/js/open-license-activation.php (added)
• tags/1.0.9/freemius/templates/js/permissions.php (added)
• tags/1.0.9/freemius/templates/js/style-premium-theme.php (added)
• tags/1.0.9/freemius/templates/partials (added)
• tags/1.0.9/freemius/templates/partials/index.php (added)
• tags/1.0.9/freemius/templates/partials/network-activation.php (added)
• tags/1.0.9/freemius/templates/plugin-icon.php (added)
• tags/1.0.9/freemius/templates/plugin-info (added)
• tags/1.0.9/freemius/templates/plugin-info/description.php (added)
• tags/1.0.9/freemius/templates/plugin-info/features.php (added)
• tags/1.0.9/freemius/templates/plugin-info/index.php (added)
• tags/1.0.9/freemius/templates/plugin-info/screenshots.php (added)
• tags/1.0.9/freemius/templates/powered-by.php (added)
• tags/1.0.9/freemius/templates/pricing.php (added)
• tags/1.0.9/freemius/templates/secure-https-header.php (added)
• tags/1.0.9/freemius/templates/sticky-admin-notice-js.php (added)
• tags/1.0.9/freemius/templates/tabs-capture-js.php (added)
• tags/1.0.9/freemius/templates/tabs.php (added)
• tags/1.0.9/includes (added)
• tags/1.0.9/includes/class-activitytime-activator.php (added)
• tags/1.0.9/includes/class-activitytime-deactivator.php (added)
• tags/1.0.9/includes/class-activitytime-i18n.php (added)
• tags/1.0.9/includes/class-activitytime-loader.php (added)
• tags/1.0.9/includes/class-activitytime-tracker.php (added)
• tags/1.0.9/includes/class-activitytime.php (added)
• tags/1.0.9/includes/helper-functions.php (added)
• tags/1.0.9/includes/index.php (added)
• tags/1.0.9/index.php (added)
• tags/1.0.9/languages (added)
• tags/1.0.9/languages/activitytime-hr.mo (added)
• tags/1.0.9/languages/activitytime-hr.po (added)
• tags/1.0.9/languages/activitytime-ru_RU.mo (added)
• tags/1.0.9/languages/activitytime-ru_RU.po (added)
• tags/1.0.9/languages/activitytime.pot (added)
• tags/1.0.9/premium_functions.php (added)
• tags/1.0.9/public (added)
• tags/1.0.9/public/class-activitytime-public.php (added)
• tags/1.0.9/public/css (added)
• tags/1.0.9/public/css/activitytime-public.css (added)
• tags/1.0.9/public/css/activitytime-public.scss (added)
• tags/1.0.9/public/index.php (added)
• tags/1.0.9/public/js (added)
• tags/1.0.9/public/js/activitytime-public.js (added)
• tags/1.0.9/public/partials (added)
• tags/1.0.9/public/partials/activitytime-public-display.php (added)
• tags/1.0.9/screenshot-1.jpg (added)
• tags/1.0.9/screenshot-2.jpg (added)
• tags/1.0.9/screenshot-3.jpg (added)
• tags/1.0.9/screenshot-4.png (added)
• tags/1.0.9/shortcodes (added)
• tags/1.0.9/shortcodes/actt_time_page.php (added)
• tags/1.0.9/uninstall.php (added)
• tags/1.0.9/vendor (added)
• tags/1.0.9/vendor/Winter_MVC (added)
• tags/1.0.9/vendor/Winter_MVC/LICENSE (added)
• tags/1.0.9/vendor/Winter_MVC/assets (added)
• tags/1.0.9/vendor/Winter_MVC/assets/css (added)
• tags/1.0.9/vendor/Winter_MVC/assets/css/winter_mvc.css (added)
• tags/1.0.9/vendor/Winter_MVC/assets/js (added)
• tags/1.0.9/vendor/Winter_MVC/assets/js/jquery.wpmediaelement.js (added)
• tags/1.0.9/vendor/Winter_MVC/assets/js/jquery.wpmediaelement_file.js (added)
• tags/1.0.9/vendor/Winter_MVC/assets/js/jquery.wpmediamultiple.js (added)
• tags/1.0.9/vendor/Winter_MVC/core (added)
• tags/1.0.9/vendor/Winter_MVC/core/database.php (added)
• tags/1.0.9/vendor/Winter_MVC/core/form.php (added)
• tags/1.0.9/vendor/Winter_MVC/core/helpers.php (added)
• tags/1.0.9/vendor/Winter_MVC/core/input.php (added)
• tags/1.0.9/vendor/Winter_MVC/core/mvc_loader.php (added)
• tags/1.0.9/vendor/Winter_MVC/core/winter_mvc_controller.php (added)
• tags/1.0.9/vendor/Winter_MVC/core/winter_mvc_model.php (added)
• tags/1.0.9/vendor/Winter_MVC/init.php (added)
• tags/1.0.9/vendor/boo-settings-helper (added)
• tags/1.0.9/vendor/boo-settings-helper/class-boo-settings-helper.php (added)
• tags/1.0.9/vendor/boo-settings-helper/readme.md (added)
• trunk/README.txt (modified) (2 diffs)
• trunk/activitytime.php (modified) (2 diffs)
• trunk/application/controllers/Actt_time_by_postacc.php (modified) (2 diffs)
• trunk/application/views/actt_sessions/index.php (modified) (1 diff)
• trunk/application/views/actt_time_by_post_pageacc/index.php (modified) (1 diff)
• trunk/application/views/actt_time_per_page/index.php (modified) (1 diff)
• trunk/application/views/actt_time_per_pageacc/index.php (modified) (1 diff)
• trunk/includes/class-activitytime.php (modified) (2 diffs)
• trunk/vendor/Winter_MVC/core/helpers.php (modified) (4 diffs)
• trunk/vendor/Winter_MVC/core/mvc_loader.php (modified) (3 diffs)

