Changeset 3281379
- Timestamp:
- 04/25/2025 02:11:54 AM (10 months ago)
- Location:
- wp-mailing-group
- Files:
-
- 95 added
- 3 edited
-
tags/3.0.5 (added)
-
tags/3.0.5/crons (added)
-
tags/3.0.5/crons/wpmg_cron_attachments.php (added)
-
tags/3.0.5/crons/wpmg_cron_bounced_email.php (added)
-
tags/3.0.5/crons/wpmg_cron_parse_email.php (added)
-
tags/3.0.5/crons/wpmg_cron_send_email.php (added)
-
tags/3.0.5/css (added)
-
tags/3.0.5/css/demo_table.css (added)
-
tags/3.0.5/css/wpmg-bootstrap-wrapper.css (added)
-
tags/3.0.5/images (added)
-
tags/3.0.5/images/add.png (added)
-
tags/3.0.5/images/back_disabled.png (added)
-
tags/3.0.5/images/back_enabled.png (added)
-
tags/3.0.5/images/back_enabled_hover.png (added)
-
tags/3.0.5/images/bin.png (added)
-
tags/3.0.5/images/del-inform.png (added)
-
tags/3.0.5/images/delete.png (added)
-
tags/3.0.5/images/edit.png (added)
-
tags/3.0.5/images/forward_disabled.png (added)
-
tags/3.0.5/images/forward_enabled.png (added)
-
tags/3.0.5/images/forward_enabled_hover.png (added)
-
tags/3.0.5/images/import.png (added)
-
tags/3.0.5/images/list.png (added)
-
tags/3.0.5/images/mail-incoming.png (added)
-
tags/3.0.5/images/mail_outgoing.png (added)
-
tags/3.0.5/images/mg_close.png (added)
-
tags/3.0.5/images/mg_loading.gif (added)
-
tags/3.0.5/images/remove.png (added)
-
tags/3.0.5/images/sort_asc.png (added)
-
tags/3.0.5/images/sort_asc_disabled.png (added)
-
tags/3.0.5/images/sort_both.png (added)
-
tags/3.0.5/images/sort_desc.png (added)
-
tags/3.0.5/images/sort_desc_disabled.png (added)
-
tags/3.0.5/images/tick.png (added)
-
tags/3.0.5/images/user_add.png (added)
-
tags/3.0.5/images/view_archive.png (added)
-
tags/3.0.5/images/view_archive_blur-old.png (added)
-
tags/3.0.5/images/view_archive_blur.png (added)
-
tags/3.0.5/images/view_users.png (added)
-
tags/3.0.5/images/wpmg_import_wordpress_users.png (added)
-
tags/3.0.5/images/wpmg_mailing_group_icons.png (added)
-
tags/3.0.5/images/zoom-in.png (added)
-
tags/3.0.5/js (added)
-
tags/3.0.5/js/ColVis.js (added)
-
tags/3.0.5/js/custom.js (added)
-
tags/3.0.5/js/custommenu.js (added)
-
tags/3.0.5/js/jquery.dataTables.js (added)
-
tags/3.0.5/languages (added)
-
tags/3.0.5/languages/mailing-group-module-de_DE.mo (added)
-
tags/3.0.5/languages/mailing-group-module-de_DE.po (added)
-
tags/3.0.5/languages/mailing-group-module-en_US.mo (added)
-
tags/3.0.5/languages/mailing-group-module-en_US.po (added)
-
tags/3.0.5/languages/mailing-group-module-es_ES.mo (added)
-
tags/3.0.5/languages/mailing-group-module-es_ES.po (added)
-
tags/3.0.5/lib (added)
-
tags/3.0.5/lib/captcha.php (added)
-
tags/3.0.5/lib/class.phpmailer.php (added)
-
tags/3.0.5/lib/class.smtp.php (added)
-
tags/3.0.5/lib/mailinggroupclass.php (added)
-
tags/3.0.5/lib/receivemail.class.php (added)
-
tags/3.0.5/lib/vcard.php (added)
-
tags/3.0.5/mailing-group-module.php (added)
-
tags/3.0.5/readme.txt (added)
-
tags/3.0.5/screenshot-1.png (added)
