Changeset 878815
- Timestamp:
- 03/20/2014 02:58:58 PM (12 years ago)
- Location:
- activehelper-livehelp/trunk
- Files:
-
- 6 edited
-
activehelper-livehelp.php (modified) (2 diffs)
-
readme.txt (modified) (7 diffs)
-
server/frames.php (modified) (2 diffs)
-
server/import/javascript.php (modified) (4 diffs)
-
server/import/status.php (modified) (3 diffs)
-
server/import/tracker.php (modified) (4 diffs)
Legend:
- Unmodified
- Added
- Removed
-
activehelper-livehelp/trunk/activehelper-livehelp.php
r864239 r878815 7 7 Plugin URI: http://www.activehelper.com 8 8 Description: Provide superior service by real time chat with your website visitors and interact them through your website. Create a more efficient connection with your website visitors, increase your sales and customer satisfaction. 9 Version: 3. 2.29 Version: 3.4.0 10 10 Author: ActiveHelper Inc 11 11 Author URI: http://www.activehelper.com … … 784 784 ' . __('Version', 'activehelper_livehelp') . ' 785 785 </td><td class="b"> 786 ' . __('3. 2.2', 'activehelper_livehelp') . '786 ' . __('3.4.0', 'activehelper_livehelp') . ' 787 787 </td></tr></tbody></table> 788 788 <table><tbody><tr><td class="first t"> -
activehelper-livehelp/trunk/readme.txt
r864239 r878815 4 4 Requires at least: 3.2 5 5 Tested up to: 3.8.1 6 Stable tag: 3. 2.26 Stable tag: 3.4.0 7 7 8 8 ActiveHelper LiveHelp is a powerful Live Chat Server Plugin for WordPress. … … 10 10 == Description == 11 11 12 The most affordable and scalable Live Chat plugin for WordPress. ActiveHelper LiveHelp Live Chat System is perfect for small and medium WordPress sites. 12 The most affordable and scalable Live Chat plugin for WordPress. ActiveHelper LiveHelp Live Chat System is perfect for small and medium WordPress sites. Answer Live chats from any location, Desktop and mobile are included, Windows and Mac, IOS and Android too. 13 13 14 14 Monitor in real time your website visitors. Know how many visitors are in the website, who referred, where are from, what keywords we reused to find the website and the visitors navigation history. Know decisive information of your website visitors patterns, conversations and agents service. … … 28 28 * Chat Re-branding 29 29 * Image for each agent 30 * Agent to Agent chat 30 31 * Multi Language WordPress admin panel 31 32 * Real-time Chats … … 34 35 * Capture Visitor Data 35 36 * Chat Queue Line 36 * Chat Between Agents37 37 * Offline Messages 38 38 * Disable chat module in Offline mode … … 63 63 * Multi Language Images 64 64 * 25 Language Translations. 65 * Agent spellchecker 65 66 * Support Panel desktop for Windows and MAC 66 67 * Support panel mobile for your iPhone/ipad 67 68 * Support panel mobile for your Android phone and tablet 68 * Support panel mobile for your BlackBerry PlayBook69 69 * Customizable Look & Feel 70 70 * Skin Support … … 253 253 * Other small improvements and bug fixes 254 254 255 = 3.2.1 =256 * Fixed Missing files257 258 255 = 3.2.2 = 259 256 * Fixed Missing files on the update 257 258 = 3.4.0 = 259 * Agent to Agent Chat 260 * MariaDB connection issue fixed. 261 * Security Patch 262 * Other small improvements and bug fixes 260 263 261 264 … … 399 402 * Other small improvements and bug fixes 400 403 401 = 3.2.1 =402 * Fixed Missing files403 404 404 = 3.2.2 = 405 405 * Fixed Missing files on the update 406 407 = 3.4.0 = 408 * Agent to Agent Chat 409 * MariaDB connection issue fixed. 410 * Security Patch 411 * Other small improvements and bug fixes 412 413 -