activitytime/trunk/README.txt

@@ -5 +5 @@
 Requires at least: 5.0
 Tested up to: 6.3
-Stable tag: 1.0.9
+Stable tag: 1.1.0
 License: GPLv2 or later
 License URI: http://www.gnu.org/licenses/gpl-2.0.html
@@ -68 +68 @@
 == Changelog ==
 
+= 1.1.0 =
+* Security fix
+
 = 1.0.9 =
 * Activity time By Post Type

activitytime/trunk/activitytime.php

@@ -17 +17 @@
  * Plugin URI:        https://swit.hr/
  * Description:       Plugin will accurately measure all activity time per page and user like working time, reading time, watching time, sessions time for specific user on specific page.
- * Version:           1.0.9
+ * Version:           1.1.0
  * Author:            SWIT
  * Author URI:        https://swit.hr/
@@ -39 +39 @@
  * Rename this for your plugin and update it as you release new versions.
  */
-define( 'ACTIVITYTIME_VERSION', '1.0.8' );
+define( 'ACTIVITYTIME_VERSION', '1.1.0' );
 define( 'ACTIVITYTIME_NAME', 'actt' );
 define( 'ACTIVITYTIME_PATH', plugin_dir_path( __FILE__ ) );

activitytime/trunk/application/controllers/Actt_time_by_postacc.php

@@ -205 +205 @@
         // configuration
         $where = array();
-        $post_type = sanitize_text_field($this->input->get('post_type'));
+        $post_type = sanitize_text_field($this->input->get('type'));
         if(!empty($post_type)) {
 
@@ -223 +223 @@
         }
 
+        $field_user = sanitize_text_field($this->input->get('filter_user'));
+        if(!empty($field_user))
+            $where['(user_info LIKE "%'.esc_html($field_user).'%")'] = NULL;
+        
         /* modify GET for actt_prepare_search_query_GET */
         global $_GET;

activitytime/trunk/application/views/actt_sessions/index.php

@@ -79 +79 @@
     var table;
 
-    $('#din-table input[type="text"]').val('');
+    $('#din-table input[type="text"]:not([name="filter_user"])').val('');
 
     /* update filters for export */

activitytime/trunk/application/views/actt_time_by_post_pageacc/index.php

@@ -223 +223 @@
                 $('#din-table input[type="text"],.dataTables_filter input.dinamic_par,input[name="post_type"]').on('input', function()
                 {
-                    var query_filter = $('#din-table input[type="text"],.dataTables_filter input.dinamic_par,input[name="post_type"]').serialize();
+                    var query_filter = $('#din-table input[type="text"],.dataTables_filter input.dinamic_par,input[name="post_type"]').serialize().replace('post_type','type');
                     $('.export_csv').attr('href', '<?php echo get_admin_url() . "admin.php?page=actt_time_by_postacc&function=export_csv_per_page"; ?>&'+query_filter.replace(/-/g, "+hyphens+"));
                 });

activitytime/trunk/application/views/actt_time_per_page/index.php

@@ -82 +82 @@
 jQuery(document).ready(function($) {
 
-    $('#din-table input[type="text"]').val('');
+    $('#din-table input[type="text"]:not([name="filter_title"])').val('');
 
     /* update filters for export */

activitytime/trunk/application/views/actt_time_per_pageacc/index.php

@@ -89 +89 @@
     });*/
 
-    $('#din-table input[type="text"]').val('');
+    $('#din-table input[type="text"]:not([name="filter_title"])').val('');
 
     $('#din-table input[type="text"]').on('keyup', function()
     {
-        var query_filter = $('#din-table input[type="text"]').serialize();
+        var query_filter = $('#din-table input[type="text"]').serialize().replace('post_type','type');
 
         $('.export_csv').attr('href', '<?php echo get_admin_url() . "admin.php?page=actt_time_per_pageacc&function=export_csv_per_pageacc"; ?>&'+query_filter);

activitytime/trunk/includes/class-activitytime.php

@@ -377 +377 @@
         global $wpdb;
 