-
tags/3.0.5/screenshot-2.png (added)
-
tags/3.0.5/screenshot-3.png (added)
-
tags/3.0.5/screenshot-4.png (added)
-
tags/3.0.5/screenshot-5.png (added)
-
tags/3.0.5/screenshot-6.png (added)
-
tags/3.0.5/template (added)
-
tags/3.0.5/template/mg_adminmessageadd.php (added)
-
tags/3.0.5/template/mg_adminmessagelist.php (added)
-
tags/3.0.5/template/mg_contact.php (added)
-
tags/3.0.5/template/mg_formstyle.php (added)
-
tags/3.0.5/template/mg_help.php (added)
-
tags/3.0.5/template/mg_imapemailconnection.php (added)
-
tags/3.0.5/template/mg_importuser.php (added)
-
tags/3.0.5/template/mg_intro_text.php (added)
-
tags/3.0.5/template/mg_mailinggroupadd.php (added)
-
tags/3.0.5/template/mg_mailinggrouplist.php (added)
-
tags/3.0.5/template/mg_mailingrequest.php (added)
-
tags/3.0.5/template/mg_mailingrequestadd.php (added)
-
tags/3.0.5/template/mg_memberadd.php (added)
-
tags/3.0.5/template/mg_membergroups.php (added)
-
tags/3.0.5/template/mg_memberlist.php (added)
-
tags/3.0.5/template/mg_messageadd.php (added)
-
tags/3.0.5/template/mg_messagelist.php (added)
-
tags/3.0.5/template/mg_sendmessage.php (added)
-
tags/3.0.5/template/mg_settingstab.php (added)
-
tags/3.0.5/template/mg_testmail.php (added)
-
tags/3.0.5/template/mg_user_form.php (added)
-
tags/3.0.5/template/mg_viewmessage.php (added)
-
tags/3.0.5/template/mg_viewmessageajax.php (added)
-
tags/3.0.5/template/temp (added)
-
tags/3.0.5/template/temp/sample.vcf (added)
-
trunk/mailing-group-module.php (modified) (4 diffs)
-
trunk/readme.txt (modified) (2 diffs)
-
trunk/template/mg_mailinggrouplist.php (modified) (2 diffs)
Legend:
- Unmodified
- Added
- Removed
-
wp-mailing-group/trunk/mailing-group-module.php
r3275177 r3281379 1 1 <?php /** 2 2 * @package Mailing_group_module 3 * @version 3.0. 43 * @version 3.0.5 4 4 */ 5 5 /* … … 9 9 Author: Yamna Khawaja 10 10 Author URI: https://www.wpmailinggroup.com/ 11 Version: 3.0. 411 Version: 3.0.5 12 12 License: GPL v2 or later 13 13 License URI: https://www.gnu.org/licenses/gpl-2.0.html … … 39 39 40 40 $WPMG_SETTINGS = get_option("WPMG_SETTINGS"); 41 $MG_VERSION_NO = '3.0. 4';41 $MG_VERSION_NO = '3.0.5'; 42 42 $WPMG_SETTINGS['MG_VERSION_NO'] = $MG_VERSION_NO; 43 43 $WPMG_SETTINGS['MG_PLUGIN_TYPE'] = 'FREE'; … … 144 144 $MG_SUPPORT_EMAIL = (isset($wpmgs['MG_SUPPORT_EMAIL']) && $wpmgs['MG_SUPPORT_EMAIL']!=''?esc_html($wpmgs['MG_SUPPORT_EMAIL']):'[email protected]'); 145 145 $MG_SUPPORT_PHONE = (isset($wpmgs['MG_SUPPORT_PHONE']) && $wpmgs['MG_SUPPORT_PHONE']!=''?esc_html($wpmgs['MG_SUPPORT_PHONE']):'1800-123-1234'); 146 $MG_VERSION_NO = (isset($wpmgs['MG_VERSION_NO']) && $wpmgs['MG_VERSION_NO']!=''?esc_html($wpmgs['MG_VERSION_NO']):'3.0. 4');146 $MG_VERSION_NO = (isset($wpmgs['MG_VERSION_NO']) && $wpmgs['MG_VERSION_NO']!=''?esc_html($wpmgs['MG_VERSION_NO']):'3.0.5'); 147 147 148 148 $wpmg_setting = array( -
wp-mailing-group/trunk/readme.txt
