WordPress.org
Get WordPress

Plugin Directory

Changeset 3447144


Ignore:
Timestamp:
01/26/2026 01:55:09 PM (6 weeks ago)
Author:
wpdirectorykit
Message:

v1.0.9

Location:
sweet-energy-efficiency
Files:
164 added
4 edited

Legend:

Unmodified
Added
Removed

  • sweet-energy-efficiency/trunk/README.txt

    r3425213 r3447144  
    55Requires at least: 5.2
    66Tested up to: 6.9
    7 Stable tag: 1.0.8
     7Stable tag: 1.0.9
    88License: GPLv2 or later
    99License URI: http://www.gnu.org/licenses/gpl-2.0.html
     
    6262== Changelog ==
    6363
     64= 1.0.9 =
     65* Fix Securety Issues
     66
    6467= 1.0.8 =
    6568* Fix Securety Issues

  • sweet-energy-efficiency/trunk/application/controllers/See_add_graph.php

    r3423517 r3447144  
    1 <?php
     1m<?php
    22if ( ! defined( 'ABSPATH' ) ) exit; // Exit if accessed directly;
    33
     
    8080
    8181
     82            $data['title'] = esc_html(wp_unslash(stripslashes($data['title'])));
     83            $data['description'] = wp_unslash(stripslashes($data['description']));
     84            $data['ratings_number'] = esc_html(wp_unslash(stripslashes($data['ratings_number'])));
     85            $data['layout'] = esc_html(wp_unslash(stripslashes($data['layout'])));
     86            $data['unit'] = esc_html(wp_unslash(stripslashes($data['unit'])));
     87
    8288            if ( headers_sent($file, $line) ) {
    8389                exit('header sent on: '.$file.' - '.$line);

  • sweet-energy-efficiency/trunk/application/views/see_add_graph/index.php

    r3423517 r3447144  
    3333}
    3434
    35 
    36 
    37 
    3835?>
    3936</div>
     
    6057            <label class="col-sm-2 control-label" for="inputdescription"><?php echo __('Graph description','sweet-energy-efficiency'); ?>*</label>
    6158            <div class="col-sm-10">
    62                 <textarea name="description" class="form-control" id="inputdescription" placeholder="<?php echo __('Graph description','sweet-energy-efficiency'); ?>"><?php echo wmvc_show_data('description', $db_data, $default_i); ?></textarea>
     59                <textarea name="description" class="form-control" id="inputdescription" placeholder="<?php echo __('Graph description','sweet-energy-efficiency'); ?>"><?php echo esc_textarea(wmvc_show_data('description', $db_data, $default_i)); ?></textarea>
    6360            </div>
    6461        </div>
     
    107104            <label class="col-sm-2 control-label" for="inputjson_data"><?php echo __('Scales data','sweet-energy-efficiency'); ?>*</label>
    108105            <div class="col-sm-10">
    109                 <textarea name="json_data" readonly class="form-control" id="inputjson_data" placeholder="<?php echo __('Scales data','sweet-energy-efficiency'); ?>"><?php echo wmvc_show_data('json_data', $db_data, $default_i); ?></textarea>
     106                <textarea name="json_data" readonly class="form-control" id="inputjson_data" placeholder="<?php echo __('Scales data','sweet-energy-efficiency'); ?>"><?php echo esc_textarea(wmvc_show_data('json_data', $db_data, $default_i)); ?></textarea>
    110107            </div>
    111108        </div>
     
    142139                if(is_array($json))
    143140                foreach($json as $row):
    144                 if(empty($row->label))continue;
     141                // Ensure each property is properly escaped before output.
     142                if(empty($row->label)) continue;
     143                $color = isset($row->color) ? esc_attr($row->color) : '';
     144                $from = isset($row->from) ? esc_attr($row->from) : '';
     145                $to = isset($row->to) ? esc_attr($row->to) : '';
     146                $label = isset($row->label) ? esc_attr($row->label) : '';
    145147            ?>
    146148
    147149            <tr>
    148                 <td><input name="color[]" type="text" class="form-control see-color-field" value="<?php echo esc_html($row->color); ?>" placeholder="<?php echo __('Color','sweet-energy-efficiency'); ?>"></td>
    149                 <td><input name="from[]" type="text" class="form-control" value="<?php echo esc_html($row->from); ?>" placeholder="<?php echo __('From value','sweet-energy-efficiency'); ?>"></td>
    150                 <td><input name="to[]" type="text" class="form-control" value="<?php echo esc_html($row->to); ?>" placeholder="<?php echo __('To value','sweet-energy-efficiency'); ?>"></td>
    151                 <td><input name="label[]" type="text" class="form-control" value="<?php echo esc_html($row->label); ?>" placeholder="<?php echo __('Label','sweet-energy-efficiency'); ?>"></td>
     150                <td><input name="color[]" type="text" class="form-control see-color-field" value="<?php echo $color; ?>" placeholder="<?php echo __('Color','sweet-energy-efficiency'); ?>"></td>
     151                <td><input name="from[]" type="text" class="form-control" value="<?php echo $from; ?>" placeholder="<?php echo __('From value','sweet-energy-efficiency'); ?>"></td>
     152                <td><input name="to[]" type="text" class="form-control" value="<?php echo $to; ?>" placeholder="<?php echo __('To value','sweet-energy-efficiency'); ?>"></td>
     153                <td><input name="label[]" type="text" class="form-control" value="<?php echo $label; ?>" placeholder="<?php echo __('Label','sweet-energy-efficiency'); ?>"></td>
    152154                <td></td>
    153155            </tr>

  • sweet-energy-efficiency/trunk/sweet-energy-efficiency.php

    r3423182 r3447144  
    1717 * Plugin URI:        https://wpdirectorykit.com/plugins/sweet-energy-efficiency.html
    1818 * Description:       Graphically Visually present Energy Efficiency Class / Label / Rating / Scale with related consumption values.
    19  * Version:           1.0.8
     19 * Version:           1.0.9
    2020 * Author:            wpdirectorykit.com
    2121 * Author URI:        https://wpdirectorykit.com
     
    3636 * Rename this for your plugin and update it as you release new versions.
    3737 */
    38 define( 'SWEET_ENERGY_EFFICIENCY_VERSION', '1.0.8' );
     38define( 'SWEET_ENERGY_EFFICIENCY_VERSION', '1.0.9' );
    3939define( 'SWEET_ENERGY_EFFICIENCY_NAME', 'see' );
    4040define( 'SWEET_ENERGY_EFFICIENCY_PATH', plugin_dir_path( __FILE__ ) );
Note: See TracChangeset for help on using the changeset viewer.