Changeset 3254388

Timestamp:

03/12/2025 02:32:51 AM (11 months ago)

Author:

GamerZ

Message:

Deploying wp-downloadmanager from GitHub

Location:

wp-downloadmanager/trunk

Files:

• download-templates.php (modified) (2 diffs)
• readme.txt (modified) (2 diffs)
• wp-downloadmanager.php (modified) (3 diffs)

wp-downloadmanager/trunk/download-templates.php

@@ -10 +10 @@
 $base_page = 'admin.php?page='.$base_name;
 
+### Allow Tags
+$allowed_tags = wp_kses_allowed_html( 'post' );
+$allowed_tags['input'] = array(
+    'class'     => true,
+    'id'        => true,
+    'name'      => true,
+    'type'      => true,
+    'value'     => true,
+);
+$allowed_tags['form'] = array(
+    'action'    => true,
+    'class'     => true,
+    'id'        => true,
+    'method'    => true,
+    'name'      => true,
+);
 
 ### If Form Is Submitted
@@ -18 +34 @@
     $download_template_most = array();
     $download_template_header = ! empty ( $_POST['download_template_header'] ) ? wp_kses_post( trim( $_POST['download_template_header'] ) ) : '';
-    $download_template_footer = ! empty ( $_POST['download_template_footer'] ) ? wp_kses_post( trim( $_POST['download_template_footer'] ) )  : '';
+    $download_template_footer = ! empty ( $_POST['download_template_footer'] ) ? wp_kses( trim( $_POST['download_template_footer'] ), $allowed_tags )  : '';
     $download_template_pagingheader = ! empty ( $_POST['download_template_pagingheader'] ) ? wp_kses_post( trim( $_POST['download_template_pagingheader'] ) )  : '';
     $download_template_pagingfooter = ! empty ( $_POST['download_template_pagingfooter'] ) ? wp_kses_post( trim( $_POST['download_template_pagingfooter'] ) )  : '';

wp-downloadmanager/trunk/readme.txt

@@ -4 +4 @@
 Tags: file, files, download, downloads, manager, downloadmanager, downloadsmanager, filemanager, filesmanager  
 Requires at least: 4.0  
-Tested up to: 6.6  
-Stable tag: 1.68.9  
+Tested up to: 6.7  
+Stable tag: 1.68.10  
 License: GPLv2  
 
@@ -62 +62 @@
 
 ## Changelog
+* FIXED: Allow form in Download Page Footer template.
+
 ### Version 1.68.9
 * FIXED: XSS file_sortby and file_sortorder in download-manager.php 

wp-downloadmanager/trunk/wp-downloadmanager.php

@@ -4 +4 @@
 Plugin URI: https://lesterchan.net/portfolio/programming/php/
 Description: Adds a simple download manager to your WordPress blog.
-Version: 1.68.9
+Version: 1.68.10
 Author: Lester 'GaMerZ' Chan
 Author URI: https://lesterchan.net
@@ -12 +12 @@
 
 /*
-    Copyright 2024  Lester Chan  (email : [email protected])
+    Copyright 2025  Lester Chan  (email : [email protected])
 
     This program is free software; you can redistribute it and/or modify
@@ -31 +31 @@
 
 ### Version
-define( 'WP_DOWNLOADMANAGER_VERSION', '1.68.9' );
+define( 'WP_DOWNLOADMANAGER_VERSION', '1.68.10' );
 
 ### Create text domain for translations