Changeset 2442425
- Timestamp:
- 12/18/2020 03:44:16 PM (5 years ago)
- Location:
- wp-users-pro/trunk
- Files:
-
- 5 edited
-
admin/tabs/gateway.php (modified) (1 diff)
-
classes/wpuserspro.profile.php (modified) (7 diffs)
-
index.php (modified) (1 diff)
-
readme.txt (modified) (2 diffs)
-
templates/basic/user-account-styles.css (modified) (1 diff)
Legend:
- Unmodified
- Added
- Removed
-
wp-users-pro/trunk/admin/tabs/gateway.php
r2440570 r2442425 1 1 <?php 2 if ( ! defined( 'ABSPATH' ) ) exit; // Exit if accessed directly 2 3 global $wpuserspro, $wpuserspro_stripe; 3 4 ?> -
wp-users-pro/trunk/classes/wpuserspro.profile.php
r2440579 r2442425 191 191 function get_user_pic( $id, $size, $pic_type=NULL, $pic_boder_type= NULL, $size_type=NULL, $with_url=true ) 192 192 { 193 194 $dimension_2 = ""; 193 195 194 196 global $wpuserspro; … … 276 278 // (Most of the code comes from media.php and handlers.js) 277 279 $template_dir = get_template_directory_uri(); 280 $avatar_is_called = ""; 278 281 279 282 … … 1530 1533 session_start(); 1531 1534 } 1532 1535 1536 1533 1537 1534 1538 /* Create account, update user meta */ … … 1560 1564 } 1561 1565 } 1566 1567 $nonce_control = true; 1568 //CHECK NONCE 1569 if(!isset($_POST['wpuserspro_csrf_token'])){ 1570 1571 $this->errors[] = __('<strong>ERROR:</strong> Nonce not received.','wp-users-pro'); 1572 $nonce_control = false; 1573 1574 }else{ 1575 1576 if(wp_verify_nonce($_POST['wpuserspro_csrf_token'], 'wpuserspro_reg_action')){ 1577 1578 }else{ 1579 1580 $nonce_control = false; 1581 } 1582 } 1583 1584 //END NONCE 1585 1586 1562 1587 1563 1588 … … 1576 1601 }elseif(!$is_valid_recaptcha){ 1577 1602 1578 $this->errors[] = __('<strong>ERROR:</strong> reCaptcha validation failed.','wp-users-pro'); 1603 $this->errors[] = __('<strong>ERROR:</strong> reCaptcha validation failed.','wp-users-pro'); 1604 1605 }elseif(!$nonce_control){ 1606 1607 $this->errors[] = __('<strong>ERROR:</strong> Nonce Error.','wp-users-pro'); 1608 1579 1609 1580 1610 }elseif(!$password_strength && $ask_password){ … … 1608 1638 1609 1639 $ee =sanitize_text_field($_POST['email']); 1640 1641 1610 1642 1611 1643 $user_id = wp_create_user( $sanitized_user_login, $user_pass, $ee ); … … 2709 2741 2710 2742 $display .= '<input type="hidden" name="easywpm-client-form-registration-confirm" id="easywpm-client-form-confirm-registration-confirm" >'; 2743 2744 $display .= wp_nonce_field('wpuserspro_reg_action', 'wpuserspro_csrf_token'); 2711 2745 $display .= '<div class="easywpm-profile-separator">'.__('Account Data','wp-users-pro').'</div>'; 2712 2746 -
wp-users-pro/trunk/index.php
r2440570 r2442425 3 3 Plugin Name: WP Users Pro 4 4 Plugin URI: https://wpuserspro.com 5 Description: Users management system.6 Version: 1.1. 15 Description: Users & Subscriptions Plugin. Recurring Payments, PayPal, Strip. Partial and Full content Protection. Protect Pages, Posts, Images. 6 Version: 1.1.2 7 7 Author: WP Users Pro 8 8 Text Domain: wp-users-pro -
wp-users-pro/trunk/readme.txt
r2440570 r2442425 4 4 Requires at least: 3.0.1 5 5 Tested up to: 5.6.0 6 Stable tag: 1.1. 16 Stable tag: 1.1.2 7 7 License: GPLv2 or later 8 8 License URI: http://www.gnu.org/licenses/gpl-2.0.html … … 139 139 140 140 141 == Upgrade Notice==141 == Changelog == 142 142 143 = 1.0.1 = 143 = 1.1.2 = 144 * Improvements - Security Improvements: Nonce on public pages. 145 * Improvements - CSRF Improvements. 146 147 148 = 1.1.1 = 144 149 * Improvements - Tweaks on Setting Pages 145 150 146 = 1. 0.0 =151 = 1.1.0 = 147 152 Initial release. -
wp-users-pro/trunk/templates/basic/user-account-styles.css
r2440194 r2442425 398 398 .easywpm-packages-front-list ul li{ 399 399 clear:both; list-style:none; width:96%; margin:10px auto 10px auto; 400 padding:15px 5px 5px 15px; min-height:60px; height:auto; border:solid 1px #EBEBEB 400 padding:15px 5px 5px 15px; 401 min-height:60px; 402 height:auto; 403 border:solid 1px #EBEBEB; 404 background-color: #FFFFFF 401 405 402 406
Note: See TracChangeset
for help on using the changeset viewer.