Cimy User Extra Fields - Version 2.6.5

Version Description

Download this release

Release Info

Developer Cimmo
Plugin Icon wp plugin Cimy User Extra Fields
Version 2.6.5
Comparing to
See all releases

Code changes from version 2.6.4 to 2.6.5

Files changed (5) hide show
  1. README_OFFICIAL.txt +4 -0
  2. cimy_uef_admin.php +4 -0
  3. cimy_uef_functions.php +5 -5
  4. cimy_user_extra_fields.php +4 -4
  5. readme.txt +2 -2
README_OFFICIAL.txt CHANGED
@@ -631,6 +631,10 @@ A lot of times I cannot reproduce the problem and I need more details, so if you
631
 
632
 
633
  CHANGELOG:
 
 
 
 
634
  v2.6.4 - 31/12/2014
635
  - Fixed a DoS security issue on file, avatar and picture Extra Fields where a blog's user can delete random server's files
636
  All versions between v0.9.5 and v2.6.3 (included) are vulnerable (credit to Sébastien Payet)
631
 
632
 
633
  CHANGELOG:
634
+ v2.6.5 - 11/05/2015
635
+ - Fixed PHP error on Extended Users on WordPress 4.2 (thanks to Ryan Marshall and Josie Stauffer)
636
+ - Fixed PHP notice on cimy_uef_functions.php at line 673 when using avatar Extra Field (thanks to rossini7777)
637
+
638
  v2.6.4 - 31/12/2014
639
  - Fixed a DoS security issue on file, avatar and picture Extra Fields where a blog's user can delete random server's files
640
  All versions between v0.9.5 and v2.6.3 (included) are vulnerable (credit to Sébastien Payet)
cimy_uef_admin.php CHANGED
@@ -1189,6 +1189,8 @@ function cimy_admin_users_list_page() {
1189
  if (is_network_admin()) {
1190
  require_once(ABSPATH . 'wp-admin/includes/class-wp-ms-users-list-table.php');
1191
  class WP_Cimy_Users_List_Table extends WP_MS_Users_List_Table {
 
 
1192
  function prepare_items() {
1193
  global $role, $usersearch, $wpdb;
1194
 
@@ -1298,6 +1300,8 @@ function cimy_admin_users_list_page() {
1298
  else {
1299
  require_once(ABSPATH . 'wp-admin/includes/class-wp-users-list-table.php');
1300
  class WP_Cimy_Users_List_Table extends WP_Users_List_Table {
 
 
1301
  function prepare_items() {
1302
  global $role, $usersearch;
1303
 
1189
  if (is_network_admin()) {
1190
  require_once(ABSPATH . 'wp-admin/includes/class-wp-ms-users-list-table.php');
1191
  class WP_Cimy_Users_List_Table extends WP_MS_Users_List_Table {
1192
+ private $old_args = array();
1193
+
1194
  function prepare_items() {
1195
  global $role, $usersearch, $wpdb;
1196
 
1300
  else {
1301
  require_once(ABSPATH . 'wp-admin/includes/class-wp-users-list-table.php');
1302
  class WP_Cimy_Users_List_Table extends WP_Users_List_Table {
1303
+ private $old_args = array();
1304
+
1305
  function prepare_items() {
1306
  global $role, $usersearch;
1307
 
cimy_uef_functions.php CHANGED
@@ -669,6 +669,11 @@ function cimy_uef_avatar_filter($avatar, $id_or_email, $size, $default, $alt="")
669
  if (!isset($field_id))
670
  return $avatar;
671
 
 
 
 
 
 
672
  if (!empty($overwrite_default))
673
  $overwrite_default = "<img alt='{$safe_alt}' src='{$overwrite_default}' class='avatar avatar-{$size} photo avatar-default' height='{$size}' width='{$size}' />";
674
 
@@ -719,11 +724,6 @@ function cimy_uef_avatar_filter($avatar, $id_or_email, $size, $default, $alt="")
719
  $sql = "SELECT data.VALUE FROM $wpdb_data_table as data JOIN $wpdb_fields_table as efields ON efields.id=data.field_id WHERE (efields.TYPE='avatar' AND data.USER_ID=$id) LIMIT 1";
720
  $value = $wpdb->get_var($sql);
721
 
722
- if ( false === $alt)
723
- $safe_alt = '';
724
- else
725
- $safe_alt = esc_attr($alt);
726
-
727
  // max $size allowed is 512
728
  if (isset($value)) {
729
  if (empty($value)) {
669
  if (!isset($field_id))
670
  return $avatar;
671
 
672
+ if (false === $alt)
673
+ $safe_alt = '';
674
+ else
675
+ $safe_alt = esc_attr($alt);
676
+
677
  if (!empty($overwrite_default))
678
  $overwrite_default = "<img alt='{$safe_alt}' src='{$overwrite_default}' class='avatar avatar-{$size} photo avatar-default' height='{$size}' width='{$size}' />";
679
 