activehelper-livehelp/trunk/server/frames.php
r726722 r878815 30 30 $department = htmlspecialchars_decode ($_REQUEST['DEPARTMENT'] , ENT_QUOTES ); 31 31 32 $referer = $_REQUEST['URL'];32 $referer = mysql_real_escape_string(urldecode(trim($_REQUEST['URL']))); 33 33 $ip_address = $_SERVER['REMOTE_ADDR']; 34 34 $domain_id = !isset( $domain_id ) ? 0 : (int) $domain_id; … … 72 72 } 73 73 74 if ($department == '') { $department = $_REQUEST['DEPARTMENT'];}74 if ($department == '') { $department = mysql_real_escape_string($_REQUEST['DEPARTMENT']);} 75 75 76 76 // Query to see if panel/Operators are Online -
activehelper-livehelp/trunk/server/import/javascript.php
r862410 r878815 101 101 if ($installed == true) { 102 102 103 $department = $_REQUEST['DEPARTMENT'];103 $department = mysql_real_escape_string($_REQUEST['DEPARTMENT']); 104 104 $tracker_enabled = $_REQUEST['TRACKER']; 105 105 $title = $_REQUEST['TITLE']; 106 $referer = $_SERVER['HTTP_REFERER'];106 $referer = mysql_real_escape_string($_SERVER['HTTP_REFERER']); 107 107 108 108 if ($tracker_enabled == '') { $tracker_enabled = true; } … … 147 147 } 148 148 149 $page = urldecode(trim($page));149 $page = mysql_real_escape_string(urldecode(trim($page))); 150 150 $path = $row['path']; 151 151 $previouspath = explode('; ', $path); … … 159 159 $SQL->miscquery($query); 160 160 } 161 $query = "UPDATE " . $table_prefix . "requests SET services = '<".str_replace(",", "><", $_REQUEST['services']).">' WHERE `id` = '$request_id'";161 $query = "UPDATE " . $table_prefix . "requests SET services = '<".str_replace(",", "><", mysql_real_escape_string($_REQUEST['services'])).">' WHERE `id` = '$request_id'"; 162 162 $sql_rez = $SQL->miscquery($query); 163 163 … … 175 175 $array = parse_url($_SERVER['HTTP_REFERER']); 176 176 $domain_name = $array['host']; 177 $domain_name = str_ireplace("www.", "",$domain_name);177 $domain_name = mysql_real_escape_string(str_ireplace("www.", "",$domain_name)); 178 178 179 179 if ($domain_name != '') { -
activehelper-livehelp/trunk/server/import/status.php
r553176 r878815 36 36 exit; 37 37 } 38 39 40 $service_id = $_REQUEST['service_id']; 38 // Get Agent ID 39 $agent_id =0; 40 if (isset($_REQUEST['AGENTID'])){ 41 $agent_id = (int) $_REQUEST['AGENTID']; 42 } 43 44 45 $service_id = mysql_real_escape_string($_REQUEST['service_id']); 41 46 42 47 if (!isset($_REQUEST['oUSERID'])){ $_REQUEST['oUSERID'] = null; } else $_REQUEST['oUSERID'] = (int) $_REQUEST['oUSERID']; 43 48 44 49 if(isset($_REQUEST['oUSERID'])) { 45 $query = "SELECT id_domain FROM " . $table_prefix . "domain_user WHERE id_user = ". $_REQUEST['oUSERID']." Limit 1";50 $query = "SELECT id_domain FROM " . $table_prefix . "domain_user WHERE id_user = ".mysql_real_escape_string($_REQUEST['oUSERID'])." Limit 1"; 46 51 $rows = $SQL->selectquery($query); 47 52 $row = mysql_fetch_array($rows); … … 68 