Gantry 4 Framework - Version 4.1.4

Version Description

  • Fixed potential security risk
Download this release

Release Info

Developer gantry
Plugin Icon 128x128 Gantry 4 Framework
Version 4.1.4
Comparing to
See all releases

Code changes from version 4.1.3 to 4.1.4

Files changed (13) hide show
  1. CHANGELOG.php +4 -1
  2. admin/ajax-models/widgets.php +7 -1
  3. admin/forms/fields/imagepicker.php +1 -1
  4. admin/forms/fields/updater.php +1 -1
  5. admin/widgets/colorchooser/css/mooRainbow-2.0.css +1 -1
  6. core/gantry.class.php +8 -8
  7. core/utilities/gantrycache.class.php +2 -2
  8. functions.php +1 -1
  9. gantry.php +1 -1
  10. readme.txt +11 -2
  11. widgets/breadcrumbs.php +1 -1
  12. widgets/loginbutton.php +1 -1
  13. widgets/loginform.php +1 -1
CHANGELOG.php CHANGED
@@ -2,7 +2,7 @@
2
  /**
3
  * Gantry For Wordpress
4
  *
5
- * @version $Id: CHANGELOG.php 61346 2015-02-27 12:09:53Z jakub $
6
  * @author RocketTheme http://www.rockettheme.com
7
  * @copyright Copyright (C) 2007 - 2015 RocketTheme, LLC
8
  * @license http://www.gnu.org/licenses/gpl-2.0.html GNU/GPLv2 only
@@ -27,6 +27,9 @@ Legend:
27
  - -> Removed
28
  ! -> Note
29
 
 
 
 
30
  ------- 4.1.3 Release [] ------
31
  ^ Updated FontAwesome to 4.3.0
32
  # Updated compatibility for the bbPress
2
  /**
3
  * Gantry For Wordpress
4
  *
5
+ * @version $Id: CHANGELOG.php 61350 2015-03-10 10:40:16Z jakub $
6
  * @author RocketTheme http://www.rockettheme.com
7
  * @copyright Copyright (C) 2007 - 2015 RocketTheme, LLC
8
  * @license http://www.gnu.org/licenses/gpl-2.0.html GNU/GPLv2 only
27
  - -> Removed
28
  ! -> Note
29
 
30
+ ------- 4.1.4 Release [] ------
31
+ * Fixed potential security risk
32
+
33
  ------- 4.1.3 Release [] ------
34
  ^ Updated FontAwesome to 4.3.0
35
  # Updated compatibility for the bbPress
admin/ajax-models/widgets.php CHANGED
@@ -1,6 +1,6 @@
1
  <?php
2
  /**
3
- * @version $Id: widgets.php 59361 2013-03-13 23:10:27Z btowles $
4
  * @author RocketTheme http://www.rockettheme.com
5
  * @copyright Copyright (C) 2007 - 2015 RocketTheme, LLC
6
  * @license http://www.gnu.org/licenses/gpl-2.0.html GNU/GPLv2 only
@@ -100,6 +100,12 @@ switch ($action) {
100
  die();
101
  break;
102
  case 'widgets-mass-actions':
 
 
 
 
 
 
103
  $tmp = array();
104
  $data = stripcslashes($_POST['data']);
105
  foreach (json_decode($data) as $d) {
1
  <?php
2
  /**
3
+ * @version $Id: widgets.php 61350 2015-03-10 10:40:16Z jakub $
4
  * @author RocketTheme http://www.rockettheme.com
5
  * @copyright Copyright (C) 2007 - 2015 RocketTheme, LLC
6
  * @license http://www.gnu.org/licenses/gpl-2.0.html GNU/GPLv2 only
100
  die();
101
  break;
102
  case 'widgets-mass-actions':
103
+ check_ajax_referer('save-sidebar-widgets', 'savewidgets');
104
+
105
+ if (!current_user_can('edit_theme_options')) die('-1');
106
+
107
+ unset($_POST['savewidgets'], $_POST['action']);
108
+
109
  $tmp = array();
110
  $data = stripcslashes($_POST['data']);
111
  foreach (json_decode($data) as $d) {
admin/forms/fields/imagepicker.php CHANGED
@@ -1,6 +1,6 @@
1
  <?php
2
  /**
3
- * @version 4.1.3 February 28, 2015
4
  * @author RocketTheme http://www.rockettheme.com
5
  * @copyright Copyright (C) 2007 - 2015 RocketTheme, LLC
6
  * @license http://www.gnu.org/licenses/gpl-2.0.html GNU/GPLv2 only
1
  <?php
2
  /**
3
+ * @version 4.1.4 March 11, 2015
4
  * @author RocketTheme http://www.rockettheme.com
5
  * @copyright Copyright (C) 2007 - 2015 RocketTheme, LLC
6
  * @license http://www.gnu.org/licenses/gpl-2.0.html GNU/GPLv2 only
admin/forms/fields/updater.php CHANGED
@@ -27,7 +27,7 @@ class GantryFormFieldUpdater extends GantryFormField
27
 
