WordPress.org
Get WordPress

Plugin Directory

Changeset 3374919


Ignore:
Timestamp:
10/08/2025 08:57:48 AM (5 months ago)
Author:
transferito
Message:

v14.0.7

Location:
transferito
Files:
4399 added
9 edited

Legend:

Unmodified
Added
Removed

  • transferito/trunk/readme.txt

    r3351573 r3374919  
    33Contributors: transferito
    44Tags: wordpress migration, migrate wordress, move wordpress, wordpress transfer, clone wordpress
    5 Stable tag: 14.0.0
    6 Version: 14.0.0
     5Stable tag: 14.0.7
     6Version: 14.0.7
    77Requires at least: 4.7
    88Requires PHP: 5.6

  • transferito/trunk/src/Controllers/Transfer.php

    r3351573 r3374919  
    14351435             * Merge the array
    14361436             */
    1437             $databaseTestPayload = isset($_POST['databaseDetail'])
     1437            $databaseTestPayload = isset($_POST['databaseDetail'])
    14381438                ? array_map('sanitize_text_field', wp_unslash($_POST['databaseDetail']))
    14391439                : [];
     
    19711971                'upgradeRequired'   => false,
    19721972                'htmlTemplate'      => loadTemplate('parts/migration/progress/main',
    1973                     array_merge($progressSteps, [ 'method' => $migrationDetails['transferMethod']] )
     1973                    array_merge($progressSteps, [
     1974                        'method'            => $migrationDetails['transferMethod'],
     1975                        'migrationToken'    => $migrationToken
     1976                    ] )
    19741977                )
    19751978            ], $siteSize));

  • transferito/trunk/src/Models/Settings/Setup.php

    r3351573 r3374919  
    6666
    6767        /**
     68         * Nonce
     69         */
     70        $nonce = wp_create_nonce('connected_site_redirect');
     71
     72        /**
    6873         * Redirect to the correct page based on check result
    6974         */
    70         wp_redirect(admin_url('admin.php?page=transferito-connected-sites&status=' . $status));
     75        wp_redirect(admin_url('admin.php?page=transferito-connected-sites&status=' . $status . '&_wpnonce=' . $nonce));
    7176        exit;
    7277    }

  • transferito/trunk/src/Views/Assets/js/transferito.js

    r3351573 r3374919  
    4444                    return host.replace(/sftp:\/\/|ftp:\/\//, '');
    4545                },
    46                 getFormValues: function(object, item) {
     46                getFormValues: function(object, item, encode = false) {
     47                    const potentialEncodedValue = encode ? btoa(item.value) : item.value;
     48
    4749                    if (item.name.indexOf('[]') !== -1) {
    4850                        var key = item.name.replace('[]', '');
     
    5052                        (!object[key]) ? object[key] = [value] : object[key].push(value);
    5153                    } else {
    52                         object[item.name] = (item.value === 'on') ? true : item.value;
     54                        object[item.name] = (item.value === 'on') ? true : potentialEncodedValue;
    5355                    }
    5456                    return object;
     
    167169                    var self = this;
    168170                    var formElements = [];
     171                    var fieldsToEncode = ['dbPass']
    169172
    170173                    /**
     
    188191                        .serializeArray()
    189192                        .reduce(function(object, item) {
    190                             return self.getFormValues(object, item)
     193                            const inEncodeList = fieldsToEncode.includes(item.name);
     194                            return self.getFormValues(object, item, inEncodeList);
    191195                        }, {});
    192196                },

  • transferito/trunk/src/Views/connected-sites.php

    r3351573 r3374919  
    22<?php
    33    if ( ! defined( 'ABSPATH' ) ) exit;
     4    $status = isset($_GET['status'])
     5    && isset($_GET['_wpnonce'])
     6    && wp_verify_nonce(wp_kses(wp_unslash($_GET['_wpnonce']), []), 'connected_site_redirect')
     7        ? wp_kses(wp_unslash($_GET['status']), [])
     8        : '';
     9?>
    410
    5     /**
    6      * @todo Will fail - Fix to add correct nonce
    7      */
    8     if ( ! wp_verify_nonce( '', 'my-nonce' ) ) {
    9         wp_die( 'FailedNonceCheck' );
    10     }
    11 
    12     $status = isset($_GET['status']) ? wp_kses(wp_unslash($_GET['status']), []) : '';
    13 ?>
    1411<div class="wrap">
    1512
     
