WordPress.org
Get WordPress

Plugin Directory

Changeset 3457807


Ignore:
Timestamp:
02/10/2026 09:27:13 AM (7 weeks ago)
Author:
lvaudore
Message:

Release 10.0.9 - XSS & lazy loading fixes (CVE-2025-62756)

Location:
the-moneytizer/trunk
Files:
7 edited

Legend:

Unmodified
Added
Removed

  • the-moneytizer/trunk/core/core_init_options.php

    r3450605 r3457807  
    5353    update_option('themoneytizer_setting_init', true);
    5454    update_option('themoneytizer_data_lazy', json_encode(array()));
    55     update_option('themoneytizer_plugin_version', '10.0.8');
     55    update_option('themoneytizer_plugin_version', '10.0.9');
    5656    update_option('themoneytizer_user_language', 'en');
    5757    update_option( 'themoneytizer_user_notifications', json_encode(array()));

  • the-moneytizer/trunk/core/core_util.php

    r3450605 r3457807  
    6868
    6969// Const for current version
    70 define('THEMONEYTIZER_PLUGIN_VERSION', '10.0.8');
     70define('THEMONEYTIZER_PLUGIN_VERSION', '10.0.9');
    7171update_option('themoneytizer_plugin_version', THEMONEYTIZER_PLUGIN_VERSION);
    7272

  • the-moneytizer/trunk/readme.txt

    r3450605 r3457807  
    55Requires PHP: 7.0
    66Tested up to: 6.9
    7 Stable tag: 10.0.8
     7Stable tag: 10.0.9
    88License: GPLv2 or later
    99License URI: http://www.gnu.org/licenses/gpl-2.0.html
     
    3939
    4040== Changelog ==
     41
     42= 10.0.9 (30/01/2025)=
     43* Fixed lazy loading configuration JS error and hardened escaping in lazy loading UI
    4144
    4245= 10.0.8 (30/01/2025)=

  • the-moneytizer/trunk/tab/inc/inc_generic_tags.php

    r3450605 r3457807  
    9898                onClick="lazySetup(
    9999                    <?php echo absint( $format->ad_id ); ?>,
    100                     <?php echo wp_json_encode( $format->form_name ); ?>
     100                    '<?php echo esc_js( $format->form_name ); ?>'
    101101                )">
    102102                    <?php esc_html_e( 'Configurer', 'themoneytizer' ); ?>

  • the-moneytizer/trunk/tab/inc/inc_off_tags.php

    r3450605 r3457807  
    8282                onClick="lazySetup(
    8383                    <?php echo absint( $format->ad_id ); ?>,
    84                     <?php echo wp_json_encode( $format->form_name ); ?>
     84                    '<?php echo esc_js( $format->form_name ); ?>'
    8585                )">
    8686                    <?php echo esc_html(__('Configurer', 'themoneytizer')); ?>

  • the-moneytizer/trunk/tab/tab_menu_settings.php

    r3450605 r3457807  
    146146                                <i class="bi bi-info-circle" style="color: #6c757d; margin-right: 0.5rem;"></i>
    147147                                <strong><?php _e('Version actuelle du plugin','themoneytizer');?>:</strong>
    148                                 <span style="color: #db0436; font-weight: 600;"><?php echo esc_html( defined( 'THEMONEYTIZER_PLUGIN_VERSION' ) ? THEMONEYTIZER_PLUGIN_VERSION : get_option( 'themoneytizer_plugin_version', '10.0.8' ) ); ?></span>
     148                                <span style="color: #db0436; font-weight: 600;"><?php echo esc_html( defined( 'THEMONEYTIZER_PLUGIN_VERSION' ) ? THEMONEYTIZER_PLUGIN_VERSION : get_option( 'themoneytizer_plugin_version', '10.0.9' ) ); ?></span>
    149149                            </p>
    150150                        </div>

  • the-moneytizer/trunk/themoneytizer.php

    r3450605 r3457807  
    44Plugin URI: http://www.themoneytizer.com/
    55Description: Plugin of the ad network The Moneytizer that facilitates the integration of your ad tags
    6 Version: 10.0.8
     6Version: 10.0.9
    77Author: The Moneytizer
    88Author URI: https://www.themoneytizer.com/
Note: See TracChangeset for help on using the changeset viewer.