Changeset 2918310
- Timestamp:
- 05/28/2023 10:03:15 PM (3 years ago)
- Location:
- redirect-editor/trunk
- Files:
-
- 2 edited
-
readme.txt (modified) (3 diffs)
-
redirect-editor.php (modified) (10 diffs)
Legend:
- Unmodified
- Added
- Removed
-
redirect-editor/trunk/readme.txt
r2918278 r2918310 3 3 website link: https://planetzuda.com 4 4 security-flaw:security@planetzuda.com 5 Tags: SEO, redirect editor,xml sitemap, content analysis5 Tags: SEO, xml sitemap, content analysis 6 6 Requires at least: 3.0 7 7 Tested up to: 6.2.2 … … 14 14 15 15 == Description == 16 SEO done right is the best type of seo , redirects help seo, descriptions search see's help SEO and your customer know what they're looking for. SEO generated urls for your blog posts? We do that too! Get unique links optimized for SEO.17 16 SEO done right is the best type of seo. We provide redirects, SEO descriptions, xml sitemaps, slugs generated urls specifically for SEO optimization. 17 18 18 Unlock SEO with our comprehensive suite of tools. We understand the importance of optimizing your online presence, and that's why we provide you with cutting-edge features designed to maximize your website's visibility and drive organic traffic. Allow us to introduce our XML sitemap, 301 redirect editor, seo description of your posts and pages, and automatically generated seo optimized links for your blog posts and pages. This brings your SEO game to a whole new level, with your xml sitemap easy to access, redirects improving your bounce rate, so people stay on your site longer, seo optimized links help with showing up on google and explaining what you're doing, seo descriptions are of key importance for people to know what your posts and pages are about and also helps search engines. 19 19 … … 54 54 It adds in some protection from certain SEO software that has flaws which we patched. 55 55 == Screenshots == 56 == 3.1.3 == 57 Best possible security for the plugin in case your site admin is hacked 56 58 == 3.1.2 == 57 59 fixes inability to see redirect editor due to page being all black. -
redirect-editor/trunk/redirect-editor.php
r2918278 r2918310 3 3 /* 4 4 Plugin Name: Search Engine Optimization Redirect Editor 5 Version: 3.1. 25 Version: 3.1.3 6 6 Plugin URI: https://planetzuda.com 7 7 Description: If you need to redirect whether for search engine optimization purposes or otherwise you can use our app to redirect to any page. We provide a direct link to your xml sitemap which you can submit to search engines manually. We protect you against popular SEO plugins that damage your rankings by making your sitemap invisible to Google's bots by telling them to not index it, which is a free and automatically applied feature. More search features are coming. Our redirect editor is extremely useful and highly secure, which has been tested in bug bounties by white hat hackers, including our security and seo company. … … 102 102 public static function output_notices() 103 103 { 104 if(current_user_can('manage_options')) 105 { 104 106 $notices = self::get_notices(); 105 107 if (empty($notices)) { … … 114 116 } 115 117 } 118 } 116 119 // All stored notices have been output. Update the stored array of notices to be an empty array. 117 120 self::update_notices([]); … … 120 123 private static function get_notices() 121 124 { 125 if(current_user_can('manage_options')) 126 { 122 127 $notices = get_option(self::NOTICES_OPTION_KEY, []); 123 128 return $notices; 124 129 } 130 } 125 131 public function create_plugin_settings_page() { 126 132 // Add the menu item and page … … 224 230 public function add_admin_menu() 225 231 { 232 if(current_user_can('manage_options')) 233 { 226 234 add_options_page('SEO Redirect Editor', 'SEO Redirect Editor', 'manage_options', 'redirect-editor', array( 227 235 $this, … … 229 237 )); 230 238 } 231 239 } 232 240 public function admin_page() 233 241 { 242 if(current_user_can('manage_options')) 243 { 234 244 $redirects = $this->get_setting('redirects_raw'); 235 245 … … 251 261 require_once ('form.php'); 252 262 } 253 263 } 254 264 public function get_setting($name, $default = '') 255 265 { 266 256 267 $settings = get_option('redirect_editor', array()); 257 268 … … 268 279 return $setting; 269 280 } 270 return htmlspecialchars($setting, ENT_QUOTES, 'UTF-8'); 281 $allowed_html = ''; 282 return wp_kses($setting,$allowed_html); 271 283 } else { 272 284 return $default; … … 304 316 public function save_data() 305 317 { 318 306 319 // since this gets called in the admin_init action, we only want it to 307 320 … … 330 343 331 344 if ($this->checkNonce($this->_redirectEditorSaveActionNonceName, $this->_redirectEditorSaveActionName)) { 332 print 'Sorry, your nonce did not verify.'; 333 exit(); 345 wp_die('Sorry, your nonce did not verify.'); 334 346 } else { 335 347 if (isset($_POST['redirects'])) { 336 348 // updated this to manage_options instead of the legacy code check_admin_referer for a more modern current_user_can. 337 $redirects_rawed = $_POST['redirects']; 349 $allowed_html = wp_kses_allowed_html(); 350 $redirects_rawed = wp_kses($_POST['redirects'], $allowed_html); 338 351 // $allowed_html - https://codex.wordpress.org/Function_Reference/wp_kses_allowed_html 339 $allowed_html = wp_kses_allowed_html();352 340 353 // $allowed_protocols 341 354 $allowed_protocols = wp_allowed_protocols();
Note: See TracChangeset
for help on using the changeset viewer.