Gallery Bank: WordPress Photo Gallery Plugin - Version 3.0.63

Version Description

  • Major Security Bug Fixed
Download this release

Release Info

Developer Gallery-Bank
Plugin Icon 128x128 Gallery Bank: WordPress Photo Gallery Plugin
Version 3.0.63
Comparing to
See all releases

Code changes from version 3.0.62 to 3.0.63

Files changed (4) hide show
  1. gallery-bank.php +1 -1
  2. lib/gallery-bank-class.php +22 -10
  3. readme.txt +12 -3
  4. views/edit-album.php +5 -0
gallery-bank.php CHANGED
@@ -4,7 +4,7 @@
4
  Plugin URI: http://tech-banker.com
5
  Description: Gallery Bank is an easy to use Responsive WordPress Gallery Plugin for photos, videos, galleries and albums.
6
  Author: Tech Banker
7
- Version: 3.0.62
8
  Author URI: http://tech-banker.com
9
  */
10
  ////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
4
  Plugin URI: http://tech-banker.com
5
  Description: Gallery Bank is an easy to use Responsive WordPress Gallery Plugin for photos, videos, galleries and albums.
6
  Author: Tech Banker
7
+ Version: 3.0.63
8
  Author URI: http://tech-banker.com
9
  */
10
  ////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
lib/gallery-bank-class.php CHANGED
@@ -266,16 +266,28 @@ if (isset($_REQUEST["action"])) {
266
  $current_user->role = array_keys($current_user->$role);
267
  $role = $current_user->role[0];
268
 
269
- $fileName = esc_attr($_REQUEST["name"]);
270
- $extension = explode(".", $fileName);
271
- if($extension[1] == "jpg" || $extension[1] == "jpeg" || $extension[1] == "gif" || $extension[1] == "png" || $extension[1] == "JPG" || $extension[1] == "JPEG" || $extension[1] == "GIF" || $extension[1] == "PNG")
272
- {
273
- include_once GALLERY_BK_PLUGIN_DIR . "/lib/upload.php";
274
- }
275
- else
276
- {
277
- die();
278
- }
 
 
 
 
 
 
 
 
 
 
 
 
279
 
280
  }
281
  break;
266
  $current_user->role = array_keys($current_user->$role);
267
  $role = $current_user->role[0];
268
 
269
+ $filetype = $_REQUEST["file_type"];
270
+ if($filetype == "image/jpeg" || $filetype == "image/jpg" || $filetype == "image/png" || $filetype == "image/gif" )
271
+ {
272
+ $file_name = $_REQUEST["file_name"];
273
+ $extension = explode(".", $file_name);
274
+ if(count($extension) == 2)
275
+ {
276
+ if($extension[1] == "jpg" || $extension[1] == "jpeg" || $extension[1] == "gif" || $extension[1] == "png" || $extension[1] == "JPG" || $extension[1] == "JPEG" || $extension[1] == "GIF" || $extension[1] == "PNG")
277
+ {
278
+ include_once GALLERY_BK_PLUGIN_DIR . "/lib/upload.php";
279
+ }
280
+ }
281
+ else
282
+ {
283
+ die();
284
+ }
285
+
286
+ }
287
+ else
288
+ {
289
+ die();
290
+ }
291
 
292
  }
293
  break;
readme.txt CHANGED
@@ -3,8 +3,8 @@ Contributors: contact-banker,Gallery-Bank
3
  Donate link : http://tech-banker.com/gallery-bank/
4
  Tags: admin, AJAX, album, albums, best gallery, best gallery plugin, best portfolio plugin, comments, easy media gallery, fancy gallery, filterable gallery, filterable portfolio, flash, foto, fotoalbum, gallery, gallery album, gallery bank, gallery image, Gallery Plugin, gallery wordpress plugin, google, grid gallery, html5 player, html5 video, html5-audio, image, image album, image slider, images, lightbox, links, media, modal, multiple pictures, nextgen, page, pagination gallery, pagination portfolio, photo, photo album, photo albums, photo gallery, Photo Slider, photoalbum, photogallery, photos, picture, pictures, plugin, plugin for gallery, plugin gallery, portfolio, portfolio gallery, portfolio wordpress plugin, Post, posts, responsive gallery, seo image, shortcode, sidebar, slideshow, thumbnail, thumbnails, twitter, videos, website gallery, widget, wordpress gallery plugin, wordpress portfolio plugin, wp gallery, wp gallery plugin
5
  Requires at least: 3.3
6
- Tested up to: 3.9.2
7
- Stable tag: 3.0.62
8
  License: GPLv3 or later
9
  License URI: http://www.gnu.org/licenses/gpl-3.0.html
10
 