28
  $currentVersion = GANTRY_VERSION;
29
 
30
- if ($currentVersion == "\4.1.3") $currentVersion = "[DEV]";
31
 
32
  // curl check
33
  if (!function_exists('curl_version')) {
27
 
28
  $currentVersion = GANTRY_VERSION;
29
 
30
+ if ($currentVersion == "\4.1.4") $currentVersion = "[DEV]";
31
 
32
  // curl check
33
  if (!function_exists('curl_version')) {
admin/widgets/colorchooser/css/mooRainbow-2.0.css CHANGED
@@ -1,5 +1,5 @@
1
  /**
2
- * @version 4.1.3 February 28, 2015
3
  * @author RocketTheme http://www.rockettheme.com
4
  * @copyright Copyright (C) 2007 - 2015 RocketTheme, LLC
5
  * @license http://www.gnu.org/licenses/gpl-2.0.html GNU/GPLv2 only
1
  /**
2
+ * @version 4.1.4 March 11, 2015
3
  * @author RocketTheme http://www.rockettheme.com
4
  * @copyright Copyright (C) 2007 - 2015 RocketTheme, LLC
5
  * @license http://www.gnu.org/licenses/gpl-2.0.html GNU/GPLv2 only
core/gantry.class.php CHANGED
@@ -1055,7 +1055,7 @@ class Gantry
1055
  $path = '/' . preg_replace('#^' . quotemeta($this->baseUrl) . '#', "", $path);
1056
  }
1057
  $filename = strtolower(basename($path, '.css')) . rand(0, 1000);
1058
- wp_enqueue_style($filename, $path, array(), '4.1.3');
1059
  $deps[] = $path;
1060
  }
1061
  }
@@ -1068,11 +1068,11 @@ class Gantry
1068
  if ($this->baseUrl != "/") {
1069
  $path = '/' . preg_replace('#^' . quotemeta($this->baseUrl) . '#', "", $path);
1070
  }
1071
- wp_enqueue_script($path, $path, $deps, '4.1.3');
1072
  $deps[] = $path;
1073
  }
1074
  foreach ($this->_header_full_scripts as $strSrc) {
1075
- wp_enqueue_script($strSrc, $strSrc, $deps, '4.1.3');
1076
  $deps[] = $strSrc;
1077
  }
1078
 
@@ -1112,11 +1112,11 @@ class Gantry
1112
  if ($this->baseUrl != "/") {
1113
  $path = '/' . preg_replace('#^' . quotemeta($this->baseUrl) . '#', "", $path);
1114
  }
1115
- wp_enqueue_script($path, $path, $deps, '4.1.3', true);
1116
  $deps[] = $path;
1117
  }
1118
  foreach ($this->_footer_full_scripts as $strSrc) {
1119
- wp_enqueue_script($strSrc, $strSrc, $deps, '4.1.3', true);
1120
  $deps[] = $strSrc;
1121
  }
1122
 
@@ -1764,7 +1764,7 @@ class Gantry
1764
  if (!defined('GANTRY_FINALIZED')) {
1765
  $this->_styles[$priority][] = $link;
1766
  } else {
1767
- wp_enqueue_style($link->getUrl(), $link->getUrl(), array(), '4.1.3');
1768
  }
1769
  }
1770
  }
@@ -1878,7 +1878,7 @@ class Gantry
1878
  $this->_footerscripts[$full_path] = $check_url_path . $query_string;
1879
  }
1880
  } else {
1881
- wp_enqueue_script($check_url_path, $check_url_path, array(), '4.1.3', $in_footer);
1882
  }
1883
  break;
1884
  }
@@ -1916,7 +1916,7 @@ class Gantry
1916
  $this->_footerscripts[$check_path] = $check_url_path . $query_string;
1917
  }
1918
  } else {
1919
- wp_enqueue_script($check_url_path, $check_url_path, array(), '4.1.3', $in_footer);
1920
  }
1921
  break(2);
1922
  }
1055
  $path = '/' . preg_replace('#^' . quotemeta($this->baseUrl) . '#', "", $path);
1056
  }
1057
  $filename = strtolower(basename($path, '.css')) . rand(0, 1000);
1058
+ wp_enqueue_style($filename, $path, array(), '4.1.4');
1059
  $deps[] = $path;
1060
  }
1061
  }
1068
  if ($this->baseUrl != "/") {
1069
  $path = '/' . preg_replace('#^' . quotemeta($this->baseUrl) . '#', "", $path);
1070
  }
1071
+ wp_enqueue_script($path, $path, $deps, '4.1.4');
1072
  $deps[] = $path;
1073
  }
1074
  foreach ($this->_header_full_scripts as $strSrc) {
1075
+ wp_enqueue_script($strSrc, $strSrc, $deps, '4.1.4');
1076
  $deps[] = $strSrc;
1077
  }
1078
 
1112
  if ($this->baseUrl != "/") {
1113
  $path = '/' . preg_replace('#^' . quotemeta($this->baseUrl) . '#', "", $path);
1114
  }
1115
+ wp_enqueue_script($path, $path, $deps, '4.1.4', true);
1116
  $deps[] = $path;
1117
  }
1118
  foreach ($this->_footer_full_scripts as $strSrc) {
1119
+ wp_enqueue_script($strSrc, $strSrc, $deps, '4.1.4', true);
1120
  $deps[] = $strSrc;
1121
  }
1122
 
1764
  if (!defined('GANTRY_FINALIZED')) {
1765
  $this->_styles[$priority][] = $link;
1766
  } else {
1767
+ wp_enqueue_style($link->getUrl(), $link->getUrl(), array(), '4.1.4');
1768
  }
1769
  }
1770
  }
1878
  $this->_footerscripts[$full_path] = $check_url_path . $query_string;
1879
  }
1880
  } else {
1881
+ wp_enqueue_script($check_url_path, $check_url_path, array(), '4.1.4', $in_footer);
1882
  }
1883
  break;
1884
  }
1916
  $this->_footerscripts[$check_path] = $check_url_path . $query_string;
1917
  }
1918
  } else {
1919
+ wp_enqueue_script($check_url_path, $check_url_path, array(), '4.1.4', $in_footer);
1920
  }
1921
  break(2);
1922
  }
core/utilities/gantrycache.class.php CHANGED
@@ -26,7 +26,7 @@ class GantryCache
26
  /**
27
  *
28
  */
29
- const ADMIN_GROUP_NAME = 'GantryAdmin-4.1.3';
30
 
31
  const ADMIN_LIFETIME = 86400;
32
 
@@ -122,7 +122,7 @@ class GantryCache
122
  $this->cache->addDriver('frontend', new WpTransientCacheDriver($this->group, $this->lifetime));
123
  } elseif (is_admin()) {
124
  // TODO get lifetime for backend cache
125
- $this->group = self::ADMIN_GROUP_NAME . '-4.1.3';
126
  $this->cache->addDriver('admin', new WpTransientCacheDriver($this->group, self::ADMIN_LIFETIME));
127
  }
128
  }
26
  /**
27
  *
28
  */
29
+ const ADMIN_GROUP_NAME = 'GantryAdmin-4.1.4';
30
 
31
  const ADMIN_LIFETIME = 86400;
32
 
122
  $this->cache->addDriver('frontend', new WpTransientCacheDriver($this->group, $this->lifetime));
123
  } elseif (is_admin()) {
124
  // TODO get lifetime for backend cache
125
+ $this->group = self::ADMIN_GROUP_NAME . '-4.1.4';
126
  $this->cache->addDriver('admin', new WpTransientCacheDriver($this->group, self::ADMIN_LIFETIME));
127
  }
128
  }
functions.php CHANGED
@@ -168,7 +168,7 @@ function gantry_construct()
168
  /**
169
  * @name GANTRY_VERSION
170
  */
171
- define('GANTRY_VERSION', '4.1.3');
172
 
173
 
174
  if (!defined('DS')) {
168
  /**
169
  * @name GANTRY_VERSION
170
  */
171
+ define('GANTRY_VERSION', '4.1.4');
172
 
