Changeset 1075457
- Timestamp:
- 01/25/2015 11:19:56 PM (11 years ago)
- Location:
- wp-jcryption/trunk
- Files:
-
- 2 edited
-
readme.txt (modified) (1 diff)
-
wp-jcryption.php (modified) (2 diffs)
Legend:
- Unmodified
- Added
- Removed
-
wp-jcryption/trunk/readme.txt
r1070167 r1075457 83 83 == Changelog == 84 84 85 = 0.4 = 86 * removed unnecessary printing $_POST in the end of wp_jcryption_entry function 87 (it was there for testing purpose but could be a target for XSS, thanks to Konstantin Kovshenin for this notice). 88 85 89 = 0.3 = 86 90 * 'fix_submit' plugin setting is checked on install to let the plugin work with the user profile form; -
wp-jcryption/trunk/wp-jcryption.php
r1070167 r1075457 2 2 /* 3 3 Plugin Name: WP jCryption Security 4 Version: 0. 34 Version: 0.4 5 5 Description: Prevents forms data against sniffing network traffic through encryption provided by jCryption javascript library. Useful for owners of small sites who want to secure their passwords and other posted data but don't want to buy SSL certificate for each domain and subdomain, it protects from sniffing the most important data such as passwords when they are being sent from forms of your site to the server (to learn how jCryption works visit jCryption site: www.jcryption.org). 6 6 Requires at least: 3.8.1 … … 276 276 if (!empty($_GET['wp_jcryption_entry'])) { 277 277 $jc->go(); 278 header('Content-Type: text/plain'); 279 print_r($_POST); 280 exit; 281 } 282 } 278 } 279 }
Note: See TracChangeset
for help on using the changeset viewer.