Context Navigation

← Previous Changeset
Next Changeset →

Changeset 3265228

Timestamp:

04/01/2025 04:05:39 PM (10 months ago)

Author:

denra

Message:

2.6.8

Fixed: Possible "vulnerability" when a registered contributor creates post or page content using a [wpdts] shortcode in it and purposely places a JavaScript code in the post_id attribute. Then if the submitted content is overlooked and published by the administrator or the editor, the inserted JavaScript will run causing an XSS issue.

Location:

wp-date-and-time-shortcode/tags/2.6.8

Files:

: 32 added

. (added)
denra-plugins (added)
denra-plugins/classes (added)
denra-plugins/classes/Basic.php (added)
denra-plugins/classes/BasicExtra.php (added)
denra-plugins/classes/Framework.php (added)
denra-plugins/classes/FrameworkLoader.php (added)
denra-plugins/classes/Plugin.php (added)
denra-plugins/classes/PluginHooks.php (added)
denra-plugins/i18n (added)
denra-plugins/i18n/denra-plugins-bg_BG.mo (added)
denra-plugins/i18n/denra-plugins-bg_BG.po (added)
denra-plugins/i18n/denra-plugins.pot (added)
denra-plugins/static (added)
denra-plugins/static/css (added)
denra-plugins/static/css/admin.css (added)
denra-plugins/static/images (added)
denra-plugins/static/js (added)
plugin (added)
plugin/classes (added)
plugin/classes/WPDateAndTimeShortcode.php (added)
plugin/classes/WPDateAndTimeShortcodeHooks.php (added)
plugin/i18n (added)
plugin/i18n/denra-wp-dt-bg_BG.mo (added)
plugin/i18n/denra-wp-dt-bg_BG.po (added)
plugin/i18n/denra-wp-dt.pot (added)
plugin/static (added)
plugin/static/css (added)
plugin/static/images (added)
plugin/static/js (added)
readme.txt (added)
wp-date-and-time-shortcode.php (added)

Note: See TracChangeset for help on using the changeset viewer.

Trac UI Preferences

Download in other formats: