WordPress.org
Get WordPress

Plugin Directory

Changeset 2877041


Ignore:
Timestamp:
03/09/2023 09:56:30 AM (3 years ago)
Author:
leadsnap
Message:
  • Removed vulnerability in the plugin
  • Sanitized and verfied the data
  • Fixed Thrive Forms integration security issues
Location:
leadsnap
Files:
30 added
17 edited

Legend:

Unmodified
Added
Removed

  • leadsnap/trunk/includes/class-wsl-beaver-api.php

    r2776452 r2877041  
    138138            'remote_ip' => $_SERVER['REMOTE_ADDR'],
    139139            'wp_user_id' => $this->submission['settings']['notifications'][1]['sender_address'],
     140            'plugin_name' => "beaver",
    140141        );
    141142    }

  • leadsnap/trunk/includes/class-wsl-caldera-api.php

    r2776452 r2877041  
    146146            'remote_ip' => $_SERVER['REMOTE_ADDR'],
    147147            'wp_user_id' => $this->submission['settings']['notifications'][1]['sender_address'],
     148            'plugin_name' => "caldera",
    148149        );
    149150    }

  • leadsnap/trunk/includes/class-wsl-cf7-api.php

    r2776452 r2877041  
    132132            'remote_ip' => $this->submission->get_meta( 'remote_ip' ),
    133133            'wp_user_id' => $this->submission->get_meta( 'current_user_id' ),
    134             'user_agent' => $this->submission->get_meta('user_agent')
     134            'user_agent' => $this->submission->get_meta('user_agent'),
     135            'plugin_name' => "contact_f7",
    135136        );
    136137    }

  • leadsnap/trunk/includes/class-wsl-divi-api.php

    r2776452 r2877041  
    161161            'post_url' => home_url( $wp->request ),
    162162            'remote_ip' => $_SERVER['REMOTE_ADDR'],
     163            'plugin_name' => "divi",
    163164        );
    164165    }

  • leadsnap/trunk/includes/class-wsl-elementor-api.php

    r2776452 r2877041  
    143143            //'wp_user_id' => $this->submission['settings']['notifications'][1]['sender_address'],
    144144            //'user_agent' => $this->submission->get_meta('user_agent')
     145            'plugin_name' => "elementor",
    145146        );
    146147    }

  • leadsnap/trunk/includes/class-wsl-formidable-api.php

    r2776452 r2877041  
    166166            'remote_ip' => $_SERVER['REMOTE_ADDR'],
    167167            'wp_user_id' => '',
     168            'plugin_name' => "formaidable",
     169           
    168170        );
    169171    }

  • leadsnap/trunk/includes/class-wsl-gravity-api.php

    r2776452 r2877041  
    158158            //'wp_user_id' => $this->submission['settings']['notifications'][1]['sender_address'],
    159159            //'user_agent' => $this->submission->get_meta('user_agent')
     160            'plugin_name' => "gravity",
    160161        );
    161162    }

  • leadsnap/trunk/includes/class-wsl-ninja-api.php

    r2776452 r2877041  
    128128            'wp_user_id' => $this->submission['settings']['notifications'][1]['sender_address'],
    129129            //'user_agent' => $this->submission->get_meta('user_agent')
     130            'plugin_name' => "ninja",
    130131        );
    131132    }

  • leadsnap/trunk/includes/class-wsl-smartforms-api.php

    r2776452 r2877041  
    234234            'remote_ip' => $_SERVER['REMOTE_ADDR'],
    235235            'wp_user_id' => $this->submission['settings']['notifications'][1]['sender_address'],
     236            'plugin_name' => "smartforms",
    236237        );
    237238    }

  • leadsnap/trunk/includes/class-wsl-thriveform-api.php

    r2776452 r2877041  
    112112        $fields = array();
    113113        $count = 0;
    114         $label = unserialize( base64_decode( $submission["tve_labels"] ) );
    115114        $form_settings = array();
    116115        $fields_for_sub = array();
     
    124123           
    125124                $fields_for_sub[] = array(
    126                     "name"      => strtolower($label[$key]),
     125                    "name"      => strtolower($key),
    127126                    "value"     => $value,
    128127                    "id"        => $count++,
    129128                    "type"      => $key,
    130                     "label"     => $label[$key]
     129                    "label"     => $key
    131130                );
    132131            }
     
    149148            'remote_ip' => $_SERVER['REMOTE_ADDR'],
    150149            'wp_user_id' => $this->submission['settings']['notifications'][1]['sender_address'],
     150            'plugin_name' => "thriveform",
    151151        );
    152152    }
     
    259259        $fields = array();
    260260        $count = 0;
    261         $label = unserialize( base64_decode( $fields_data["tve_labels"] ));
    262261
    263262        foreach($fields_data as $key=>$value){
     
    269268           
    270269                $fields[] = array(
    271                     "name"      => strtolower($label[$key]),
     270                    "name"      => strtolower($key),
    272271                    "value"     => $value,
    273272                    "id"        => $count++,
    274273                    "type"      => $key,
    275                     "label"     => $label[$key]
     274                    "label"     => $key
    276275                );
    277276            }

  • leadsnap/trunk/includes/class-wsl-typeform-api.php

    r2776452 r2877041  
    144144            'remote_ip' => $_SERVER['REMOTE_ADDR'],
    145145            'wp_user_id' => $this->submission['settings']['notifications'][1]['sender_address'],
     146            'plugin_name' => "typeform",
    146147        );
    147148    }

  • leadsnap/trunk/includes/class-wsl-ug-gutenberg-form-api.php

    r2776452 r2877041  
    152152            'remote_ip' => $_SERVER['REMOTE_ADDR'],
    153153            'wp_user_id' => $this->submission['settings']['notifications'][1]['sender_address'],
     154            'plugin_name' => "guntenberg",
    154155        );
    155156    }
     
    285286                $type = $k;
    286287            }
    287             // if($k == "First Name"){
    288             //     $name = $k;
    289             // }
    290             // if($k == "Last Name"){
    291             //     $name = 'lname';
    292             // }
    293288           
    294289            $fields[] = array(

  • leadsnap/trunk/includes/class-wsl-wpbrizy-api.php

    r2776452 r2877041  
    165165            'remote_ip' => $_SERVER['REMOTE_ADDR'],
    166166            'wp_user_id' => $this->submission['settings']['notifications'][1]['sender_address'],
     167            'plugin_name' => "brizy",
    167168        );
    168169    }

  • leadsnap/trunk/includes/class-wsl-wpf-api.php

    r2776452 r2877041  
    128128            'wp_user_id' => $this->submission['settings']['notifications'][1]['sender_address'],
    129129            //'user_agent' => $this->submission->get_meta('user_agent')
     130            'plugin_name' => "wp_forms",
    130131        );
    131132    }

  • leadsnap/trunk/includes/class-wsl-wpff-api.php

    r2776452 r2877041  
    150150            'remote_ip' => $_SERVER['REMOTE_ADDR'],
    151151            'wp_user_id' => $this->submission['settings']['notifications'][1]['sender_address'],
     152            'plugin_name' => "fluent_forms",
    152153        );
    153154    }

  • leadsnap/trunk/leadsnap.php

    r2776452 r2877041  
    55 * Plugin URI: https://www.leadsnap.com/
    66 * Description: Save the leads to LeadSnap system generated by various form plugins. We currently support CF7, Ninja Forms, WP Forms, Gravity Forms and Elementor Builder.
    7  * Version: 1.23
     7 * Version: 1.25
    88 * Author: LeadSnap
    99 * Author URI: https://profiles.wordpress.org/leadsnap/
     
    284284}
    285285
    286 add_action( 'wp_ajax_uagb_process_forms', 'wsl_gutenberg_forms' );
    287 add_action( 'wp_ajax_nopriv_uagb_process_forms', 'wsl_gutenberg_forms' );
    288 
    289 function wsl_gutenberg_forms(){
     286add_action( 'wp_ajax_uagb_process_forms', 'wncrm_gutenberg_forms' );
     287add_action( 'wp_ajax_nopriv_uagb_process_forms', 'wncrm_gutenberg_forms' );
     288
     289function wncrm_gutenberg_forms(){
    290290    if(!wncrm_is_send_to_crm()){
    291291        return false;

  • leadsnap/trunk/readme.txt

    r2776452 r2877041  
    33Tags: cf7, contact-form, leads, crm, management
    44Requires at least: 5.0
    5 Tested up to: 6.0.1
    6 Stable tag: 1.23
     5Tested up to: 6.1.1
     6Stable tag: 1.25
    77Requires PHP: 5.2.4
    88License: GPLv2 or later
     
    4949= 1.23 =
    5050* Fixed gravity form field name mapping in case of label missing
     51
     52= 1.25 =
     53* Removed vulnerability in the plugin
     54* Sanitized and verfied the data
     55* Fixed Thrive Forms integration security issues
Note: See TracChangeset for help on using the changeset viewer.