Booking Calendar - Version 7.1.1

Version Description

Changes in all versions:
- Translation German translation [100% completed]
- Fix Cross-site scripting potential vulnerability in booking form (7.1.1.2)
Changes in Personal / Business Small / Business Medium / Business Large / MultiUser versions:
- Fix issue of Sage Pay payment, if was configured several admin emails separated by comma at Settings Emails page (7.1.1.1)

Release Info

Developer	wpdevelop
Plugin	Booking Calendar
Version	7.1.1
Comparing to
See all releases

Code changes from version 7.1 to 7.1.1

Files changed (5) hide show

core/admin/wpbc-class-timeline.php +9 -9
core/wpbc-constants.php +2 -2
core/wpbc-functions.php +3 -2
readme.txt +8 -1
wpdev-booking.php +1 -1

core/admin/wpbc-class-timeline.php CHANGED Viewed

	@@ -1432,7 +1432,7 @@ class WPBC_Timeline {
1432	$is_show_popover_in_timeline = true;
1433	if ( $this->is_frontend )
1434	$is_show_popover_in_timeline = ( get_bk_option( 'booking_is_show_popover_in_timeline_front_end' ) == 'On' ) ? true : false ;
1435	-
1436	if ( $is_show_popover_in_timeline )
1437	echo '<a
1438	href="javascript:void(0)"
	@@ -2031,10 +2031,10 @@ class WPBC_Timeline {
2031	else $what_show_in_day_template = get_bk_option( 'booking_default_title_in_day_for_calendar_view_mode' );
2032
2033	if ( function_exists( 'get_title_for_showing_in_day' ) ) {
2034	- $text_in_day_cell .= get_title_for_showing_in_day( $bk_id, $bookings, $what_show_in_day_template );
2035	} else {
2036	if ( ! $this->is_frontend )
2037	- $text_in_day_cell .= $bk_id . ':' . $bookings[$bk_id]->form_data['_all_fields_']['name']; // Default Free
2038	}
2039
2040	if ( ! $is_show_popover_in_timeline ) {
	@@ -2139,7 +2139,7 @@ class WPBC_Timeline {
2139	else $bk_title = get_booking_title( $bookings[$bk_id]->booking_type );
2140
2141	$content_text .= '<div class=\'text-left field-labels booking-labels\'>';
2142	- $content_text .= '<span class=\'label label-default label-resource label-info\'>' . $bk_title . '</span>';
2143	$content_text .= '</div>';
2144	}
2145
	@@ -2151,9 +2151,9 @@ class WPBC_Timeline {
2151	$pay_status = wpdev_bk_get_payment_status_simple( $bookings[$bk_id]->pay_status );
2152	$content_text .= '<div class=\'text-left field-labels booking-labels\'>';
2153	if ( wpbc_is_payment_status_ok( trim( $bookings[$bk_id]->pay_status ) ) )
2154	- $content_text .= '<span class=\'label label-default label-payment-status payment-label-success\'><span class=\'label-payment-status-prefix\'>' . __( 'Payment', 'booking' ) . '</span> ' . $pay_status . '</span>';
2155	else
2156	- $content_text .= '<span class=\'label label-default label-payment-status payment-label-unknown\'><span class=\'label-payment-status-prefix\'>' . __( 'Payment', 'booking' ) . '</span> ' . $pay_status . '</span>';
2157	$content_text .= '</div>';
2158	}
2159
	@@ -2176,7 +2176,7 @@ class WPBC_Timeline {
2176	if ( ! $this->is_frontend ) {
2177	// Trash
2178	$content_text .= '<div class=\'text-left field-labels booking-labels\'>';
2179	- $content_text .= '<span class=\'label label-trash label-danger' . ( ( ! $bookings[$bk_id]->trash ) ? ' hidden_items ' : '' ) . '\'>' . __('Trash' ,'booking') . '</span>'; //FixIn: 6.1.1.10
2180	$content_text .= '</div>';
2181	}
2182
	@@ -2184,14 +2184,14 @@ class WPBC_Timeline {
2184	$content_text .= '<div class=\'clear\'></div>'; // New line
2185
2186	// Booking Data
2187	- $content_text .= '<div class=\'wpbc-popover-booking-data\'>' . $bookings[$bk_id]->form_show . '</div>';
2188
2189	$content_text .= '<div class=\'clear\'></div>'; // New line
2190
2191
2192	// Notes
2193	if ( ! empty( $bookings[$bk_id]->remark ) ) {
2194	- $content_text .= '<div class=\'wpbc-popover-booking-notes\'>' . '<strong>' . __('Note', 'booking') . ':</strong> ' . $bookings[$bk_id]->remark . '</div>';
2195	$content_text .= '<div class=\'clear\'></div>'; // New line
2196	}
2197


1432	$is_show_popover_in_timeline = true;
1433	if ( $this->is_frontend )
1434	$is_show_popover_in_timeline = ( get_bk_option( 'booking_is_show_popover_in_timeline_front_end' ) == 'On' ) ? true : false ;
1435	+
1436	if ( $is_show_popover_in_timeline )
1437	echo '<a
1438	href="javascript:void(0)"

2031	else $what_show_in_day_template = get_bk_option( 'booking_default_title_in_day_for_calendar_view_mode' );
2032
2033	if ( function_exists( 'get_title_for_showing_in_day' ) ) {
2034	+ $text_in_day_cell .= esc_textarea( get_title_for_showing_in_day( $bk_id, $bookings, $what_show_in_day_template ) ); // FixIn 7.1.1.2
2035	} else {
2036	if ( ! $this->is_frontend )
2037	+ $text_in_day_cell .= $bk_id . ':' . esc_textarea( $bookings[$bk_id]->form_data['_all_fields_']['name'] ); // Default Free // FixIn 7.1.1.2
2038	}
2039
2040	if ( ! $is_show_popover_in_timeline ) {

2139	else $bk_title = get_booking_title( $bookings[$bk_id]->booking_type );
2140
2141	$content_text .= '<div class=\'text-left field-labels booking-labels\'>';
2142	+ $content_text .= '<span class=\'label label-default label-resource label-info\'>' . esc_textarea( $bk_title ) . '</span>'; // FixIn 7.1.1.2
2143	$content_text .= '</div>';
2144	}
2145

2151	$pay_status = wpdev_bk_get_payment_status_simple( $bookings[$bk_id]->pay_status );
2152	$content_text .= '<div class=\'text-left field-labels booking-labels\'>';
2153	if ( wpbc_is_payment_status_ok( trim( $bookings[$bk_id]->pay_status ) ) )
2154	+ $content_text .= '<span class=\'label label-default label-payment-status payment-label-success\'><span class=\'label-payment-status-prefix\'>' . esc_js( __( 'Payment', 'booking' ) ). '</span> ' . esc_js( $pay_status ) . '</span>'; // FixIn 7.1.1.3
2155	else
2156	+ $content_text .= '<span class=\'label label-default label-payment-status payment-label-unknown\'><span class=\'label-payment-status-prefix\'>' . esc_js( __( 'Payment', 'booking' ) ) . '</span> ' . esc_js( $pay_status ) . '</span>'; // FixIn 7.1.1.3
2157	$content_text .= '</div>';
2158	}
2159

2176	if ( ! $this->is_frontend ) {
2177	// Trash
2178	$content_text .= '<div class=\'text-left field-labels booking-labels\'>';
2179	+ $content_text .= '<span class=\'label label-trash label-danger' . ( ( ! $bookings[$bk_id]->trash ) ? ' hidden_items ' : '' ) . '\'>' . esc_js( __('Trash' ,'booking') ) . '</span>'; //FixIn: 6.1.1.10 // FixIn 7.1.1.3
2180	$content_text .= '</div>';
2181	}
2182

2184	$content_text .= '<div class=\'clear\'></div>'; // New line
2185
2186	// Booking Data
2187	+ $content_text .= '<div class=\'wpbc-popover-booking-data\'>' . esc_textarea( $bookings[$bk_id]->form_show ) . '</div>'; // FixIn 7.1.1.2
2188
2189	$content_text .= '<div class=\'clear\'></div>'; // New line
2190
2191
2192	// Notes
2193	if ( ! empty( $bookings[$bk_id]->remark ) ) {
2194	+ $content_text .= '<div class=\'wpbc-popover-booking-notes\'>' . '<strong>' . esc_js( __('Note', 'booking') ). ':</strong> ' . esc_textarea( $bookings[$bk_id]->remark ) . '</div>'; // FixIn 7.1.1.2 // FixIn 7.1.1.3
2195	$content_text .= '<div class=\'clear\'></div>'; // New line
2196	}
2197

core/wpbc-constants.php CHANGED Viewed

	@@ -33,8 +33,8 @@ if (!defined('WP_BK_TIMILINE_LIMIT_HOURS')) define('WP_BK_TIMILINE_L
33	////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
34	// SYSTEM CONSTANTS //////////////////////////////////////////////////////////////////////////////////////////////////
35	////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
36	- if (!defined('WP_BK_VERSION_NUM')) define('WP_BK_VERSION_NUM', '7.1' );
37	- if (!defined('WP_BK_MINOR_UPDATE')) define('WP_BK_MINOR_UPDATE', ! true );
38	if (!defined('IS_USE_WPDEV_BK_CACHE')) define('IS_USE_WPDEV_BK_CACHE', true );
39	if (!defined('WP_BK_DEBUG_MODE')) define('WP_BK_DEBUG_MODE', false );
40	if (!defined('WP_BK_MIN')) define('WP_BK_MIN', false ); //TODO: Finish with this contstant, right now its not working correctly with TRUE status


33	////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
34	// SYSTEM CONSTANTS //////////////////////////////////////////////////////////////////////////////////////////////////
35	////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
36	+ if (!defined('WP_BK_VERSION_NUM')) define('WP_BK_VERSION_NUM', '7.1.1' );
37	+ if (!defined('WP_BK_MINOR_UPDATE')) define('WP_BK_MINOR_UPDATE', true );
38	if (!defined('IS_USE_WPDEV_BK_CACHE')) define('IS_USE_WPDEV_BK_CACHE', true );
39	if (!defined('WP_BK_DEBUG_MODE')) define('WP_BK_DEBUG_MODE', false );
40	if (!defined('WP_BK_MIN')) define('WP_BK_MIN', false ); //TODO: Finish with this contstant, right now its not working correctly with TRUE status

core/wpbc-functions.php CHANGED Viewed

	@@ -1349,8 +1349,9 @@ $is_old = false;
1349	$value = strip_tags( $value );
1350
1351	// Clean SQL injection
1352	- $value = esc_sql( $value );
1353	-

1354	return $value;
1355	}
1356


1349	$value = strip_tags( $value );
1350
1351	// Clean SQL injection
1352	+ $value = esc_sql( $value );
1353	+ $value = esc_textarea( $value ); // FixIn 7.1.1.2
1354	+
1355	return $value;
1356	}
1357

readme.txt CHANGED Viewed

	@@ -4,7 +4,7 @@ Donate link: http://wpbookingcalendar.com/buy/
4	Tags: booking calendar, availability calendar, timeline, booking system, booking form, reservation, events, appointment, availability, schedule, calendar, contact form
5	Requires at least: 4.0
6	Tested up to: 4.7
7	- Stable tag: 7.1
8	License: GPLv2 or later
9	License URI: http://www.gnu.org/licenses/gpl-2.0.html
10
	@@ -159,6 +159,13 @@ If you have any further questions, please fill free to <a href="mailto:support@w
159	12. Timeline. Glance booking checking for a year (3 months or month), at front-end side of your website.
160
161	== Changelog ==







162	= 7.1 =
163	- Changes in all versions:
164	* New Ability to limit times for showing cells in TimeLine for 1 day view mode. In TimeLine shortcode possible to use new parameter: limit_hours='9,22' Where 9 - its 09:00, start hour and 22 - its 22:00, end hour. For example: [bookingtimeline type='1' limit_hours='9,22'] or [bookingtimeline type='1,5' view_days_num=1 limit_hours='10,21'] (7.0.1.14)


4	Tags: booking calendar, availability calendar, timeline, booking system, booking form, reservation, events, appointment, availability, schedule, calendar, contact form
5	Requires at least: 4.0
6	Tested up to: 4.7
7	+ Stable tag: 7.1.1
8	License: GPLv2 or later
9	License URI: http://www.gnu.org/licenses/gpl-2.0.html
10

159	12. Timeline. Glance booking checking for a year (3 months or month), at front-end side of your website.
160
161	== Changelog ==
162	+ = 7.1.1 =
163	+ - Changes in all versions:
164	+ * Translation German translation [100% completed]
165	+ * Fix Cross-site scripting potential vulnerability in booking form (7.1.1.2)
166	+ - Changes in Personal / Business Small / Business Medium / Business Large / MultiUser versions:
167	+ * Fix issue of Sage Pay payment, if was configured several admin emails separated by comma at Settings Emails page (7.1.1.1)
168	+
169	= 7.1 =
170	- Changes in all versions:
171	* New Ability to limit times for showing cells in TimeLine for 1 day view mode. In TimeLine shortcode possible to use new parameter: limit_hours='9,22' Where 9 - its 09:00, start hour and 22 - its 22:00, end hour. For example: [bookingtimeline type='1' limit_hours='9,22'] or [bookingtimeline type='1,5' view_days_num=1 limit_hours='10,21'] (7.0.1.14)

wpdev-booking.php CHANGED Viewed

	@@ -7,7 +7,7 @@ Author: wpdevelop
7	Author URI: http://wpbookingcalendar.com/
8	Text Domain: booking
9	Domain Path: /languages/
10	- Version: 7.1
11	*/
12
13	/* Copyright 2009 - 2016 www.wpbookingcalendar.com (email: info@wpbookingcalendar.com),


7	Author URI: http://wpbookingcalendar.com/
8	Text Domain: booking
9	Domain Path: /languages/
10	+ Version: 7.1.1
11	*/
12
13	/* Copyright 2009 - 2016 www.wpbookingcalendar.com (email: info@wpbookingcalendar.com),