724
  $sql = "SELECT data.VALUE FROM $wpdb_data_table as data JOIN $wpdb_fields_table as efields ON efields.id=data.field_id WHERE (efields.TYPE='avatar' AND data.USER_ID=$id) LIMIT 1";
725
  $value = $wpdb->get_var($sql);
726
 
 
 
 
 
 
727
  // max $size allowed is 512
728
  if (isset($value)) {
729
  if (empty($value)) {
cimy_user_extra_fields.php CHANGED
@@ -3,13 +3,13 @@
3
  Plugin Name: Cimy User Extra Fields
4
  Plugin URI: http://www.marcocimmino.net/cimy-wordpress-plugins/cimy-user-extra-fields/
5
  Description: Add some useful fields to registration and user's info
6
- Version: 2.6.4
7
  Author: Marco Cimmino
8
  Author URI: mailto:cimmino.marco@gmail.com
9
  License: GPL2
10
 
11
  Cimy User Extra Fields - Allows adding mySQL Data fields to store/add more user info
12
- Copyright (c) 2006-2014 Marco Cimmino
13
 
14
  Code for drop-down support is in part from Raymond Elferink raymond@raycom.com
15
  Code for regular expression under equalTo rule is in part from Shane Hartman shane@shanehartman.com
@@ -162,7 +162,7 @@ add_action('admin_init', 'cimy_uef_admin_init');
162
  add_action('init', 'cimy_uef_init');
163
 
164
  $cimy_uef_name = "Cimy User Extra Fields";
165
- $cimy_uef_version = "2.6.4";
166
  $cimy_uef_url = "http://www.marcocimmino.net/cimy-wordpress-plugins/cimy-user-extra-fields/";
167
  $cimy_project_url = "http://www.marcocimmino.net/cimy-wordpress-plugins/support-the-cimy-project-paypal/";
168
 
@@ -170,7 +170,7 @@ $cimy_project_url = "http://www.marcocimmino.net/cimy-wordpress-plugins/support-
170
  // see: http://core.trac.wordpress.org/ticket/8912
171
  $start_cimy_uef_comment = "<!--";
172
  $start_cimy_uef_comment .= "\tStart code from ".$cimy_uef_name." ".$cimy_uef_version;
173
- $start_cimy_uef_comment .= "\tCopyright (c) 2006-2014 Marco Cimmino";
174
  $start_cimy_uef_comment .= "\t".$cimy_uef_url;
175
  $start_cimy_uef_comment .= "\t-->\n";
176
 
3
  Plugin Name: Cimy User Extra Fields
4
  Plugin URI: http://www.marcocimmino.net/cimy-wordpress-plugins/cimy-user-extra-fields/
5
  Description: Add some useful fields to registration and user's info
6
+ Version: 2.6.5
7
  Author: Marco Cimmino
8
  Author URI: mailto:cimmino.marco@gmail.com
9
  License: GPL2
10
 
11
  Cimy User Extra Fields - Allows adding mySQL Data fields to store/add more user info
12
+ Copyright (c) 2006-2015 Marco Cimmino
13
 
14
  Code for drop-down support is in part from Raymond Elferink raymond@raycom.com
15
  Code for regular expression under equalTo rule is in part from Shane Hartman shane@shanehartman.com
162
  add_action('init', 'cimy_uef_init');
163
 
164
  $cimy_uef_name = "Cimy User Extra Fields";
165
+ $cimy_uef_version = "2.6.5";
166
  $cimy_uef_url = "http://www.marcocimmino.net/cimy-wordpress-plugins/cimy-user-extra-fields/";
167
  $cimy_project_url = "http://www.marcocimmino.net/cimy-wordpress-plugins/support-the-cimy-project-paypal/";
168
 
170
  // see: http://core.trac.wordpress.org/ticket/8912
171
  $start_cimy_uef_comment = "<!--";
172
  $start_cimy_uef_comment .= "\tStart code from ".$cimy_uef_name." ".$cimy_uef_version;
173
+ $start_cimy_uef_comment .= "\tCopyright (c) 2006-2015 Marco Cimmino";
174
  $start_cimy_uef_comment .= "\t".$cimy_uef_url;
175
  $start_cimy_uef_comment .= "\t-->\n";
176
 
readme.txt CHANGED
@@ -4,8 +4,8 @@ Donate link: http://www.marcocimmino.net/cimy-wordpress-plugins/support-the-cimy
4
  Website link: http://www.marcocimmino.net/cimy-wordpress-plugins/cimy-user-extra-fields/
5
  Tags: cimy, admin, registration, profile, extra fields, avatar, gravatar, recaptcha, captcha
6
  Requires at least: 3.1
7
- Tested up to: 4.1
8
- Stable tag: 2.6.4
9
 
10
  Add some useful fields to registration and user's info
11
 
4
  Website link: http://www.marcocimmino.net/cimy-wordpress-plugins/cimy-user-extra-fields/
5
  Tags: cimy, admin, registration, profile, extra fields, avatar, gravatar, recaptcha, captcha
6
  Requires at least: 3.1
7
+ Tested up to: 4.2
8
+ Stable tag: 2.6.5
9
 
10
  Add some useful fields to registration and user's info
11