Context Navigation

← Previous Changeset
Next Changeset →

Changeset 3093425

Timestamp:

05/27/2024 06:14:26 PM (22 months ago)

Author:

creativehassan

Message:

Updated for latest WP and Security Patch

Location:

snap-pixel

Files:

: 28 added
: 3 edited

tags/1.6.0 (added)
tags/1.6.0/admin (added)
tags/1.6.0/admin/index.php (added)
tags/1.6.0/admin/setting-tabs.php (added)
tags/1.6.0/admin/snapchat_pixel_backend.php (added)
tags/1.6.0/admin/snapchat_pixel_place_code.php (added)
tags/1.6.0/assets (added)
tags/1.6.0/assets/css (added)
tags/1.6.0/assets/css/index.php (added)
tags/1.6.0/assets/css/snapchat-pixel-admin.css (added)
tags/1.6.0/assets/css/snapchat-pixel.css (added)
tags/1.6.0/assets/images (added)
tags/1.6.0/assets/images/index.php (added)
tags/1.6.0/assets/images/snapchat-pixel.png (added)
tags/1.6.0/assets/images/snapchat.png (added)
tags/1.6.0/assets/index.php (added)
tags/1.6.0/assets/js (added)
tags/1.6.0/assets/js/index.php (added)
tags/1.6.0/assets/js/snapchat-pixel-admin.js (added)
tags/1.6.0/assets/js/snapchat-pixel.js (added)
tags/1.6.0/includes (added)
tags/1.6.0/includes/function.php (added)
tags/1.6.0/includes/index.php (added)
tags/1.6.0/index.php (added)
tags/1.6.0/languages (added)
tags/1.6.0/languages/index.php (added)
tags/1.6.0/readme.txt (added)
tags/1.6.0/snapchat-pixel.php (added)
trunk/admin/snapchat_pixel_backend.php (modified) (1 diff)
trunk/readme.txt (modified) (2 diffs)
trunk/snapchat-pixel.php (modified) (2 diffs)

Legend:

: Unmodified
: Added
: Removed

snap-pixel/trunk/admin/snapchat_pixel_backend.php

r3090062	r3093425
133	133	</div>
134	134	</div>
	135	<?php echo wp_nonce_field('snapchat_pixel_security', 'snapchat_pixel_nonce'); ?>
135	136	<p class="submit"><input type="submit" name="save_snapchat_pixel" id="submit" class="button button-primary"
136	137	value="<?php echo __('Save Changes', $this->plugin_name); ?>"></p>

snap-pixel/trunk/readme.txt

-                      r3090062
+                      r3093425
 Tested up to: 6.0
 Requires PHP: 5.6
 Stable tag: 1.5.8
+Stable tag: 1.6.0
 License: GPLv2 or later
 License URI: http://www.gnu.org/licenses/gpl-2.0.html
 …
 = 1.5.8 =
 * Security fix applied
+= 1.6.0 =
+* Security fix applied

