WordPress.org
Get WordPress

Plugin Directory

Changeset 642435


Ignore:
Timestamp:
12/20/2012 06:08:32 PM (13 years ago)
Author:
6Scan
Message:
  • Added one more patrol server to allowed list
  • Minor bugfixes
Location:
6scan-protection/trunk
Files:
5 edited

Legend:

Unmodified
Added
Removed

  • 6scan-protection/trunk/6scan.php

    r634376 r642435  
    55Description: 6Scan Security provides enterprise-grade security with a firewall, automatic backup, analytics and much more.
    66Author: 6Scan
    7 Version: 2.3.0
     7Version: 2.3.1
    88Author URI: http://www.6scan.com
    99*/

  • 6scan-protection/trunk/admin/includes/common.php

    r634376 r642435  
    44    die( 'No direct access allowed' );
    55
    6 define ( 'SIXSCAN_VERSION' ,                            '2.3.0.0' );
     6define ( 'SIXSCAN_VERSION' ,                            '2.3.1.0' );
    77define ( 'SIXSCAN_HTACCESS_VERSION' ,                   '1' );
    88
     
    9393define ( 'SIXSCAN_SIGNATURE_LINKS_DELIMITER',           "\n" );
    9494define ( 'SIXSCAN_SIGNATURE_MULTIPART_DELIMITER',       '###UZhup3v1ENMefI7Wy44QNppgZmp0cu6RPenZewotclc2ZCWUDE4zAfXIJX354turrscbFBL2pOiKpiNLYosm6Z1Qp8b3PNjgd1xqtuskjcT9MC4fZvQfx7FPUDF11oTiTrMeayQr7JHk3UuEK7fR0###' );
    95 define ( 'SIXSCAN_SIGNATURE_SCANNER_IP_LIST',           '108.59.1.37, 108.59.5.197, 108.59.2.209, 95.211.58.114, 95.211.70.82, 107.22.183.61, 78.47.11.131' );
     95define ( 'SIXSCAN_SIGNATURE_SCANNER_IP_LIST',           '108.59.1.37, 108.59.5.197, 108.59.2.209, 95.211.58.114, 95.211.70.82, 107.22.183.61, 78.47.11.131, 199.115.112.90' );
    9696define ( 'SIXSCAN_SIGNATURE_DEFAULT_PLACEHOLDER_LINK',  '/just/a/random/dir/to/avoid/htaccess/mixups\.php' );
    9797

  • 6scan-protection/trunk/admin/includes/installation.php

    r634376 r642435  
    8787    When the current page is 6Scan Dashboard - show him the registration page
    8888    */
    89     $just_activated = isset( $_GET[ 'activate' ] ) ? strtolower( $_GET[ 'activate' ] ) : '';
    90     $current_page = isset( $_GET[ 'page' ] ) ? strtolower( $_GET[ 'page' ] ) : '';
    91     $agree_val = isset( $_GET[ 'agree' ] ) ? strtolower( $_GET[ 'agree' ] ) : '';
     89    $just_activated = isset( $_REQUEST[ 'activate' ] ) ? strtolower( $_REQUEST[ 'activate' ] ) : '';
     90    $current_page = isset( $_REQUEST[ 'page' ] ) ? strtolower( $_REQUEST[ 'page' ] ) : '';
     91    $agree_val = isset( $_REQUEST[ 'agree' ] ) ? strtolower( $_REQUEST[ 'agree' ] ) : '';
    9292   
    9393    if ( $just_activated == 'true' ){
     
    109109        $registration_page = str_replace ( $replaced_values , $new_values , $registration_page );
    110110       
    111 
    112 
    113111        print $registration_page;
    114112        return FALSE;
     
    116114
    117115    /* Origin verification */
    118     if (! wp_verify_nonce( $_GET[ '_sixscannonce' ], 'sixscan_registration_html') ) die( 'Security failure' );
     116    if (! wp_verify_nonce( $_REQUEST[ '_sixscannonce' ], 'sixscan_registration_html') ) die( 'Security failure' );
    119117
    120118    /* User clicked 'yes'. Continue to registration */
    121     if ($agree_val == 'yes' ){
     119    if ( $agree_val == 'yes' ){
    122120        return TRUE;
    123121    }
     
    329327function sixscan_installation_register_with_server( $tmpkey ){
    330328   
    331     $admin_email = isset( $_GET['email'] ) ? $_GET['email'] : "";
     329    $admin_email = isset( $_REQUEST['email'] ) ? $_REQUEST['email'] : "";
    332330   
    333331    /*  If there is partner file, partner_id and partner_key are filled */
     
    411409        print "<p><h1>6Scan requires filesystem credentials to update signature files - fill the information below and click proceed</h1></p>";
    412410
    413     if ( ( $creds = request_filesystem_credentials( $url ) ) !== FALSE ){   
     411    /* request_filesystem_credentials() has to pass $_POST['email'] to the next registration stage */
     412    if ( ( $creds = request_filesystem_credentials( $url , '' , FALSE , FALSE, array( 'email' , 'agree' , '_sixscannonce' ) ) ) !== FALSE ){   
    414413        if ( ! WP_Filesystem( $creds ) ) {
    415414            /* Current POST data failed, present new form . Error is now "TRUE" */
    416             request_filesystem_credentials( $url , '' , TRUE );
     415            request_filesystem_credentials( $url , '' , TRUE , FALSE , array( 'email' , 'agree' , '_sixscannonce' ) );
    417416        }
    418417        else{           

  • 6scan-protection/trunk/data/regpage/reg.html

    r637565 r642435  
    308308            <h2 id='register_status_inf'>Create 6Scan Account.</h2>           
    309309        </div>
    310         <form method='get' action="" onsubmit="return check_submit();">                 
     310        <form method='post' action="" onsubmit="return check_submit();">                   
    311311            <input type=hidden name="page" value="_page_value_sixscan">
    312312            <input type=hidden name='_sixscannonce' value="_nonce_value_sixscan">

  • 6scan-protection/trunk/readme.txt

    r637565 r642435  
    11=== 6Scan Security ===
    22Contributors: 6Scan
    3 Version: 2.3.0
     3Version: 2.3.1
    44Tags: security,secure,wordpress security,firewall,antivirus,security plugin,securty,protection,anti-hack,hack,scan,exploit,anti-virus
    55Requires at least: 3.0.0
     
    297297* Supports Wordpress 3.5
    298298
     299= 2.3.1 =
     300* Minor bugfixes
     301
    299302
    300303== Upgrade Notice ==
Note: See TracChangeset for help on using the changeset viewer.