WordPress.org
Get WordPress

Plugin Directory

Changeset 2935936


Ignore:
Timestamp:
07/08/2023 04:01:50 PM (3 years ago)
Author:
vladimir.s
Message:

Terms Descriptions 3.4.5. Bug fixes: reflected XSS vulnerability fixed. Wordpress 6.2.2 support.

Location:
terms-descriptions/trunk
Files:
3 edited

Legend:

Unmodified
Added
Removed

  • terms-descriptions/trunk/includes/td_admin_terms.php

    r2694981 r2935936  
    386386    $where_clause = '';
    387387    if ( isset( $_GET[ 'term_search' ] ) && '' !== trim( $_GET[ 'term_search' ] ) ) {
    388         $search_str = $_GET[ 'term_search' ];
     388        $search_str = esc_attr( $_GET[ 'term_search' ] );
    389389        $where_clause = ' WHERE t_term LIKE "%' . $wpdb->esc_like( $search_str ) . '%" ';
    390390    }

  • terms-descriptions/trunk/readme.txt

    r2902998 r2935936  
    7979== Changelog ==
    8080
     81= 3.4.5 =
     82
     83* Bug fixes: reflected XSS vulnerability fixed
     84* Wordpress 6.2 support
     85
    8186= 3.4.4 =
    8287

  • terms-descriptions/trunk/terms-descriptions.php

    r2902998 r2935936  
    44Plugin URI: https://simplecoding.org/plagin-wordpress-terms-descriptions
    55Description: This plugin allows you to create list of terms and assign links to them. Plugin automatically replaces terms occurrences in your posts with appropriate links. You can control the number of replacements. After activation you can create terms list on plugin administration page (Tools -> Terms Descriptions).
    6 Version: 3.4.4
     6Version: 3.4.5
    77Author: Vladimir Statsenko
    88Author URI: https://simplecoding.org
Note: See TracChangeset for help on using the changeset viewer.