WordPress.org
Get WordPress

Plugin Directory

Changeset 2339909


Ignore:
Timestamp:
07/13/2020 07:27:55 PM (6 years ago)
Author:
brewlabs
Message:

Security fix

Location:
sendpress/trunk
Files:
3 edited

Legend:

Unmodified
Added
Removed

  • sendpress/trunk/classes/views/class-sendpress-view-settings-account.php

    r2338634 r2339909  
    122122            <div class="form-group">
    123123                <label for="fromname"><?php _e('From Name','sendpress'); ?></label>
    124                 <input name="fromname" tabindex=1 type="text" id="fromname" value="<?php echo SendPress_Option::get('fromname'); ?>" class="form-control">
     124                <input name="fromname" tabindex=1 type="text" id="fromname" value="<?php echo esc_attr( SendPress_Option::get('fromname')); ?>" class="form-control">
    125125            </div>
    126126            <div class="form-group">
    127127                <label for="fromemail"><?php _e('From Email','sendpress'); ?></label>
    128                 <input name="fromemail" tabindex=2 type="text" id="fromemail" value="<?php echo SendPress_Option::get('fromemail'); ?>" class="form-control">
     128                <input name="fromemail" tabindex=2 type="text" id="fromemail" value="<?php echo esc_attr( SendPress_Option::get('fromemail')); ?>" class="form-control">
    129129            </div>
    130130
     
    136136            <div class="form-group">
    137137                <label for="testemail"><?php _e('Where to send Test Email','sendpress'); ?></label>
    138                 <input name="testemail" type="text" id="test-email-main" value="<?php echo SendPress_Option::get( 'testemail' ); ?>" class="form-control"/>
     138                <input name="testemail" type="text" id="test-email-main" value="<?php echo esc_attr( SendPress_Option::get( 'testemail' )); ?>" class="form-control"/>
    139139            </div>
    140140            <div class="sp-row">
     
    387387<form method="post" id="post-test" class="form-inline">
    388388    <input type="hidden" name="action" value="send-test-email" />
    389     <input name="testemail" type="hidden" id="test-email-form" value="<?php echo SendPress_Option::get( 'testemail' ); ?>" class="form-control"/>
     389    <input name="testemail" type="hidden" id="test-email-form" value="<?php echo esc_attr( SendPress_Option::get( 'testemail' )); ?>" class="form-control"/>
    390390
    391391    <br class="clear">

  • sendpress/trunk/readme.txt

    r2338634 r2339909  
    55Requires at least: 4.4
    66Tested up to: 5.4
    7 Stable tag: 1.20.7.10
     7Stable tag: 1.20.7.13
    88License: GPLv2 or later
    99License URI: http://www.gnu.org/licenses/gpl-2.0.html
     
    119119Previous releases can be downloaded from [GitHub](https://github.com/brewlabs/sendpress/releases)
    120120
     121= 1.20.7.13 - 2020.7.13 =
     122* Security fixes for settings page
     123
    121124= 1.20.7.10 - 2020.7.10 =
    122125* Security fixes and updates

  • sendpress/trunk/sendpress.php

    r2338634 r2339909  
    22/*
    33Plugin Name: SendPress Newsletters
    4 Version: 1.20.7.10
     4Version: 1.20.7.13
    55Plugin URI: https://sendpress.com
    66Description: Easy to manage Newsletters for WordPress.
     
    2020define( 'SENDPRESS_API_VERSION', 1 );
    2121define( 'SENDPRESS_MINIMUM_WP_VERSION', '3.6' );
    22 define( 'SENDPRESS_VERSION', '1.20.7.10' );
     22define( 'SENDPRESS_VERSION', '1.20.7.13' );
    2323define( 'SENDPRESS_URL', plugin_dir_url( __FILE__ ) );
    2424define( 'SENDPRESS_PATH', plugin_dir_path( __FILE__ ) );
Note: See TracChangeset for help on using the changeset viewer.