Changeset 3056446
- Timestamp:
- 03/22/2024 12:55:20 AM (2 years ago)
- Location:
- cforms2/trunk
- Files:
-
- 4 edited
-
cforms-global-settings.php (modified) (1 diff)
-
cforms.php (modified) (1 diff)
-
lib_render.php (modified) (6 diffs)
-
readme.txt (modified) (3 diffs)
Legend:
- Unmodified
- Added
- Removed
-
cforms2/trunk/cforms-global-settings.php
r2875024 r3056446 42 42 if ($raw_cforms_settings === null) { 43 43 echo '<div id="message" class="updated fade"><p>' . __('Error:', 'cforms2') . ' '; 44 // As WordPress has a compatibility layer, json_last_error_msg (PHP >= 5.5) can be used.45 44 echo json_last_error_msg() . '</p></div>'; 46 45 } elseif (is_array($raw_cforms_settings)) { -
cforms2/trunk/cforms.php
r2875024 r3056446 21 21 * Description: cformsII is a customizable, flexible and powerful form plugin including simple spam protection, multi-step forms, role manager support and custom themes. 22 22 * Author: Oliver Seidel, Bastian Germann 23 * Version: 15.0. 523 * Version: 15.0.6 24 24 * Text Domain: cforms2 25 25 */ 26 26 namespace Cforms2; 27 27 28 define('CFORMS2_VERSION', '15.0. 5');28 define('CFORMS2_VERSION', '15.0.6'); 29 29 30 30 // Debug message handling. -
cforms2/trunk/lib_render.php
r2353696 r3056446 412 412 $formcontent .= '<li' . $liID . ' class="' . $liERR . '">' . $insertErr; 413 413 if (!in_array($field_type, array_keys($captchas))) 414 $formcontent .= '<label' . $labelID . ' for="' . $input_id . '"' . ($field_type == 'captcha' ? ' class="seccap"' : '') . '><span>' . s tripslashes(($field_name)) . '</span></label>';414 $formcontent .= '<label' . $labelID . ' for="' . $input_id . '"' . ($field_type == 'captcha' ? ' class="seccap"' : '') . '><span>' . sanitize_text_field(stripslashes($field_name)) . '</span></label>'; 415 415 } 416 416 … … 442 442 443 443 case "textonly": 444 $field .= '<li' . $liID . ' class="textonly' . (empty($defaultvalue) ? '' : ' ' . $defaultvalue) . '"' . (empty($reg_exp) ? '' : ' style="' . $reg_exp . '" ') . '>' . s tripslashes(($field_name)) . '</li>';444 $field .= '<li' . $liID . ' class="textonly' . (empty($defaultvalue) ? '' : ' ' . $defaultvalue) . '"' . (empty($reg_exp) ? '' : ' style="' . $reg_exp . '" ') . '>' . sanitize_text_field(stripslashes($field_name)) . '</li>'; 445 445 break; 446 446 … … 460 460 461 461 $field .= '<fieldset class="cf-fs' . $fscount++ . '" style="' . $fieldsethide[1] . '">' 462 . '<legend>' . s tripslashes($fieldsethide[0]) . '</legend>'462 . '<legend>' . sanitize_text_field(stripslashes($fieldsethide[0])) . '</legend>' 463 463 . '<ol class="cf-ol">'; 464 464 $fieldsetopen = true; … … 554 554 if (!empty($options[1])) { 555 555 $before = '<li' . $liID . ' class="' . $liERR . '">' . $insertErr; 556 $after = '<label' . $labelID . ' for="' . $input_id . '" class="cf-after' . $err . '"><span>' . $opt[0]. '</span></label></li>';556 $after = '<label' . $labelID . ' for="' . $input_id . '" class="cf-after' . $err . '"><span>' . sanitize_text_field($opt[0]) . '</span></label></li>'; 557 557 $ba = 'a'; 558 558 } else { 559 $before = '<li' . $liID . ' class="' . $liERR . '">' . $insertErr . '<label' . $labelID . ' for="' . $input_name. '" class="cf-before' . $err . '"><span>' . $opt[0] . '</span></label>';559 $before = '<li' . $liID . ' class="' . $liERR . '">' . sanitize_text_field($insertErr) . '<label' . $labelID . ' for="' . sanitize_text_field($input_name) . '" class="cf-before' . $err . '"><span>' . $opt[0] . '</span></label>'; 560 560 $after = '</li>'; 561 561 $ba = 'b'; … … 573 573 $liID_b = empty($liID) ? '' : substr($liID, 0, -1) . 'items"'; 574 574 array_shift($options); 575 $field .= '<li' . $liID . ' class="cf-box-title">' . (($field_name)) . '</li>' .575 $field .= '<li' . $liID . ' class="cf-box-title">' . sanitize_text_field($field_name) . '</li>' . 576 576 '<li' . $liID_b . ' class="cf-box-group">'; 577 577 $id = 1; … … 694 694 695 695 array_shift($options); 696 $field .= '<li' . $liID . ' class="' . $liERR . ' cf-box-title">' . $insertErr . (($field_name)) . '</li>' .696 $field .= '<li' . $liID . ' class="' . $liERR . ' cf-box-title">' . $insertErr . sanitize_text_field($field_name) . '</li>' . 697 697 '<li' . $liID_b . ' class="cf-box-group">'; 698 698 -
cforms2/trunk/readme.txt
r2950677 r3056446 4 4 Tags: contact form, contact, form, post, sidebar, multi step, api exposed, fork 5 5 Requires at least: 5.2 6 Tested up to: 6. 36 Tested up to: 6.4 7 7 Stable tag: trunk 8 8 License: GPLv3 or later … … 17 17 If you want to use plugin versions older than 14.6.3, you should rename the directory containing the plugin from "cforms2" to "cforms". But bear in mind that old versions should not be used in public systems, because they contain [known serious vulnerabilities](https://wpvulndb.com/plugins/cforms) that are exploited in the wild. 18 18 19 The [current security baseline version](https://wpvulndb.com/plugins/cforms2) is 15.0. 5.19 The [current security baseline version](https://wpvulndb.com/plugins/cforms2) is 15.0.6. 20 20 21 21 … … 109 109 == Upgrade Notice == 110 110 111 = 15.0. 5=111 = 15.0.6 = 112 112 The tracking database feature and its view are removed with cformsII 15.0+. Your data still exists in the database. Please have a look at CFDB plugin as a replacement. 113 113 114 114 115 115 == Changelog == 116 117 = 15.0.6 = 118 119 * bugfix: prevent XSS by output sanitization: CVE-2023-52203 and CVE-2024-22149 116 120 117 121 = 15.0.5 =
Note: See TracChangeset
for help on using the changeset viewer.