r3275177 r3281379 6 6 Tested up to: 6.8 7 7 Tested up to PHP: 8.2 8 Stable tag: 3.0. 48 Stable tag: 3.0.5 9 9 License: GPLv2 or later 10 10 License URI: https://www.gnu.org/licenses/gpl-2.0.html … … 132 132 == Changelog == 133 133 134 =3.0.5 = 135 *Resolved sql injection vulnerability. 136 134 137 =3.0.4 = 135 138 *Tested with latest wp version. -
wp-mailing-group/trunk/template/mg_mailinggrouplist.php
r3268122 r3281379 10 10 11 11 if ($info == "del") { 12 13 $wpdb->query("delete from " . $table_name_group . " where id=" . $delid); 14 15 $wpdb->query("delete from " . $table_name_requestmanager_taxonomy . " where group_id=" . $delid); 16 17 wpmg_showmessages("updated", __("Mailing group has been deleted successfully.", 'wp-mailing-group')); 12 // Check if user is logged in 13 if (!is_user_logged_in()) { 14 wp_die(__('You must be logged in to perform this action.', 'wp-mailing-group')); 15 } 16 17 // Ensure user has proper capabilities 18 if (!current_user_can('manage_options')) { 19 wp_die(__('You do not have sufficient permissions to access this page.', 'wp-mailing-group')); 20 } 21 22 // Verify nonce 23 if (!isset($_GET['_wpnonce']) || !wp_verify_nonce($_GET['_wpnonce'], 'delete_mailing_group')) { 24 wp_die(__('Security check failed', 'wp-mailing-group')); 25 } 26 27 // Ensure $delid is a positive integer 28 $delid = absint($delid); 29 if ($delid > 0) { 30 // Use prepared statements 31 $wpdb->query($wpdb->prepare("DELETE FROM $table_name_group WHERE id = %d", $delid)); 32 $wpdb->query($wpdb->prepare("DELETE FROM $table_name_requestmanager_taxonomy WHERE group_id = %d", $delid)); 33 wpmg_showmessages("updated", __("Mailing group has been deleted successfully.", 'wp-mailing-group')); 34 } 18 35 } 19 36 … … 184 201 |<a class="import_users" title="<?php esc_attr_e("Import Users", 'wp-mailing-group'); ?>" href="admin.php?page=wpmg_mailinggroup_importuser&gid=<?php echo esc_attr($id); ?>"></a> 185 202 186 |<a class="quick_edit edit_record" title="<?php esc_attr_e("Edit", 'wp-mailing-group'); ?>" name="<?php echo esc_attr($id); ?>" href="#"></a>|<a class="delete_record" title="<?php esc_attr_e("Delete", 'wp-mailing-group'); ?>" href=" admin.php?page=wpmg_mailinggroup_list&info=del&did=<?php echo esc_attr($id); ?>" onclick="return confirm('<?php echo esc_js(__("Are you sure you want to delete this group?", 'wp-mailing-group')); ?>');"></a>203 |<a class="quick_edit edit_record" title="<?php esc_attr_e("Edit", 'wp-mailing-group'); ?>" name="<?php echo esc_attr($id); ?>" href="#"></a>|<a class="delete_record" title="<?php esc_attr_e("Delete", 'wp-mailing-group'); ?>" href="<?php echo wp_nonce_url('admin.php?page=wpmg_mailinggroup_list&info=del&did=' . esc_attr($id), 'delete_mailing_group'); ?>" onclick="return confirm('<?php echo esc_js(__("Are you sure you want to delete this group?", 'wp-mailing-group')); ?>');"></a> 187 204 </td> 188 205
Note: See TracChangeset
for help on using the changeset viewer.