Context Navigation

← Previous Changeset
Next Changeset →

Changeset 2696091

Timestamp:

03/18/2022 03:48:23 PM (4 years ago)

Author:

Reisetiger

Message:

Commit v1.2.3

Location:

wp-downgrade/trunk

Files:

: 2 edited

readme.txt (modified) (2 diffs)
wp-downgrade.php (modified) (2 diffs)

Legend:

: Unmodified
: Added
: Removed

wp-downgrade/trunk/readme.txt

-                      r2374376
+                      r2696091
 === WP Downgrade | Specific Core Version ===
 Contributors: Reisetiger
 Donate link: https://www.paypal.com/cgi-bin/webscr?cmd=_s-xclick&hosted_button_id=G76PRK5P6F4DW&source=url
+Donate link: https://www.reisetiger.net/spenden-wp-plugins/
 Tags: Downgrade, Core, WP-Core, Version, Rollback, Upgrade, Update, Release, Versionskontrolle
 Requires at least: 3.0.1
 Tested up to: 5.5.1
+Tested up to: 5.9
 Stable tag: trunk
 License: GPLv2 or later
 …
 == Changelog ==
+= 1.2.3 =
+* security fix (Thanks for reporting!)
+* testet up to WordPress 5.9
+* Donation link in readme.txt updatet. Thanks for your support!
 = 1.2.2 =
 * compatibility with WordPress 5.5.1

wp-downgrade/trunk/wp-downgrade.php

-                      r2374350
+                      r2696091
 Plugin URI: https://www.reisetiger.net
 Description: WP Downgrade allows you to either downgrade or update WordPress Core to an arbitrary version of your choice. The version you choose is downloaded directly from wordpress.org and installed just like any regular release update. The target version WordPress allows you to update to remains constant until you enter a different one or deactivate the plugin either completely or by leaving the target version field empty.
 Version: 1.2.2
+Version: 1.2.1
 Author: Reisetiger
 Author URI: https://www.reisetiger.net
 …
 function register_wp_downgrade_settings() {
     //register our settings
     register_setting( 'wpdg-settings-group', 'wpdg_specific_version_name' );
     register_setting( 'wpdg-settings-group', 'wpdg_download_url' );
     register_setting( 'wpdg-settings-group', 'wpdg_edit_download_url' );
+    register_setting( 'wpdg-settings-group', 'wpdg_specific_version_name', array('sanitize_callback' => 'wp_downgrade_sanitize_version') );
+    register_setting( 'wpdg-settings-group', 'wpdg_download_url', array('sanitize_callback' => 'sanitize_url') );
+    register_setting( 'wpdg-settings-group', 'wpdg_edit_download_url', array('sanitize_callback' => 'sanitize_url') );
     // register_setting( 'wpdg-settings-group', 'some_other_option' );
+}
+function wp_downgrade_sanitize_version($userstring)
+// Sicherstellen, dass eine plausible Versionsnummer eingegeben wurde (andernfalls Sicherheitsrisiko). Ein 'sanitize_text_field' oder sowas würde ggf. auch reichen, aber so prüfen wir genauer, dass der Input wirklich zum pattern passt.
+{
+  if (!preg_match("/^[-+]?[0-9]*[.]?[0-9]?[.]?[0-9]+$/", $userstring) AND $userstring !== ''){
+        add_settings_error('prefix_messages', 'wpdg_message', __('Version number looks strange.', 'wp-downgrade'), 'error');
+        return;
+    } else {
+        return $userstring;
+    }
+}

Note: See TracChangeset for help on using the changeset viewer.

Trac UI Preferences

Plugin Directory

Context Navigation

Changeset 2696091

Legend:

wp-downgrade/trunk/readme.txt

wp-downgrade/trunk/wp-downgrade.php

Download in other formats: