Version Description
- Fixed a security issue. (Thanks to mickaelb for reporting and Konstantin Kovshenin for providing the fix)
Download this release
Release Info
| Developer | moskis |
| Plugin |  FancyBox for WordPress |
| Version | 3.0.3 |
| Comparing to | |
| See all releases | |
Code changes from version 3.0.2 to 3.0.3
- admin.php +1 -0
- fancybox.php +3 -12
- readme.txt +5 -2
admin.php
CHANGED
|
@@ -81,6 +81,7 @@ function mfbfw_options_page() {
|
|
| 81 |
|
| 82 |
<form method="post" action="">
|
| 83 |
<div style="text-align:center;padding:0 0 1.5em;margin:-15px 0 5px;">
|
|
|
|
| 84 |
<input type="submit" name="mfbfw_update" id="reset" onClick="return confirmDefaults();" class="button-secondary" value="<?php esc_attr_e( 'Revert to defaults', 'mfbfw' ); ?>" />
|
| 85 |
<input type="hidden" name="action" value="reset" />
|
| 86 |
</div>
|
| 81 |
|
| 82 |
<form method="post" action="">
|
| 83 |
<div style="text-align:center;padding:0 0 1.5em;margin:-15px 0 5px;">
|
| 84 |
+
<?php wp_nonce_field( 'mfbfw-options-reset' ); ?>
|
| 85 |
<input type="submit" name="mfbfw_update" id="reset" onClick="return confirmDefaults();" class="button-secondary" value="<?php esc_attr_e( 'Revert to defaults', 'mfbfw' ); ?>" />
|
| 86 |
<input type="hidden" name="action" value="reset" />
|
| 87 |
</div>
|
fancybox.php
CHANGED
|
@@ -3,7 +3,7 @@
|
|
| 3 |
Plugin Name: FancyBox for WordPress
|
| 4 |
Plugin URI: http://plugins.josepardilla.com/fancybox-for-wordpress/
|
| 5 |
Description: Integrates <a href="http://fancybox.net/">FancyBox</a> by <a href="http://klade.lv/">Janis Skarnelis</a> into WordPress.
|
| 6 |
-
Version: 3.0.
|
| 7 |
Author: José Pardilla
|
| 8 |
Author URI: http://josepardilla.com/
|
| 9 |
|
|
@@ -20,7 +20,7 @@ Author URI: http://josepardilla.com/
|
|
| 20 |
* Constants
|
| 21 |
*/
|
| 22 |
|
| 23 |
-
define( 'FBFW_VERSION', '3.0.
|
| 24 |
define( 'FBFW_PATH', plugin_dir_path(__FILE__) );
|
| 25 |
define( 'FBFW_URL', plugin_dir_url(__FILE__) );
|
| 26 |
|
|
@@ -341,16 +341,7 @@ function mfbfw_admin_options() {
|
|
| 341 |
|
| 342 |
if ( isset($_GET['page']) && $_GET['page'] == 'fancybox-for-wordpress' ) {
|
| 343 |
|
| 344 |
-
if ( isset($_REQUEST['action']) && '
|
| 345 |
-
|
| 346 |
-
$settings = stripslashes_deep( $_POST['mfbfw'] );
|
| 347 |
-
$settings = array_map( 'convert_chars', $settings );
|
| 348 |
-
|
| 349 |
-
update_option( 'mfbfw', $settings );
|
| 350 |
-
wp_safe_redirect( add_query_arg('updated', 'true') );
|
| 351 |
-
die;
|
| 352 |
-
|
| 353 |
-
} else if ( isset($_REQUEST['action']) && 'reset' == $_REQUEST['action'] ) {
|
| 354 |
|
| 355 |
$defaults_array = mfbfw_defaults(); // Store defaults in an array
|
| 356 |
update_option( 'mfbfw', $defaults_array ); // Write defaults to database
|
| 3 |
Plugin Name: FancyBox for WordPress
|
| 4 |
Plugin URI: http://plugins.josepardilla.com/fancybox-for-wordpress/
|
| 5 |
Description: Integrates <a href="http://fancybox.net/">FancyBox</a> by <a href="http://klade.lv/">Janis Skarnelis</a> into WordPress.
|
| 6 |
+
Version: 3.0.3
|
| 7 |
Author: José Pardilla
|
| 8 |
Author URI: http://josepardilla.com/
|
| 9 |
|
| 20 |
* Constants
|
| 21 |
*/
|
| 22 |
|
| 23 |
+
define( 'FBFW_VERSION', '3.0.3' );
|
| 24 |
define( 'FBFW_PATH', plugin_dir_path(__FILE__) );
|
| 25 |
define( 'FBFW_URL', plugin_dir_url(__FILE__) );
|
| 26 |
|
| 341 |
|
| 342 |
if ( isset($_GET['page']) && $_GET['page'] == 'fancybox-for-wordpress' ) {
|
| 343 |
|
| 344 |
+
if ( isset($_REQUEST['action']) && 'reset' == $_REQUEST['action'] && check_admin_referer( 'mfbfw-options-options' ) ) {
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| 345 |
|
| 346 |
$defaults_array = mfbfw_defaults(); // Store defaults in an array
|
| 347 |
update_option( 'mfbfw', $defaults_array ); // Write defaults to database
|
readme.txt
CHANGED
|
@@ -2,8 +2,8 @@
|
|
| 2 |
Contributors: moskis
|
| 3 |
Tags: fancybox, lightbox, jquery, gallery, image, images, photo, photos, picture, pictures
|
| 4 |
Requires at least: 3.4
|
| 5 |
-
Tested up to:
|
| 6 |
-
Stable tag: 3.0.
|
| 7 |
License: GPL/MIT
|
| 8 |
|
| 9 |
Seamlessly integrates FancyBox into your blog: Upload, activate, and you're done. Additional configuration optional.
|
|
@@ -25,6 +25,9 @@ You can see the plugin working on [this blog](http://plugins.josepardilla.com/fa
|
|
| 25 |
|
| 26 |
This changelog is for the WordPress plugin. For the Fancybox main changelog go to its [home page](http://fancybox.net/changelog/).
|
| 27 |
|
|
|
|
|
|
|
|
|
|
| 28 |
= 3.0.2 =
|
| 29 |
* Added support for disabling fancybox on individual hyperlinked images by adding class='nolightbox'. (Thanks to Artem Russakovskii)
|
| 30 |
* Added a link to the github project page in the info tab in the settings page.
|
| 2 |
Contributors: moskis
|
| 3 |
Tags: fancybox, lightbox, jquery, gallery, image, images, photo, photos, picture, pictures
|
| 4 |
Requires at least: 3.4
|
| 5 |
+
Tested up to: 4.1
|
| 6 |
+
Stable tag: 3.0.3
|
| 7 |
License: GPL/MIT
|
| 8 |
|
| 9 |
Seamlessly integrates FancyBox into your blog: Upload, activate, and you're done. Additional configuration optional.
|
| 25 |
|
| 26 |
This changelog is for the WordPress plugin. For the Fancybox main changelog go to its [home page](http://fancybox.net/changelog/).
|
| 27 |
|
| 28 |
+
= 3.0.3 =
|
| 29 |
+
* Fixed a security issue. (Thanks to mickaelb for reporting and Konstantin Kovshenin for providing the fix)
|
| 30 |
+
|
| 31 |
= 3.0.2 =
|
| 32 |
* Added support for disabling fancybox on individual hyperlinked images by adding class='nolightbox'. (Thanks to Artem Russakovskii)
|
| 33 |
* Added a link to the github project page in the info tab in the settings page.
|
