Gallery Bank: WordPress Photo Gallery Plugin - Version 3.1.23

Version Description

  • Code Optimized
  • Few Bugs Fixed
Download this release

Release Info

Developer contact-banker
Plugin Icon 128x128 Gallery Bank: WordPress Photo Gallery Plugin
Version 3.1.23
Comparing to
See all releases

Code changes from version 3.1.22 to 3.1.23

Files changed (15) hide show
  1. assets/css/{prettyPhoto.css → pretty-photo.css} +0 -0
  2. assets/js/{imgLiquid.js → img-liquid.js} +0 -0
  3. assets/js/{jquery.dataTables.min.js → jquery.data-tables.min.js} +1 -1
  4. assets/js/{jquery.prettyPhoto.js → jquery.pretty-photo.js} +8 -8
  5. assets/js/{jquery.Tooltip.js → jquery.tooltip.js} +0 -0
  6. gallery-bank.php +1 -1
  7. lib/add-new-album-class.php +18 -18
  8. lib/front-view-all-albums-class.php +15 -15
  9. lib/gallery-bank-class.php +9 -9
  10. lib/upload.php +2 -2
  11. readme.txt +7 -2
  12. views/album-sorting.php +1 -1
  13. views/edit-album.php +9 -7
  14. views/images-sorting.php +3 -3
  15. views/includes_common_before.php +3 -3
assets/css/{prettyPhoto.css → pretty-photo.css} RENAMED
File without changes
assets/js/{imgLiquid.js → img-liquid.js} RENAMED
File without changes
assets/js/{jquery.dataTables.min.js → jquery.data-tables.min.js} RENAMED
@@ -1,5 +1,5 @@
1
  /*
2
- * File: jquery.dataTables.min.js
3
  * Version: 1.9.4
4
  * Author: Allan Jardine (www.sprymedia.co.uk)
5
  * Info: www.datatables.net
1
  /*
2
+ * File: jquery.data-tables.min.js
3
  * Version: 1.9.4
4
  * Author: Allan Jardine (www.sprymedia.co.uk)
5
  * Info: www.datatables.net
assets/js/{jquery.prettyPhoto.js → jquery.pretty-photo.js} RENAMED
@@ -1,19 +1,19 @@
1
  /* ------------------------------------------------------------------------
2
  prettyPhoto v3.1.5
3
  � Copyright, Stephane Caron
4
- http://www.no-margin-for-errors.com
5
 
6
 
7
  = ============================ Released under =============================
8
 
9
  GPLV2 license
10
- http://www.gnu.org/licenses/gpl-2.0.html
11
 
12
  You are free to use prettyPhoto in commercial projects as long as the
13
  copyright header is left intact.
14
 
15
  ============================ More information ============================
16
- http://www.no-margin-for-errors.com/projects/prettyPhoto/
17
 
18
 
19
  ============================== Description ===============================
@@ -22,7 +22,7 @@
22
  it also add support for videos, flash, YouTube, iFrame. It's a full blown
23
  media modal box.
24
 
25
- Please refer to http://www.no-margin-for-errors.com/projects/prettyPhoto/
26
  for all the details on how to use.
27
  ------------------------------------------------------------------------- */
28
 
@@ -390,11 +390,11 @@
390
  </div>',
391
  image_markup: '<img id="fullResImage" src="{path}" />',
392
  flash_markup: '<object classid="clsid:D27CDB6E-AE6D-11cf-96B8-444553540000" width="{width}" height="{height}"><param name="wmode" value="{wmode}" /><param name="allowfullscreen" value="true" /><param name="allowscriptaccess" value="always" /><param name="movie" value="{path}" /><embed src="{path}" type="application/x-shockwave-flash" allowfullscreen="true" allowscriptaccess="always" width="{width}" height="{height}" wmode="{wmode}"></embed></object>',
393
- quicktime_markup: '<object classid="clsid:02BF25D5-8C17-4B23-BC80-D3488ABDDC6B" codebase="http://www.apple.com/qtactivex/qtplugin.cab" height="{height}" width="{width}"><param name="src" value="{path}"><param name="autoplay" value="{autoplay}"><param name="type" value="video/quicktime"><embed src="{path}" height="{height}" width="{width}" autoplay="{autoplay}" type="video/quicktime" pluginspage="http://www.apple.com/quicktime/download/"></embed></object>',
394
  iframe_markup: '<iframe src ="{path}" width="{width}" height="{height}" frameborder="no"></iframe>',
395
  inline_markup: '<div class="pp_inline">{content}</div>',
396
  custom_markup: "",
397
- social_tools: '<div class="twitter"><a href="http://twitter.com/share" class="twitter-share-button" data-count="none">Tweet</a><script type="text/javascript" src="http://platform.twitter.com/widgets.js"></script></div><div class="facebook"><iframe src="//www.facebook.com/plugins/like.php?locale=en_US&href={location_href}&amp;layout=button_count&amp;show_faces=true&amp;width=500&amp;action=like&amp;font&amp;colorscheme=light&amp;height=23" scrolling="no" frameborder="0" style="border:none; overflow:hidden; width:500px; height:23px;" allowTransparency="true"></iframe></div>' /* html or false to disable */
398
  }, s);
399
  var o = this, u = false, a, f, l, c, h, p, d = e(window).height(), v = e(window).width(), m;
400
  doresize = true, scroll_pos = T();
@@ -531,7 +531,7 @@
531
  if (movie_id.indexOf("&") > 0)
532
  movie_id = movie_id.substr(0, movie_id.indexOf("&"))
533
  }
534
- movie = "http://www.youtube.com/embed/" + movie_id;
535
  i("rel", pp_images[set_position]) ? movie += "?rel=" + i("rel", pp_images[set_position]) : movie += "?rel=1";
536
  if (settings.autoplay)
537
  movie += "&autoplay=1";
@@ -542,7 +542,7 @@
542
  movie_id = pp_images[set_position];
543
  var t = /http(s?):\/\/(www\.)?vimeo.com\/(\d+)/;
544
  var n = movie_id.match(t);
545
- movie = "http://player.vimeo.com/video/" + n[3] + "?title=0&byline=0&portrait=0";
546
  if (settings.autoplay)
547
  movie += "&autoplay=1;";
548
  vimeo_width = a["width"] + "/embed/?moog_width=" + a["width"];
1
  /* ------------------------------------------------------------------------
2
  prettyPhoto v3.1.5
3
  � Copyright, Stephane Caron
4
+ https://www.no-margin-for-errors.com
5
 
6
 
7
  = ============================ Released under =============================
8
 
9
  GPLV2 license
10
+ https://www.gnu.org/licenses/gpl-2.0.html
11
 
12
  You are free to use prettyPhoto in commercial projects as long as the
13
  copyright header is left intact.
14
 
15
  ============================ More information ============================
16
+ https://www.no-margin-for-errors.com/projects/prettyPhoto/
17
 
18
 
19
  ============================== Description ===============================
22
  it also add support for videos, flash, YouTube, iFrame. It's a full blown
23
  media modal box.
24
 
25
+ Please refer to https://www.no-margin-for-errors.com/projects/prettyPhoto/
26
  for all the details on how to use.
27
  ------------------------------------------------------------------------- */
28
 
390
  </div>',
391
  image_markup: '<img id="fullResImage" src="{path}" />',
392
  flash_markup: '<object classid="clsid:D27CDB6E-AE6D-11cf-96B8-444553540000" width="{width}" height="{height}"><param name="wmode" value="{wmode}" /><param name="allowfullscreen" value="true" /><param name="allowscriptaccess" value="always" /><param name="movie" value="{path}" /><embed src="{path}" type="application/x-shockwave-flash" allowfullscreen="true" allowscriptaccess="always" width="{width}" height="{height}" wmode="{wmode}"></embed></object>',
393
+ quicktime_markup: '<object classid="clsid:02BF25D5-8C17-4B23-BC80-D3488ABDDC6B" codebase="https://www.apple.com/qtactivex/qtplugin.cab" height="{height}" width="{width}"><param name="src" value="{path}"><param name="autoplay" value="{autoplay}"><param name="type" value="video/quicktime"><embed src="{path}" height="{height}" width="{width}" autoplay="{autoplay}" type="video/quicktime" pluginspage="https://www.apple.com/quicktime/download/"></embed></object>',
394
  iframe_markup: '<iframe src ="{path}" width="{width}" height="{height}" frameborder="no"></iframe>',
395
  inline_markup: '<div class="pp_inline">{content}</div>',
396
  custom_markup: "",
397
+ social_tools: '<div class="twitter"><a href="https://twitter.com/share" class="twitter-share-button" data-count="none">Tweet</a><script type="text/javascript" src="https://platform.twitter.com/widgets.js"></script></div><div class="facebook"><iframe src="//www.facebook.com/plugins/like.php?locale=en_US&href={location_href}&amp;layout=button_count&amp;show_faces=true&amp;width=500&amp;action=like&amp;font&amp;colorscheme=light&amp;height=23" scrolling="no" frameborder="0" style="border:none; overflow:hidden; width:500px; height:23px;" allowTransparency="true"></iframe></div>' /* html or false to disable */
398
  }, s);
399
  var o = this, u = false, a, f, l, c, h, p, d = e(window).height(), v = e(window).width(), m;
400
  doresize = true, scroll_pos = T();
531
  if (movie_id.indexOf("&") > 0)
532
  movie_id = movie_id.substr(0, movie_id.indexOf("&"))
533
  }
534
+ movie = "https://www.youtube.com/embed/" + movie_id;
535
  i("rel", pp_images[set_position]) ? movie += "?rel=" + i("rel", pp_images[set_position]) : movie += "?rel=1";
536
  if (settings.autoplay)
537
  movie += "&autoplay=1";
542
  movie_id = pp_images[set_position];
543
  var t = /http(s?):\/\/(www\.)?vimeo.com\/(\d+)/;
544
  var n = movie_id.match(t);
545
+ movie = "https://player.vimeo.com/video/" + n[3] + "?title=0&byline=0&portrait=0";
546
  if (settings.autoplay)
547
  movie += "&autoplay=1;";
548
  vimeo_width = a["width"] + "/embed/?moog_width=" + a["width"];
assets/js/{jquery.Tooltip.js → jquery.tooltip.js} RENAMED
File without changes
gallery-bank.php CHANGED
@@ -4,7 +4,7 @@ Plugin Name: Gallery Bank Lite Edition
4
  Plugin URI: http://tech-banker.com
5
  Description: Gallery Bank is an easy to use Responsive WordPress Gallery Plugin for photos, videos, galleries and albums.
6
  Author: Tech Banker
7
- Version: 3.1.22
8
  Author URI: http://tech-banker.com
9
  License: GPLv3 or later
10
  */
4
  Plugin URI: http://tech-banker.com
5
  Description: Gallery Bank is an easy to use Responsive WordPress Gallery Plugin for photos, videos, galleries and albums.
6
  Author: Tech Banker
7
+ Version: 3.1.23
8
  Author URI: http://tech-banker.com
9
  License: GPLv3 or later
10
  */
lib/add-new-album-class.php CHANGED
@@ -126,14 +126,14 @@ else
126
  }
127
  if (isset($_REQUEST["param"]))
128
  {
129
- switch($_REQUEST["param"])
130
  {
131
  case "add_new_dynamic_row_for_image":
132
- $img_path = esc_attr($_REQUEST["img_path"]);
133
- $img_name = esc_attr($_REQUEST["img_name"]);
134
- $img_width = intval($_REQUEST["image_width"]);
135
- $img_height = intval($_REQUEST["image_height"]);
136
- $picid = intval($_REQUEST["picid"]);
137
  process_image_upload($img_path, $img_width, $img_height);
138
  $column1 = "<input type=\"checkbox\" id=\"ux_grp_select_items_" . $picid . "\" name=\"ux_grp_select_items_" . $picid . "\" value=\"" . $picid . "\" />";
139
  array_push($dynamicArray, $column1);
@@ -155,10 +155,10 @@ else
155
 
156
  break;
157
  case "add_pic":
158
- $ux_albumid = intval($_REQUEST["album_id"]);
159
- $ux_controlType = esc_attr($_REQUEST["controlType"]);
160
- $ux_img_name = esc_attr(html_entity_decode($_REQUEST["imagename"]));
161
- $img_gb_path = esc_attr($_REQUEST["img_gb_path"]);
162
 
163
  if ($ux_controlType == "image")
164
  {
@@ -193,10 +193,10 @@ else
193
 
194
  break;
195
  case "update_album":
196
- $albumId = intval($_REQUEST["albumid"]);
197
- $ux_edit_album_name1 = htmlspecialchars(esc_attr($_REQUEST["edit_album_name"]));
198
  $ux_edit_album_name = ($ux_edit_album_name1 == "") ? "Untitled Album" : $ux_edit_album_name1;
199
- $ux_edit_description = htmlspecialchars($_REQUEST["uxEditDescription"]);
200
  $wpdb->query
201
  (
202
  $wpdb->prepare
@@ -210,7 +210,7 @@ else
210
 
211
  break;
212
  case "update_pic":
213
- $album_data = json_decode(stripcslashes($_REQUEST["album_data"]),true);
214
  foreach($album_data as $field)
215
  {
216
  if ($field[0] == "image")
@@ -269,8 +269,8 @@ else
269
  break;
270
  case "delete_pic":
271
 
272
- $data_to_be_deleted = json_decode(stripslashes(html_entity_decode($_REQUEST["delete_array"])));
273
- $albumId = intval($_REQUEST["albumid"]);
274
  $query_data = implode(",",$data_to_be_deleted);
275
  $wpdb->query
276
  (
@@ -279,7 +279,7 @@ else
279
 
280
  break;
281
  case "Delete_album":
282
- $album_id = intval($_REQUEST["album_id"]);
283
  $wpdb->query
284
  (
285
  $wpdb->prepare
@@ -299,7 +299,7 @@ else
299
 
300
  break;
301
  case "gallery_plugin_updates":
302
- $gallery_updates = intval($_REQUEST["gallery_updates"]);
303
  update_option("gallery-bank-automatic_update", $gallery_updates);
304
 
305
  break;
126
  }
127
  if (isset($_REQUEST["param"]))
128
  {
129
+ switch(esc_attr($_REQUEST["param"]))
130
  {
131
  case "add_new_dynamic_row_for_image":
132
+ $img_path = isset($_REQUEST["img_path"]) ? esc_attr($_REQUEST["img_path"]) : "";
133
+ $img_name = isset($_REQUEST["img_name"]) ? esc_attr($_REQUEST["img_name"]) : "";
134
+ $img_width = isset($_REQUEST["image_width"]) ? intval($_REQUEST["image_width"]) : 0;
135
+ $img_height = isset($_REQUEST["image_height"]) ? intval($_REQUEST["image_height"]) : 0;
136
+ $picid = isset($_REQUEST["picid"]) ? intval($_REQUEST["picid"]) : 0;
137
  process_image_upload($img_path, $img_width, $img_height);
138
  $column1 = "<input type=\"checkbox\" id=\"ux_grp_select_items_" . $picid . "\" name=\"ux_grp_select_items_" . $picid . "\" value=\"" . $picid . "\" />";
139
  array_push($dynamicArray, $column1);
155
 
156
  break;
157
  case "add_pic":
158
+ $ux_albumid = isset($_REQUEST["album_id"]) ? intval($_REQUEST["album_id"]) : 0;
159
+ $ux_controlType = isset($_REQUEST["controlType"]) ? esc_attr($_REQUEST["controlType"]) : "";
160
+ $ux_img_name = isset($_REQUEST["imagename"]) ? esc_attr(html_entity_decode($_REQUEST["imagename"])) : "";
161
+ $img_gb_path = isset($_REQUEST["img_gb_path"]) ? esc_attr($_REQUEST["img_gb_path"]) : "";
162
 
163
  if ($ux_controlType == "image")
164
  {
193
 
194
  break;
195
  case "update_album":
196
+ $albumId = isset($_REQUEST["albumid"]) ? intval($_REQUEST["albumid"]) : 0;
197
+ $ux_edit_album_name1 = isset($_REQUEST["edit_album_name"]) ? htmlspecialchars(esc_attr($_REQUEST["edit_album_name"])) : "";
198
  $ux_edit_album_name = ($ux_edit_album_name1 == "") ? "Untitled Album" : $ux_edit_album_name1;
199
+ $ux_edit_description = isset($_REQUEST["uxEditDescription"]) ? htmlspecialchars($_REQUEST["uxEditDescription"]) : "";
200
  $wpdb->query
201
  (
202
  $wpdb->prepare
210
 
211
  break;
212
  case "update_pic":
213
+ $album_data = isset($_REQUEST["album_data"]) ? json_decode(stripcslashes($_REQUEST["album_data"]),true) : "";
214
  foreach($album_data as $field)
215
  {
216
  if ($field[0] == "image")
269
  break;
270
  case "delete_pic":
271
 
272
+ $data_to_be_deleted = isset($_REQUEST["delete_array"]) ? json_decode(stripslashes(html_entity_decode($_REQUEST["delete_array"]))) : "";
273
+ $albumId = isset($_REQUEST["albumid"]) ? intval($_REQUEST["albumid"]) : 0;
274
  $query_data = implode(",",$data_to_be_deleted);
275
  $wpdb->query
276
  (
279
 
280
  break;
281
  case "Delete_album":
282
+ $album_id = isset($_REQUEST["album_id"]) ? intval($_REQUEST["album_id"]) : 0;
283
  $wpdb->query
284
  (
285
  $wpdb->prepare
299
 
300
  break;
301
  case "gallery_plugin_updates":
302
+ $gallery_updates = isset($_REQUEST["gallery_updates"]) ? intval($_REQUEST["gallery_updates"]) : 0;
303
  update_option("gallery-bank-automatic_update", $gallery_updates);
304
 
305
  break;
lib/front-view-all-albums-class.php CHANGED
@@ -2,22 +2,22 @@
2
  if (isset($_REQUEST["param"]))
3
  {
4
  global $wpdb;
5
- if ($_REQUEST["param"] == "show_album_gallery")
6
  {
7
- $album_id = intval($_REQUEST["album_id"]);
8
- $img_desc = esc_attr($_REQUEST["isImageDesc"]);
9
- $gallery_type = esc_attr($_REQUEST["gallery_format"]);
10
- $img_title = esc_attr($_REQUEST["isImageTitle"]);
11
- $img_in_row = esc_attr($_REQUEST["images_in_row"]);
12
- $widget = esc_attr($_REQUEST["iswidget"]);
13
- $special_effect = esc_attr($_REQUEST["special_effects"]);
14
- $animation_effect = esc_attr($_REQUEST["animation_effects"]);
15
- $image_width = esc_attr($_REQUEST["filmstrip_width"]);
16
- $album_title = esc_attr($_REQUEST["show_album_title"]);
17
- $responsive = esc_attr($_REQUEST["isResponsive"]);
18
- $no_of_images = esc_attr($_REQUEST["no_of_images"]);
19
- $display = esc_attr($_REQUEST["display"]);
20
- $sort_by = esc_attr($_REQUEST["sort_by"]);
21
 
22
  $album_type = "images";
23
  include GALLERY_BK_PLUGIN_DIR . "/front_views/includes_common_before.php";
2
  if (isset($_REQUEST["param"]))
3
  {
4
  global $wpdb;
5
+ if (esc_attr($_REQUEST["param"]) == "show_album_gallery")
6
  {
7
+ $album_id = isset($_REQUEST["album_id"]) ? intval($_REQUEST["album_id"]) : 0;
8
+ $img_desc = isset($_REQUEST["isImageDesc"]) ? esc_attr($_REQUEST["isImageDesc"]) : "";
9
+ $gallery_type = isset($_REQUEST["gallery_format"]) ? esc_attr($_REQUEST["gallery_format"]) : "";
10
+ $img_title = isset($_REQUEST["isImageTitle"]) ? esc_attr($_REQUEST["isImageTitle"]) : "";
11
+ $img_in_row = isset($_REQUEST["images_in_row"]) ? esc_attr($_REQUEST["images_in_row"]) : "";
12
+ $widget = isset($_REQUEST["iswidget"]) ? esc_attr($_REQUEST["iswidget"]) : "";
13
+ $special_effect = isset($_REQUEST["special_effects"]) ? esc_attr($_REQUEST["special_effects"]) : "";
14
+ $animation_effect = isset($_REQUEST["animation_effects"]) ? esc_attr($_REQUEST["animation_effects"]) : "";
15
+ $image_width = isset($_REQUEST["filmstrip_width"]) ? esc_attr($_REQUEST["filmstrip_width"]) : "";
16
+ $album_title = isset($_REQUEST["show_album_title"]) ? esc_attr($_REQUEST["show_album_title"]) : "";
17
+ $responsive = isset($_REQUEST["isResponsive"]) ? esc_attr($_REQUEST["isResponsive"]) : "";
18
+ $no_of_images = isset($_REQUEST["no_of_images"]) ? esc_attr($_REQUEST["no_of_images"]) : "";
19
+ $display = isset($_REQUEST["display"]) ? esc_attr($_REQUEST["display"]) : "";
20
+ $sort_by = isset($_REQUEST["sort_by"]) ? esc_attr($_REQUEST["sort_by"]) : "";
21
 
22
  $album_type = "images";
23
  include GALLERY_BK_PLUGIN_DIR . "/front_views/includes_common_before.php";
lib/gallery-bank-class.php CHANGED
@@ -373,14 +373,14 @@ if(!function_exists("backend_scripts_calls"))
373
  wp_enqueue_script("jquery-ui-sortable");
374
  wp_enqueue_script("jquery-ui-dialog");
375
  wp_enqueue_script("farbtastic");
376
- wp_enqueue_script("imgLiquid.js", plugins_url("/assets/js/imgLiquid.js",dirname(__FILE__)));
377
  wp_enqueue_script("plupload.full.min.js", plugins_url("/assets/js/plupload.full.min.js",dirname(__FILE__)), array("jquery-ui-widget","jquery-ui-progressbar"),false);
378
- wp_enqueue_script("jquery.dataTables.min.js", plugins_url("/assets/js/jquery.dataTables.min.js",dirname(__FILE__)));
379
  wp_enqueue_script("jquery.validate.min.js", plugins_url("/assets/js/jquery.validate.min.js",dirname(__FILE__)));
380
  wp_enqueue_script("jquery.ui.plupload.js", plugins_url("/assets/js/jquery.ui.plupload.js",dirname(__FILE__)));
381
- wp_enqueue_script("jquery.Tooltip.js", plugins_url("/assets/js/jquery.Tooltip.js",dirname(__FILE__)));
382
  wp_enqueue_script("bootstrap.js", plugins_url("/assets/js/bootstrap.js",dirname(__FILE__)));
383
- wp_enqueue_script("jquery.prettyPhoto.js", plugins_url("/assets/js/jquery.prettyPhoto.js",dirname(__FILE__)));
384
  wp_enqueue_style("google-fonts-roboto", "http://fonts.googleapis.com/css?family=Roboto Condensed:300|Roboto Condensed:300|Roboto Condensed:300|Roboto Condensed:regular|Roboto Condensed:300");
385
  }
386
  }
@@ -391,8 +391,8 @@ if(!function_exists("frontend_plugin_js_scripts_gallery_bank"))
391
  wp_enqueue_script("jquery");
392
  wp_enqueue_script("jquery.masonry.min.js", plugins_url("/assets/js/jquery.masonry.min.js",dirname(__FILE__)));
393
  wp_enqueue_script("isotope.pkgd.js", plugins_url("/assets/js/isotope.pkgd.js",dirname(__FILE__)));
394
- wp_enqueue_script("imgLiquid.js", plugins_url("/assets/js/imgLiquid.js",dirname(__FILE__)));
395
- wp_enqueue_script("jquery.prettyPhoto.js", plugins_url("/assets/js/jquery.prettyPhoto.js",dirname(__FILE__)));
396
  }
397
  }
398
  //--------------------------------------------------------------------------------------------------------------//
@@ -410,7 +410,7 @@ if(!function_exists("backend_css_calls"))
410
  wp_enqueue_style("simple-line-icons.css", plugins_url("/assets/css/icons/icons.css",dirname(__FILE__)));
411
  wp_enqueue_style("system-message.css", plugins_url("/assets/css/system-message.css",dirname(__FILE__)));
412
  wp_enqueue_style("gallery-bank.css", plugins_url("/assets/css/gallery-bank.css",dirname(__FILE__)));
413
- wp_enqueue_style("prettyPhoto.css", plugins_url("/assets/css/prettyPhoto.css",dirname(__FILE__)));
414
  wp_enqueue_style("premium-edition.css", plugins_url("/assets/css/premium-edition.css",dirname(__FILE__)));
415
  wp_enqueue_style("responsive.css", plugins_url("/assets/css/responsive.css",dirname(__FILE__)));
416
  }
@@ -420,7 +420,7 @@ if(!function_exists("frontend_plugin_css_scripts_gallery_bank"))
420
  function frontend_plugin_css_scripts_gallery_bank()
421
  {
422
  wp_enqueue_style("gallery-bank.css", plugins_url("/assets/css/gallery-bank.css",dirname(__FILE__)));
423
- wp_enqueue_style("prettyPhoto.css", plugins_url("/assets/css/prettyPhoto.css",dirname(__FILE__)));
424
  }
425
  }
426
 
@@ -428,7 +428,7 @@ if(!function_exists("frontend_plugin_css_scripts_gallery_bank"))
428
  // REGISTER AJAX BASED FUNCTIONS TO BE CALLED ON ACTION TYPE AS PER WORDPRESS GUIDELINES
429
  //--------------------------------------------------------------------------------------------------------------//
430
  if (isset($_REQUEST["action"])) {
431
- switch ($_REQUEST["action"]) {
432
  case "add_new_album_library":
433
  add_action("admin_init", "album_gallery_library");
434
  if(!function_exists("album_gallery_library"))
373
  wp_enqueue_script("jquery-ui-sortable");
374
  wp_enqueue_script("jquery-ui-dialog");
375
  wp_enqueue_script("farbtastic");
376
+ wp_enqueue_script("img-liquid", plugins_url("/assets/js/img-liquid.js",dirname(__FILE__)));
377
  wp_enqueue_script("plupload.full.min.js", plugins_url("/assets/js/plupload.full.min.js",dirname(__FILE__)), array("jquery-ui-widget","jquery-ui-progressbar"),false);
378
+ wp_enqueue_script("jquery.data-tables.min.js", plugins_url("/assets/js/jquery.data-tables.min.js",dirname(__FILE__)));
379
  wp_enqueue_script("jquery.validate.min.js", plugins_url("/assets/js/jquery.validate.min.js",dirname(__FILE__)));
380
  wp_enqueue_script("jquery.ui.plupload.js", plugins_url("/assets/js/jquery.ui.plupload.js",dirname(__FILE__)));
381
+ wp_enqueue_script("jquery.tooltip.js", plugins_url("/assets/js/jquery.tooltip.js",dirname(__FILE__)));
382
  wp_enqueue_script("bootstrap.js", plugins_url("/assets/js/bootstrap.js",dirname(__FILE__)));
383
+ wp_enqueue_script("jquery.pretty-photo.js", plugins_url("/assets/js/jquery.pretty-photo.js",dirname(__FILE__)));
384
  wp_enqueue_style("google-fonts-roboto", "http://fonts.googleapis.com/css?family=Roboto Condensed:300|Roboto Condensed:300|Roboto Condensed:300|Roboto Condensed:regular|Roboto Condensed:300");
385
  }
386
  }
391
  wp_enqueue_script("jquery");
392
  wp_enqueue_script("jquery.masonry.min.js", plugins_url("/assets/js/jquery.masonry.min.js",dirname(__FILE__)));
393
  wp_enqueue_script("isotope.pkgd.js", plugins_url("/assets/js/isotope.pkgd.js",dirname(__FILE__)));
394
+ wp_enqueue_script("img-liquid", plugins_url("/assets/js/img-liquid.js",dirname(__FILE__)));
395
+ wp_enqueue_script("jquery.pretty-photo.js", plugins_url("/assets/js/jquery.pretty-photo.js",dirname(__FILE__)));
396
  }
397
  }
398
  //--------------------------------------------------------------------------------------------------------------//
410
  wp_enqueue_style("simple-line-icons.css", plugins_url("/assets/css/icons/icons.css",dirname(__FILE__)));
411
  wp_enqueue_style("system-message.css", plugins_url("/assets/css/system-message.css",dirname(__FILE__)));
412
  wp_enqueue_style("gallery-bank.css", plugins_url("/assets/css/gallery-bank.css",dirname(__FILE__)));
413
+ wp_enqueue_style("pretty-photo.css", plugins_url("/assets/css/pretty-photo.css",dirname(__FILE__)));
414
  wp_enqueue_style("premium-edition.css", plugins_url("/assets/css/premium-edition.css",dirname(__FILE__)));
415
  wp_enqueue_style("responsive.css", plugins_url("/assets/css/responsive.css",dirname(__FILE__)));
416
  }
420
  function frontend_plugin_css_scripts_gallery_bank()
421
  {
422
  wp_enqueue_style("gallery-bank.css", plugins_url("/assets/css/gallery-bank.css",dirname(__FILE__)));
423
+ wp_enqueue_style("pretty-photo.css", plugins_url("/assets/css/pretty-photo.css",dirname(__FILE__)));
424
  }
425
  }
426
 
428
  // REGISTER AJAX BASED FUNCTIONS TO BE CALLED ON ACTION TYPE AS PER WORDPRESS GUIDELINES
429
  //--------------------------------------------------------------------------------------------------------------//
430
  if (isset($_REQUEST["action"])) {
431
+ switch (esc_attr($_REQUEST["action"])) {
432
  case "add_new_album_library":
433
  add_action("admin_init", "album_gallery_library");
434
  if(!function_exists("album_gallery_library"))
lib/upload.php CHANGED
@@ -20,7 +20,7 @@ if (!current_user_can($user_role_permission))
20
  }
21
  else
22
  {
23
- if ((wp_verify_nonce($_REQUEST["_nonce"], "manage_uploading")) && ($_REQUEST["param"] == "upload_pic"))
24
  {
25
  /**
26
  * upload.php
@@ -68,7 +68,7 @@ else
68
 
69
  // Get a file name
70
  if (isset($_REQUEST["name"])) {
71
- $fileName = $_REQUEST["name"];
72
  } elseif (!empty($_FILES)) {
73
  $fileName = $_FILES["file"]["name"];
74
  } else {
20
  }
21
  else
22
  {
23
+ if ((wp_verify_nonce(esc_attr($_REQUEST["_nonce"]), "manage_uploading")) && (esc_attr($_REQUEST["param"]) == "upload_pic"))
24
  {
25
  /**
26
  * upload.php
68
 
69
  // Get a file name
70
  if (isset($_REQUEST["name"])) {
71
+ $fileName = esc_attr($_REQUEST["name"]);
72
  } elseif (!empty($_FILES)) {
73
  $fileName = $_FILES["file"]["name"];
74
  } else {
readme.txt CHANGED
@@ -1,9 +1,9 @@
1
  === Gallery Bank - Photo Galleries & Albums ===
2
  Contributors: Gallery-Bank,contact-banker
3
- Tags: add album, add gallery, add pictures, admin, AJAX, album, best gallery, best gallery plugin, Facebook, filterable gallery, foto, fotoalbum, fotogalerie, free photo gallery, fullscreen gallery, fullscreen slider, galeri, galerie, Galleria, galleries, gallery, gallery decription, gallery image, gallery lightbox, gallery shortcode, gallery slider, image, image album, image gallery, image lightbox, image rotate, image slider, image slideshow, images, images gallery, instagram, jquery, jquery gallery, lightbox, media, mosaic, multiple pictures, photo, photo album, photo albums, photo gallery, photoalbum, photogallery, photography, photos, photoset, picture, pictures, responsive, responsive gallery, responsive wordpress photo gallery, sidebar, Simple gallery, slide, slide show, slideshow, thumbnail, thumbnail view, thumbnails, thumbs, upload images, upload photos, video gallery, videos, view images, view pictures, website gallery, widget gallery, wordpress gallery, wordpress gallery plugin, wordpress photo gallery plugin, wp gallery, wp gallery plugins, youtube, gallery bank
4
  Requires at least: 3.4
5
  Tested up to: 4.5.3
6
- Stable tag: 3.1.22
7
  License: GPLv3 or later
8
  License URI: http://www.gnu.org/licenses/gpl-3.0.html
9
 
@@ -500,6 +500,11 @@ is False in shortcode.
500
 
501
  == Changelog ==
502
 
 
 
 
 
 
503
  = 3.1.22 =
504
 
505
  * Major Cross Site Scripting Security Issue Fix
1
  === Gallery Bank - Photo Galleries & Albums ===
2
  Contributors: Gallery-Bank,contact-banker
3
+ Tags: add album, add gallery, add pictures, best gallery plugin, filterable gallery, gallery decription, gallery image, gallery lightbox, gallery shortcode, image lightbox, image rotate, image slider, image slideshow, lightbox, mosaic, photo albums, photo gallery, photoalbum, responsive gallery, thumbnail view, video gallery, widget gallery, wordpress gallery, wp gallery, gallery bank
4
  Requires at least: 3.4
5
  Tested up to: 4.5.3
6
+ Stable tag: 3.1.23
7
  License: GPLv3 or later
8
  License URI: http://www.gnu.org/licenses/gpl-3.0.html
9
 
500
 
501
  == Changelog ==
502
 
503
+ = 3.1.23 =
504
+
505
+ * Code Optimized
506
+ * Few Bugs Fixed
507
+
508
  = 3.1.22 =
509
 
510
  * Major Cross Site Scripting Security Issue Fix
views/album-sorting.php CHANGED
@@ -123,7 +123,7 @@ if(isset($album))
123
  margin-bottom: <?php echo $margin_btw_cover_thumbnails; ?>px;
124
  }
125
 
126
- .layout-controls > a#<?php echo $_REQUEST["order_id"];?>
127
  {
128
  color:#000000;font-weight:bold;
129
  }
123
  margin-bottom: <?php echo $margin_btw_cover_thumbnails; ?>px;
124
  }
125
 
126
+ .layout-controls > a#<?php echo isset($_REQUEST["order_id"]) ? intval($_REQUEST["order_id"]) : 0;?>
127
  {
128
  color:#000000;font-weight:bold;
129
  }
views/edit-album.php CHANGED
@@ -18,7 +18,7 @@
18
  else
19
  {
20
  $upload_photos = wp_create_nonce("manage_uploading");
21
- $album_id = intval($_REQUEST["album_id"]);
22
  $last_albums_id = $wpdb->get_var
23
  (
24
  $wpdb->prepare
@@ -456,19 +456,21 @@
456
  jQuery("#edit_album").validate
457
  ({
458
  submitHandler: function ()
459
- {
460
  jQuery("#update_album_success_message").css("display", "block");
461
  jQuery("body,html").animate
462
  ({
463
  scrollTop: jQuery("body,html").position().top
464
  }, "slow");
465
- var albumid = jQuery("#ux_hidden_album_id").val();
466
- jQuery.post(ajaxurl,"albumid=" + albumid + "&delete_array=" + JSON.stringify(delete_array) +"&param=delete_pic&action=add_new_album_library", function ()
467
  {
 