snap-pixel/trunk/snapchat-pixel.php

-                      r3090062
+                      r3093425
  * Plugin URI:  https://wordpress.org/plugins/snap-pixel
  * Description: Snapchat (Snap Pixel) to measure the cross-device impact of campaigns. It is best suited for your direct response goals, such as driving leads, Subscriptions, or product sales.
  * Version:     1.5.8
+ * Version:     1.6.0
  * Author:      Hassan Ali
  * Author URI:  https://creativehassan.com
 …
         public function snapchat_pixel_backend(){
+            if(isset($_REQUEST['woo_activate'])){
+                $woo_activate = isset($_REQUEST['woo_activate']) ? esc_attr($_REQUEST['woo_activate']) : '';
+                update_option('snapchat_pixel_wooacces', $woo_activate);
+            }
+            if(isset($_POST['save_snapchat_pixel'])){
+                if(isset($_POST['snapchat_pixel_code'])) {
+                    $raw_data = wp_unslash($_POST['snapchat_pixel_code']);
+                    $sanitized_data = array(
+                        'pixel_id' => $this->sanitize_pixel_id($raw_data['pixel_id']),
+                        'user_email' => sanitize_email($raw_data['user_email']),
+                        'homepage' => isset($raw_data['homepage']) && $raw_data['homepage'] === 'checked' ? 'checked' : '',
+                        'pages' => isset($raw_data['pages']) && $raw_data['pages'] === 'checked' ? 'checked' : '',
+                        'posts' => isset($raw_data['posts']) && $raw_data['posts'] === 'checked' ? 'checked' : '',
+                        'search' => isset($raw_data['search']) && $raw_data['search'] === 'checked' ? 'checked' : '',
+                        'categories' => isset($raw_data['categories']) && $raw_data['categories'] === 'checked' ? 'checked' : '',
+                        'tags' => isset($raw_data['tags']) && $raw_data['tags'] === 'checked' ? 'checked' : '',
+                        'viewcart' => isset($raw_data['viewcart']) && $raw_data['viewcart'] === 'checked' ? 'checked' : '',
+                        'checkout' => isset($raw_data['checkout']) && $raw_data['checkout'] === 'checked' ? 'checked' : '',
+                        'paymentinfo' => isset($raw_data['paymentinfo']) && $raw_data['paymentinfo'] === 'checked' ? 'checked' : '',
+                        'addtocart' => isset($raw_data['addtocart']) && $raw_data['addtocart'] === 'checked' ? 'checked' : '',
+                        'ajax_addtocart' => isset($raw_data['ajax_addtocart']) && $raw_data['ajax_addtocart'] === 'checked' ? 'checked' : ''
+                    );
+                    // Additional sanitization for 'pixel_id' to prevent XSS
+                    $sanitized_data['pixel_id'] = esc_attr($sanitized_data['pixel_id']);
+                    update_option('snapchat_pixel_code', $sanitized_data);
+            if ( isset( $_POST['snapchat_pixel_nonce'] ) && wp_verify_nonce( $_POST['snapchat_pixel_nonce'], 'snapchat_pixel_security' ) ) {
+                if (isset($_POST['save_snapchat_pixel'])) {
+                    if (isset($_POST['snapchat_pixel_code'])) {
+                        $raw_data = wp_unslash($_POST['snapchat_pixel_code']);
+                        $sanitized_data = array(
+                            'pixel_id' => $this->sanitize_pixel_id($raw_data['pixel_id']),
+                            'user_email' => sanitize_email($raw_data['user_email']),
+                            'homepage' => isset($raw_data['homepage']) && $raw_data['homepage'] === 'checked' ? 'checked' : '',
+                            'pages' => isset($raw_data['pages']) && $raw_data['pages'] === 'checked' ? 'checked' : '',
+                            'posts' => isset($raw_data['posts']) && $raw_data['posts'] === 'checked' ? 'checked' : '',
+                            'search' => isset($raw_data['search']) && $raw_data['search'] === 'checked' ? 'checked' : '',
+                            'categories' => isset($raw_data['categories']) && $raw_data['categories'] === 'checked' ? 'checked' : '',
+                            'tags' => isset($raw_data['tags']) && $raw_data['tags'] === 'checked' ? 'checked' : '',
+                            'viewcart' => isset($raw_data['viewcart']) && $raw_data['viewcart'] === 'checked' ? 'checked' : '',
+                            'checkout' => isset($raw_data['checkout']) && $raw_data['checkout'] === 'checked' ? 'checked' : '',
+                            'paymentinfo' => isset($raw_data['paymentinfo']) && $raw_data['paymentinfo'] === 'checked' ? 'checked' : '',
+                            'addtocart' => isset($raw_data['addtocart']) && $raw_data['addtocart'] === 'checked' ? 'checked' : '',
+                            'ajax_addtocart' => isset($raw_data['ajax_addtocart']) && $raw_data['ajax_addtocart'] === 'checked' ? 'checked' : ''
+                        );
+                        // Additional sanitization for 'pixel_id' to prevent XSS
+                        $sanitized_data['pixel_id'] = esc_attr($sanitized_data['pixel_id']);
+                        update_option('snapchat_pixel_code', $sanitized_data);
+                    }
+                }
+            }
+            // Save WooCommerce Settings
+            if (isset($_REQUEST['woo_activate'])) {
+                $woo_activate = isset($_REQUEST['woo_activate']) ? esc_attr($_REQUEST['woo_activate']) : '';
+                if( $woo_activate == 'yes' ){
+                    $woo_activate = 'yes';
+                } else if( $woo_activate == 'no' ){
+                    $woo_activate = 'no';
+                } else {
+                    $woo_activate = 'no';
+                }
+                update_option('snapchat_pixel_wooacces', $woo_activate);
+            }

Note: See TracChangeset for help on using the changeset viewer.

Trac UI Preferences

Plugin Directory