73 } 69 74 70 $department = $_REQUEST['DEPARTMENT'];75 $department = mysql_real_escape_string($_REQUEST['DEPARTMENT']); 71 76 $status_enabled = $_REQUEST['STATUS']; 72 $userid = $_REQUEST['USERID'];73 $ouserid = $_REQUEST['oUSERID'];77 $userid = mysql_real_escape_string($_REQUEST['USERID']); 78 $ouserid = mysql_real_escape_string($_REQUEST['oUSERID']); 74 79 75 80 if ($status_enabled == '') { $status_enabled = 'true'; } … … 120 125 // Counts the total number of support users within each Online/Offline/BRB/Away status mode 121 126 $query = "SELECT DISTINCT `status`, count(`id`) FROM " . $table_prefix . "users WHERE (UNIX_TIMESTAMP(NOW()) - UNIX_TIMESTAMP(`refresh`)) < '$connection_timeout' And id in (" . $users_set . ")"; 122 if($department != '' && $departments) { $query .= " AND `department` LIKE '%$department%'"; } 127 128 if($department != '' && $departments && $agent_id ==0) 129 { $query .= " and `answers`='1' and `department` LIKE '%$department%'"; } 130 else 131 if($agent_id ==0) 132 { $query .= " and `answers`='1' "; } 133 else 134 if($agent_id !=0) 135 { $query .= " and `answers`='2' and `id`= $agent_id"; } 136 137 /* error_log("department:".$department."\n", 3, "status.log"); 138 error_log("departments:".$departments."\n", 3, "status.log"); 139 error_log("agent_id:".$agent_id."\n", 3, "status.log"); 140 error_log("$query:".$query."\n", 3, "status.log"); 141 */ 142 123 143 if($userid != '') { $query .= " AND id <> " . $userid; } 124 144 $query .= " GROUP BY `status`"; -
activehelper-livehelp/trunk/server/import/tracker.php
r726722 r878815 43 43 44 44 //$domainIsValid = true; 45 $title = $_REQUEST['TITLE']; 46 $url = $_REQUEST['URL']; 45 //$title = $_REQUEST['TITLE']; 46 //$url = $_REQUEST['URL']; 47 $title = mysql_real_escape_string($_REQUEST['TITLE']); 48 $url = mysql_real_escape_string(urldecode(trim($_REQUEST['URL']))); 49 47 50 $initiate = $_REQUEST['INITIATE']; 48 51 $referrer = $_REQUEST['REFERRER']; 49 52 $width = $_REQUEST['WIDTH']; 50 53 $height = $_REQUEST['HEIGHT']; 54 51 55 $userid = $_REQUEST['USERID'] = (int) $_REQUEST['USERID']; 52 56 $service_id = $_REQUEST['service_id'] = (int) $_REQUEST['service_id']; … … 114 118 if ($width != '' && $height != ''&& $url != '') { 115 119 116 $page = $_REQUEST['URL']; 120 //$page = $_REQUEST['URL']; 121 $page = mysql_real_escape_string(urldecode(trim($_REQUEST['URL']))); 122 117 123 for ($i = 0; $i < 3; $i++) { 118 124 $pos = strpos($page, '/'); … … 154 160 155 161 $session = array(); 156 $session['REQUEST'] = $request_id;157 $session['CHARSET'] = CHARSET;158 $session['USERID'] = $_REQUEST['USERID'];162 $session['REQUEST'] = $request_id; 163 $session['CHARSET'] = CHARSET; 164 $session['USERID'] = mysql_real_escape_string($_REQUEST['USERID']); 159 165 $session['DOMAINID'] = $domain_id; 160 $session['AGENTID'] = $agent_id;166 $session['AGENTID'] = $agent_id; 161 167 162 168 if (isset($_REQUEST['LANGUAGE'])){ … … 166 172 } 167 173 168 $session['SERVICE'] = $_REQUEST['SERVICE'];174 $session['SERVICE'] = mysql_real_escape_string($_REQUEST['SERVICE']); 169 175 170 176 //$session['ACCOUNT'] = $account;
Note: See TracChangeset
for help on using the changeset viewer.