+
+        $wmvc_xss_clean_uri = function($uri_prepared) {
+            
+            $uri_prepared = str_replace(array('SELECT ', '"',"'",'%2527','%27','UPDATE ','SLEEP('), '', $uri_prepared);
+
+            $dangerous_schemes = ['javascript:', 'data:', 'vbscript:', 'alert(','OR 1=1'];
+            foreach ($dangerous_schemes as $scheme) {
+                if (stripos($uri_prepared, $scheme) === 0) {
+                    return '';
+                }
+            }
+        
+            return $uri_prepared;
+        };
+        
         // regular update time_end
-        
         $query = 'UPDATE '.$wpdb->prefix.'actt_visited_pages SET time_end=\''.current_time( 'mysql' ).
-                 '\' WHERE request_uri = \''.sanitize_text_field(wmvc_xss_clean($uri_prepared)).'\'';
+                 '\' WHERE request_uri = \''.esc_sql($wmvc_xss_clean_uri(sanitize_text_field(wmvc_xss_clean($uri_prepared)))).'\'';
     
         if(!empty(get_current_user_id()))
@@ -388 +402 @@
         else
         {
-            $query .= ' AND ip=\''.sanitize_text_field(actt_get_the_user_ip()).'\'';
+            $query .= ' AND ip=\''.esc_sql(sanitize_text_field(actt_get_the_user_ip())).'\'';
         }
 

activitytime/trunk/vendor/Winter_MVC/core/helpers.php

@@ -837 +837 @@
     foreach($options as $key=>$val)
     {
-        $output.= '<option value="'.$key.'" '.($selected==$key?'selected':'').'>'.$val.'</option>';
+        $output.= '<option value="'.$key.'" '.($selected==$key&&$selected != ''?'selected':'').'>'.$val.'</option>';
     }
 
@@ -953 +953 @@
         <a class="delete-custom-img <?php if ( ! $you_have_file  ) { echo 'hidden'; } ?>" 
         href="#">
-            <?php echo esc_html__('Remove file','wmvc_win') ?>
+            <?php echo esc_html__('Remove all files','wmvc_win') ?>
         </a>
     </p>
@@ -1047 +1047 @@
         <a class="button button-secondary delete-custom-img <?php if ( ! $you_have_img  ) { echo 'hidden'; } ?>" 
         href="#">
-            <?php echo esc_html__('Remove images','wmvc_win') ?>
+            <?php echo esc_html__('Remove all images','wmvc_win') ?>
         </a>
     </p>
@@ -1151 +1151 @@
     // Remove namespaced elements (we do not need them)
     $data = preg_replace('#</*\w+:\w[^>]*+>#i', '', $data);
+    $data = preg_replace("/(\b1=1\b|\) OR\b)/", "", $data);
+    $data = preg_replace("/alert\(/", "", $data);
 
     do

activitytime/trunk/vendor/Winter_MVC/core/mvc_loader.php

@@ -78 +78 @@
         if(empty($this->plugin_directory))
         {
-            $file = WINTER_MVC_PATH.'/../../application/helpers/'.sanitize_file_name(ucfirst($filename)).'.php';
-        }
-        else
-        {
-            $file = $this->plugin_directory.'application/helpers/'.sanitize_file_name(ucfirst($filename)).'.php';
+            $file = WINTER_MVC_PATH.'/../../application/helpers/'.ucfirst(sanitize_file_name($filename)).'.php';
+        }
+        else
+        {
+            $file = $this->plugin_directory.'application/helpers/'.ucfirst(sanitize_file_name($filename)).'.php';
         }
 
@@ -93 +93 @@
         if(empty($this->plugin_directory))
         {
-            $file = WINTER_MVC_PATH.'/../../application/controllers/'.sanitize_file_name(ucfirst($class)).'.php';
-        }
-        else
-        {
-            $file = $this->plugin_directory.'application/controllers/'.sanitize_file_name(ucfirst($class)).'.php';
+            $file = WINTER_MVC_PATH.'/../../application/controllers/'.ucfirst(sanitize_file_name($class)).'.php';
+        }
+        else
+        {
+            $file = $this->plugin_directory.'application/controllers/'.ucfirst(sanitize_file_name($class)).'.php';
         }
 
@@ -197 +197 @@
         if(empty($this->plugin_directory))
         {
-            $file = WINTER_MVC_PATH.'/../../application/models/'.sanitize_file_name(ucfirst($class)).'.php';
-        }
-        else
-        {
-            $file = $this->plugin_directory.'application/models/'.sanitize_file_name(ucfirst($class)).'.php';
+            $file = WINTER_MVC_PATH.'/../../application/models/'.ucfirst(sanitize_file_name($class)).'.php';
+        }
+        else
+        {
+            $file = $this->plugin_directory.'application/models/'.ucfirst(sanitize_file_name($class)).'.php';
         }