    3330            <form class="transferito-connected-sites_form" method="post" action="<?php echo esc_html(admin_url( 'admin-post.php' )); ?>">
    3431                <input type="hidden" name="action" value="transferito_add_connected_site">
    35                 <input type="hidden" name="connected_site_nonce" value="<?php echo esc_html(wp_create_nonce('add_connected_site_nonce')); ?>">
     32                <?php wp_nonce_field( 'add_connected_site_nonce', 'connected_site_nonce' ); ?>
    3633
    3734                <div class="transferito-ftp-authentication__title transferito-text__p1--bold">URL</div>

  • transferito/trunk/src/Views/parts/migration/manual/database-detail.php

    r3351573 r3374919  
    9999                               name="dbPass"
    100100                               id="field__serverDetailDatabasePassword"
    101                                value="<?php echo isset($data['detail']['dbPass']) ? esc_html(htmlspecialchars($databasePassword, ENT_QUOTES, 'UTF-8')) : ''; ?>"
     101                               value="<?php echo isset($data['detail']['dbPass']) ? esc_html(htmlspecialchars(base64_decode($databasePassword), ENT_QUOTES, 'UTF-8')) : ''; ?>"
    102102                               class="transferito__field-required transferito-input__text-box transferito-form-element transferito-input__text-box--full-width transferito-input__text-box--thin">
    103103                    </div>

  • transferito/trunk/src/Views/parts/migration/navigation.php

    r3351573 r3374919  
    256256                            <div class="transferito-navigation__content transferito-text__small"><?php echo esc_html($ftpDetail['dbUser']);?></div>
    257257                            <div class="transferito-navigation__title transferito-text__small--semi-bold">Database Password:</div>
    258                             <div class="transferito-navigation__content transferito-text__small"><?php echo esc_html($dbPassword);?></div>
     258                            <div class="transferito-navigation__content transferito-text__small">
     259                                <?php echo esc_html(htmlspecialchars(base64_decode($dbPassword), ENT_QUOTES, 'UTF-8'));?>
     260                            </div>
    259261                        <?php endif; ?>
    260262

  • transferito/trunk/src/Views/parts/migration/progress/main.php

    r3351573 r3374919  
    22<input type="hidden" id="uploadChunkNonce" value="<?php echo esc_html(wp_create_nonce("upload_chunk")); ?>">
    33<input type="hidden" id="statusCheckNonce" value="<?php echo esc_html(wp_create_nonce("migration_status_check")); ?>">
     4<input type="hidden" id="migrationTokenReady" value="<?php echo esc_html($data['migrationToken']); ?>">
    45
    56<div id="progressMainContainer" class="transferito__three-columns">

  • transferito/trunk/transferito.php

    r3351573 r3374919  
    55 * Plugin URI:   https://transferito.com/
    66 * Description:  The easiest 1-Click WordPress Migration plugin that will migrate, clone, transfer and move your WordPress site to any host in seconds.
    7  * Version:      14.0.0
     7 * Version:      14.0.7
    88 * Author:       Transferito
    99 * Author URI:   https://transferito.com/
     
    3030define( 'TRANSFERITO_ASSET_URL',       plugin_dir_url( __FILE__ ) . 'src/Views/Assets/' );
    3131define( 'TRANSFERITO_CHUNK_SIZE',      (10 * 1024 * 1024) );
    32 define( 'TRANSFERITO_VERSION',         '14.0.0' );
     32define( 'TRANSFERITO_VERSION',         '14.0.7' );
    3333define( 'TRANSFERITO_MAX_ALLOWED',     (250 * 1024 * 1024) );
    3434define( 'TRANSFERITO_ZIP_LIMIT',       (32 * 1024 * 1024) );
Note: See TracChangeset for help on using the changeset viewer.