@@ -52,7 +52,7 @@ It provides a powerful engine for uploading and managing galleries of images & v
52
 
53
  Gallery Bank is designed to adapt each portfolio to any situation and can be easily used on mobiles as it is a Responsive Plugin.
54
 
55
- ***August 28, 2014: We're happy to announce that Gallery Bank reached 179,400+ plugin downloads in only 1 year. We frequently receive positive feedback from people using our Gallery Bank Plugin for WordPress. Thanks so much for your support!***
56
 
57
  <a href="http://tech-banker.com/forum/gallery-bank-support/" target="_blank">Support Desk - feel free to ask your Queries</a>
58
 
@@ -500,6 +500,15 @@ is False in shortcode.
500
 
501
  == Changelog ==
502
 
 
 
 
 
 
 
 
 
 
503
  = 3.0.61 =
504
 
505
  * Major Security Bug Fixed related to Upload.php file
3
  Donate link : http://tech-banker.com/gallery-bank/
4
  Tags: admin, AJAX, album, albums, best gallery, best gallery plugin, best portfolio plugin, comments, easy media gallery, fancy gallery, filterable gallery, filterable portfolio, flash, foto, fotoalbum, gallery, gallery album, gallery bank, gallery image, Gallery Plugin, gallery wordpress plugin, google, grid gallery, html5 player, html5 video, html5-audio, image, image album, image slider, images, lightbox, links, media, modal, multiple pictures, nextgen, page, pagination gallery, pagination portfolio, photo, photo album, photo albums, photo gallery, Photo Slider, photoalbum, photogallery, photos, picture, pictures, plugin, plugin for gallery, plugin gallery, portfolio, portfolio gallery, portfolio wordpress plugin, Post, posts, responsive gallery, seo image, shortcode, sidebar, slideshow, thumbnail, thumbnails, twitter, videos, website gallery, widget, wordpress gallery plugin, wordpress portfolio plugin, wp gallery, wp gallery plugin
5
  Requires at least: 3.3
6
+ Tested up to: 4.0
7
+ Stable tag: 3.0.63
8
  License: GPLv3 or later
9
  License URI: http://www.gnu.org/licenses/gpl-3.0.html
10
 
52
 
53
  Gallery Bank is designed to adapt each portfolio to any situation and can be easily used on mobiles as it is a Responsive Plugin.
54
 
55
+ ***September 5, 2014: We're happy to announce that Gallery Bank reached 183,200+ plugin downloads in only 1 year. We frequently receive positive feedback from people using our Gallery Bank Plugin for WordPress. Thanks so much for your support!***
56
 
57
  <a href="http://tech-banker.com/forum/gallery-bank-support/" target="_blank">Support Desk - feel free to ask your Queries</a>
58
 
500
 
501
  == Changelog ==
502
 
503
+ = 3.0.63 =
504
+
505
+ * Major Security Bug Fixed
506
+
507
+ = 3.0.62 =
508
+
509
+ * Few Bugs Fixed
510
+ * Banner Updated
511
+
512
  = 3.0.61 =
513
 
514
  * Major Security Bug Fixed related to Upload.php file
views/edit-album.php CHANGED
@@ -547,6 +547,11 @@
547
  },
548
  flash_swf_url: url + "Moxie.swf",
549
  silverlight_xap_url: url + "Moxie.xap",
 
 
 
 
 
550
  init: {
551
  FileUploaded: function (up, file) {
552
 
547
  },
548
  flash_swf_url: url + "Moxie.swf",
549
  silverlight_xap_url: url + "Moxie.xap",
550
+ preinit : {
551
+ UploadFile: function(up, file) {
552
+ up.setOption('url', ajaxurl + "?file_type="+file.type+"&file_name="+file.name+"&param=upload_pic&action=upload_library");
553
+ }
554
+ },
555
  init: {
556
  FileUploaded: function (up, file) {
557