Changeset 3280807
- Timestamp:
- 04/24/2025 10:28:44 AM (11 months ago)
- Location:
- theme-changer
- Files:
-
- 3 added
- 2 edited
-
tags/1.6 (added)
-
tags/1.6/readme.txt (added)
-
tags/1.6/theme-changer.php (added)
-
trunk/readme.txt (modified) (2 diffs)
-
trunk/theme-changer.php (modified) (3 diffs)
Legend:
- Unmodified
- Added
- Removed
-
theme-changer/trunk/readme.txt
r3276446 r3280807 4 4 Requires at least: 3.0 5 5 Tested up to: 6.8 6 Stable tag: 1. 56 Stable tag: 1.6 7 7 License: GPLv2 or later 8 8 License URI: http://www.gnu.org/licenses/gpl-2.0.html … … 45 45 = 1.5 = 46 46 * Cross-site scripting vulnerability response. 47 48 = 1.6 = 49 * Fixed a problem where the plugin was not working. -
theme-changer/trunk/theme-changer.php
r3276446 r3280807 45 45 global $theme_changer_theme; 46 46 $theme_changer_password = get_option("theme_changer_password"); 47 48 $theme_changer = "";49 47 if($theme_changer_password != false){ 50 48 $now_theme = wp_get_theme(); 51 49 $theme_changer_theme = $now_theme -> get_stylesheet(); 52 50 53 if(isset($_SESSION["theme_changer_password"]) && null == get_query_var("theme_changer_password")){51 if(isset($_SESSION["theme_changer_password"]) && !isset($_GET["theme_changer_password"])){ 54 52 if($_SESSION["theme_changer_password"] != $theme_changer_password) return; 55 53 }else{ 56 if(null == get_query_var("theme_changer_password")) return; 57 if($theme_changer_password != sanitize_text_field(wp_unslash(get_query_var("theme_changer_password")))){ 54 if($theme_changer_password != sanitize_text_field(wp_unslash($_GET["theme_changer_password"]))){ 58 55 return; 59 56 }else{ … … 63 60 } 64 61 65 if(null != get_query_var("theme_changer")){ 66 $theme_changer = sanitize_text_field(wp_unslash($wpdb->escape(get_query_var("theme_changer")))); 62 $theme_changer = ""; 63 64 if(isset($_GET["theme_changer"])){ 65 $theme_changer = sanitize_text_field(wp_unslash($_GET["theme_changer"])); 67 66 } 67 68 68 if(isset($theme_changer) && $theme_changer != ""){ 69 69 $theme_changer = sanitize_text_field(wp_unslash($_GET["theme_changer"])); 70 70 }elseif(isset($_SESSION["theme_changer"])){ 71 71 $theme_changer = sanitize_text_field($_SESSION["theme_changer"]); … … 100 100 if(!is_admin()){ 101 101 add_filter("query_vars","add_meta_query_vars"); 102 add_filter(" wp","theme_changer");102 add_filter("setup_theme","theme_changer"); 103 103 add_filter('stylesheet', 'my_theme_switcher'); 104 104 add_filter('template', 'my_theme_switcher');
Note: See TracChangeset
for help on using the changeset viewer.