Changeset 3298452
- Timestamp:
- 05/22/2025 05:08:23 AM (7 months ago)
- Location:
- activity-link-preview-for-buddypress
- Files:
-
- 15 added
- 2 edited
-
tags/1.6.1 (added)
-
tags/1.6.1/.gitignore (added)
-
tags/1.6.1/assets (added)
-
tags/1.6.1/assets/css (added)
-
tags/1.6.1/assets/css/bp-activity-link-preview.css (added)
-
tags/1.6.1/assets/js (added)
-
tags/1.6.1/assets/js/bp-activity-link-preview.js (added)
-
tags/1.6.1/bp-activity-link-preview.php (added)
-
tags/1.6.1/gruntfile.js (added)
-
tags/1.6.1/languages (added)
-
tags/1.6.1/languages/bp-fav-notification.pot (added)
-
tags/1.6.1/package-lock.json (added)
-
tags/1.6.1/package.json (added)
-
tags/1.6.1/readme.txt (added)
-
tags/1.6.1/screenshot-1.png (added)
-
trunk/bp-activity-link-preview.php (modified) (2 diffs)
-
trunk/readme.txt (modified) (2 diffs)
Legend:
- Unmodified
- Added
- Removed
-
activity-link-preview-for-buddypress/trunk/bp-activity-link-preview.php
r3287274 r3298452 5 5 * Plugin Name: Activity Link Preview For BuddyPress 6 6 * Plugin URI: https://wbcomdesigns.com/downloads/buddypress-activity-link-preview/ 7 * Description: BuddyPress activity link preview display as image title and description from the site When links are used in activity posts.8 * Version: 1.6. 07 * Description: BuddyPress activity link preview displays as image title and description from the site when links are used in activity posts. 8 * Version: 1.6.1 9 9 * Author: wbcomdesigns 10 10 * Author URI: https://wbcomdesigns.com/ … … 318 318 */ 319 319 function bp_activity_link_preview_save_link_data( $activity ) { 320 $bp_activity_nonce = isset( $_POST['_wpnonce_post_update'] ) ? sanitize_text_field( wp_unslash( $_POST['_wpnonce_post_update'] ) ) : ''; 321 // Check for nonce security. 322 if ( empty( $bp_activity_nonce ) || ! wp_verify_nonce( $bp_activity_nonce, 'post_update' ) ) { 323 die( 'Security check failed.' ); 324 } 320 325 321 if ( isset( $_POST['link_url'] ) && isset( $_POST['link_title'] ) && isset( $_POST['link_description'] ) && isset( $_POST['link_image'] ) ) { 326 322 -
activity-link-preview-for-buddypress/trunk/readme.txt
r3287274 r3298452 5 5 Requires at least: 3.0.1 6 6 Tested up to: 6.8.0 7 Stable tag: 1.6. 07 Stable tag: 1.6.1 8 8 License: GPLv2 or later 9 9 License URI: http://www.gnu.org/licenses/gpl-2.0.html … … 36 36 37 37 == Changelog == 38 = 1.6.1 = 39 * Security: Patched SSRF (Server Side Request Forgery) vulnerability in the URL parser. 38 40 39 41 = 1.6.0 =
Note: See TracChangeset
for help on using the changeset viewer.