 
 
 
468
 
469
- });
470
-
471
- var uxEditDescription = "";
472
 
473
  <?php
474
  if(class_exists("ckeditor_wordpress"))
18
  else
19
  {
20
  $upload_photos = wp_create_nonce("manage_uploading");
21
+ $album_id = isset($_REQUEST["album_id"]) ? intval($_REQUEST["album_id"]) : 0;
22
  $last_albums_id = $wpdb->get_var
23
  (
24
  $wpdb->prepare
456
  jQuery("#edit_album").validate
457
  ({
458
  submitHandler: function ()
459
+ {
460
  jQuery("#update_album_success_message").css("display", "block");
461
  jQuery("body,html").animate
462
  ({
463
  scrollTop: jQuery("body,html").position().top
464
  }, "slow");
465
+ var albumid = jQuery("#ux_hidden_album_id").val();
466
+ if(delete_array.length > 0)
467
  {
468
+ jQuery.post(ajaxurl,"albumid=" + albumid + "&delete_array=" + JSON.stringify(delete_array) +"&param=delete_pic&action=add_new_album_library", function (data)
469
+ {
470
+ });
471
+ }
472
 
473
+ var uxEditDescription = "";
 
 
474
 
475
  <?php
476
  if(class_exists("ckeditor_wordpress"))
views/images-sorting.php CHANGED
@@ -19,8 +19,8 @@
19
  else
20
  {
21
  $unique_id = rand(100, 10000);
22
- $album_id = intval($_REQUEST["album_id"]);
23
- $img_in_row = intval($_REQUEST["row"]);
24
  if (isset($_REQUEST["order_id"])) {
25
  switch (esc_attr($_REQUEST["order_id"])) {
26
  case "unsort":
@@ -165,7 +165,7 @@
165
  margin-right: <?php echo $margin_btw_thumbnails;?>px;
166
  margin-bottom: <?php echo $margin_btw_thumbnails;?>px;
167
  }
168
- .layout-controls > a#<?php echo $_REQUEST["order_id"];?>
169
  {
170
  color: #000000 !important;
171
  font-weight: bold !important;
19
  else
20
  {
21
  $unique_id = rand(100, 10000);
22
+ $album_id = isset($_REQUEST["album_id"]) ? intval($_REQUEST["album_id"]) : 0;
23
+ $img_in_row = isset($_REQUEST["row"]) ? intval($_REQUEST["row"]) : 0;
24
  if (isset($_REQUEST["order_id"])) {
25
  switch (esc_attr($_REQUEST["order_id"])) {
26
  case "unsort":
165
  margin-right: <?php echo $margin_btw_thumbnails;?>px;
166
  margin-bottom: <?php echo $margin_btw_thumbnails;?>px;
167
  }
168
+ .layout-controls > a#<?php echo esc_attr($_REQUEST["order_id"]);?>
169
  {
170
  color: #000000 !important;
171
  font-weight: bold !important;
views/includes_common_before.php CHANGED
@@ -9,7 +9,7 @@ if (isset($_REQUEST["row"])) {
9
  $img_in_row = 3;
10
  }
11
 
12
- $album_id = intval($_REQUEST["album_id"]);
13
  $album = $wpdb->get_var
14
  (
15
  $wpdb->prepare
@@ -170,7 +170,7 @@ if (count($album_css) != 0) {
170
  }
171
  else if($gallery_type == "masonry")
172
  {
173
-
174
  ?> width: <?php echo ($thumbnails_width + ($margin_btw_thumbnails * 2) + ($thumbnails_border_size * 2)) * $img_in_row ;?>px !important;
175
  <?php
176
  }
@@ -196,7 +196,7 @@ if (count($album_css) != 0) {
196
  .pp_pic_holder.pp_default {
197
  background-color: #ffffff;
198
  }
199
-
200
  div.pp_overlay {
201
  background-color: <?php echo $lightbox_overlay_bg_color;?> !important;
202
  opacity: <?php echo $lightbox_overlay_opacity;?> !important;
9
  $img_in_row = 3;
10
  }
11
 
12
+ $album_id = isset($_REQUEST["album_id"]) ? intval($_REQUEST["album_id"]) : 0;
13
  $album = $wpdb->get_var
14
  (
15
  $wpdb->prepare
170
  }
171
  else if($gallery_type == "masonry")
172
  {
173
+
174
  ?> width: <?php echo ($thumbnails_width + ($margin_btw_thumbnails * 2) + ($thumbnails_border_size * 2)) * $img_in_row ;?>px !important;
175
  <?php
176
  }
196
  .pp_pic_holder.pp_default {
197
  background-color: #ffffff;
198
  }
199
+
200
  div.pp_overlay {
201
  background-color: <?php echo $lightbox_overlay_bg_color;?> !important;
202
  opacity: <?php echo $lightbox_overlay_opacity;?> !important;