Version Description
/ 2022-03-17 =
Bug fixes
- Sanitize email in Form block and properly escape URI #2330
Download this release
Release Info
| Developer | Godaddy |
| Plugin |  Page Builder Gutenberg Blocks – CoBlocks |
| Version | 2.22.5 |
| Comparing to | |
| See all releases | |
Code changes from version 2.22.4 to 2.22.5
- class-coblocks.php +2 -2
- includes/class-coblocks-block-assets.php +1 -1
- includes/class-coblocks-form.php +1 -1
- readme.txt +5 -1
class-coblocks.php
CHANGED
|
@@ -4,7 +4,7 @@
|
|
| 4 |
* Description: CoBlocks is a suite of professional <strong>page building content blocks</strong> for the WordPress Gutenberg block editor. Our blocks are hyper-focused on empowering makers to build beautifully rich pages in WordPress.
|
| 5 |
* Author: GoDaddy
|
| 6 |
* Author URI: https://www.godaddy.com
|
| 7 |
-
* Version: 2.22.
|
| 8 |
* Text Domain: coblocks
|
| 9 |
* Domain Path: /languages
|
| 10 |
* Tested up to: 5.9
|
|
@@ -25,7 +25,7 @@ if ( ! defined( 'ABSPATH' ) ) {
|
|
| 25 |
exit;
|
| 26 |
}
|
| 27 |
|
| 28 |
-
define( 'COBLOCKS_VERSION', '2.22.
|
| 29 |
define( 'COBLOCKS_PLUGIN_DIR', plugin_dir_path( __FILE__ ) );
|
| 30 |
define( 'COBLOCKS_PLUGIN_URL', plugin_dir_url( __FILE__ ) );
|
| 31 |
define( 'COBLOCKS_PLUGIN_FILE', __FILE__ );
|
| 4 |
* Description: CoBlocks is a suite of professional <strong>page building content blocks</strong> for the WordPress Gutenberg block editor. Our blocks are hyper-focused on empowering makers to build beautifully rich pages in WordPress.
|
| 5 |
* Author: GoDaddy
|
| 6 |
* Author URI: https://www.godaddy.com
|
| 7 |
+
* Version: 2.22.5
|
| 8 |
* Text Domain: coblocks
|
| 9 |
* Domain Path: /languages
|
| 10 |
* Tested up to: 5.9
|
| 25 |
exit;
|
| 26 |
}
|
| 27 |
|
| 28 |
+
define( 'COBLOCKS_VERSION', '2.22.5' );
|
| 29 |
define( 'COBLOCKS_PLUGIN_DIR', plugin_dir_path( __FILE__ ) );
|
| 30 |
define( 'COBLOCKS_PLUGIN_URL', plugin_dir_url( __FILE__ ) );
|
| 31 |
define( 'COBLOCKS_PLUGIN_FILE', __FILE__ );
|
includes/class-coblocks-block-assets.php
CHANGED
|
@@ -522,7 +522,7 @@ class CoBlocks_Block_Assets {
|
|
| 522 |
return false;
|
| 523 |
}
|
| 524 |
|
| 525 |
-
$admin_page = isset( $_SERVER['REQUEST_URI'] ) ? wp_basename(
|
| 526 |
|
| 527 |
if ( ! $admin_page ) {
|
| 528 |
return false;
|
| 522 |
return false;
|
| 523 |
}
|
| 524 |
|
| 525 |
+
$admin_page = isset( $_SERVER['REQUEST_URI'] ) ? wp_basename( esc_url_raw( filter_var( wp_unslash( $_SERVER['REQUEST_URI'] ), FILTER_SANITIZE_URL ) ) ) : false;
|
| 526 |
|
| 527 |
if ( ! $admin_page ) {
|
| 528 |
return false;
|
includes/class-coblocks-form.php
CHANGED
|
@@ -942,7 +942,7 @@ class CoBlocks_Form {
|
|
| 942 |
* @param array $_POST Submitted form data.
|
| 943 |
* @param integer $post_id Current post ID.
|
| 944 |
*/
|
| 945 |
-
$to = (
|
| 946 |
|
| 947 |
$name_field_value = sanitize_text_field( $_POST[ $name_field_id ]['value'] );
|
| 948 |
$email_field_value = sanitize_text_field( $_POST[ $email_field_id ]['value'] );
|
| 942 |
* @param array $_POST Submitted form data.
|
| 943 |
* @param integer $post_id Current post ID.
|
| 944 |
*/
|
| 945 |
+
$to = sanitize_email( apply_filters( 'coblocks_form_email_to', $to, $_POST, $post_id ) );
|
| 946 |
|
| 947 |
$name_field_value = sanitize_text_field( $_POST[ $name_field_id ]['value'] );
|
| 948 |
$email_field_value = sanitize_text_field( $_POST[ $email_field_id ]['value'] );
|
readme.txt
CHANGED
|
@@ -5,7 +5,7 @@ Tags: page builder, Gutenberg blocks, WordPress blocks, gutenberg, blocks
|
|
| 5 |
Requires at least: 5.5
|
| 6 |
Tested up to: 5.9
|
| 7 |
Requires PHP: 5.6
|
| 8 |
-
Stable tag: 2.22.
|
| 9 |
License: GPL-2.0
|
| 10 |
License URI: http://www.gnu.org/licenses/gpl-2.0.html
|
| 11 |
|
|
@@ -112,6 +112,10 @@ Developers can also apply minor style touch-ups to their themes if necessary. If
|
|
| 112 |
|
| 113 |
== Changelog ==
|
| 114 |
|
|
|
|
|
|
|
|
|
|
|
|
|
| 115 |
= 2.22.4 / 2022-03-15 =
|
| 116 |
##### Bug fixes
|
| 117 |
* Fix Form block where nonce is unverified and some sanitization [#2329](https://github.com/godaddy-wordpress/coblocks/pull/2329)
|
| 5 |
Requires at least: 5.5
|
| 6 |
Tested up to: 5.9
|
| 7 |
Requires PHP: 5.6
|
| 8 |
+
Stable tag: 2.22.5
|
| 9 |
License: GPL-2.0
|
| 10 |
License URI: http://www.gnu.org/licenses/gpl-2.0.html
|
| 11 |
|
| 112 |
|
| 113 |
== Changelog ==
|
| 114 |
|
| 115 |
+
= 2.22.5 / 2022-03-17 =
|
| 116 |
+
##### Bug fixes
|
| 117 |
+
* Sanitize email in Form block and properly escape URI [#2330](https://github.com/godaddy-wordpress/coblocks/pull/2330)
|
| 118 |
+
|
| 119 |
= 2.22.4 / 2022-03-15 =
|
| 120 |
##### Bug fixes
|
| 121 |
* Fix Form block where nonce is unverified and some sanitization [#2329](https://github.com/godaddy-wordpress/coblocks/pull/2329)
|