173
 
174
  if (!defined('DS')) {
gantry.php CHANGED
@@ -10,7 +10,7 @@
10
  Plugin Name: Gantry Template Framework
11
  Plugin URI: http://www.gantry-framework.org/
12
  Description: This is a Framework to support easily modifiable themes that are very extensible.
13
- Version: 4.1.3
14
  Author: RocketTheme
15
  Author URI: http://www.rockettheme.com/wordpress
16
  License: http://www.gnu.org/licenses/gpl-2.0.html GNU/GPLv2 only
10
  Plugin Name: Gantry Template Framework
11
  Plugin URI: http://www.gantry-framework.org/
12
  Description: This is a Framework to support easily modifiable themes that are very extensible.
13
+ Version: 4.1.4
14
  Author: RocketTheme
15
  Author URI: http://www.rockettheme.com/wordpress
16
  License: http://www.gnu.org/licenses/gpl-2.0.html GNU/GPLv2 only
readme.txt CHANGED
@@ -3,8 +3,8 @@ Contributors: gantry
3
  Author URI: http://gantry-framework.org
4
  Tags: gantry, framework, template, theme, widgets, flexible, extensible, configurable, 960px, grid, columns, powerful, buddypress
5
  Requires at least: 3.2
6
- Tested up to: 4.1.1
7
- Stable tag: 4.1.3
8
 
9
  Gantry is a comprehensive set of building blocks to enable the rapid development and realization of a design into a flexible and powerful web platform
10
 
@@ -87,6 +87,9 @@ Once you downloaded and installed Gantry Framework plugin, please download also
87
 
88
  == Changelog ==
89
 
 
 
 
90
  = 4.1.3 =
91
  * Updated FontAwesome to 4.3.0
92
  * Updated compatibility for the bbPress
@@ -394,6 +397,12 @@ Once you downloaded and installed Gantry Framework plugin, please download also
394
 
395
  == Upgrade Notice ==
396
 
 
 
 
 
 
 
397
  = 4.1.2 =
398
  Please remember to create a full site backup (files + database) before performing update.
399
 
3
  Author URI: http://gantry-framework.org
4
  Tags: gantry, framework, template, theme, widgets, flexible, extensible, configurable, 960px, grid, columns, powerful, buddypress
5
  Requires at least: 3.2
6
+ Tested up to: 4.2
7
+ Stable tag: 4.1.4
8
 
9
  Gantry is a comprehensive set of building blocks to enable the rapid development and realization of a design into a flexible and powerful web platform
10
 
87
 
88
  == Changelog ==
89
 
90
+ = 4.1.4 =
91
+ * Fixed potential security risk
92
+
93
  = 4.1.3 =
94
  * Updated FontAwesome to 4.3.0
95
  * Updated compatibility for the bbPress
397
 
398
  == Upgrade Notice ==
399
 
400
+ = 4.1.4 =
401
+ Please remember to create a full site backup (files + database) before performing update.
402
+
403
+ = 4.1.3 =
404
+ Please remember to create a full site backup (files + database) before performing update.
405
+
406
  = 4.1.2 =
407
  Please remember to create a full site backup (files + database) before performing update.
408
 
widgets/breadcrumbs.php CHANGED
@@ -1,6 +1,6 @@
1
  <?php
2
  /**
3
- * @version 4.1.3 February 28, 2015
4
  * @author RocketTheme http://www.rockettheme.com
5
  * @copyright Copyright (C) 2007 - 2015 RocketTheme, LLC
6
  * @license http://www.gnu.org/licenses/gpl-2.0.html GNU/GPLv2 only
1
  <?php
2
  /**
3
+ * @version 4.1.4 March 11, 2015
4
  * @author RocketTheme http://www.rockettheme.com
5
  * @copyright Copyright (C) 2007 - 2015 RocketTheme, LLC
6
  * @license http://www.gnu.org/licenses/gpl-2.0.html GNU/GPLv2 only
widgets/loginbutton.php CHANGED
@@ -1,6 +1,6 @@
1
  <?php
2
  /**
3
- * @version 4.1.3 February 28, 2015
4
  * @author RocketTheme http://www.rockettheme.com
5
  * @copyright Copyright (C) 2007 - 2015 RocketTheme, LLC
6
  * @license http://www.gnu.org/licenses/gpl-2.0.html GNU/GPLv2 only
1
  <?php
2
  /**
3
+ * @version 4.1.4 March 11, 2015
4
  * @author RocketTheme http://www.rockettheme.com
5
  * @copyright Copyright (C) 2007 - 2015 RocketTheme, LLC
6
  * @license http://www.gnu.org/licenses/gpl-2.0.html GNU/GPLv2 only
widgets/loginform.php CHANGED
@@ -1,6 +1,6 @@
1
  <?php
2
  /**
3
- * @version 4.1.3 February 28, 2015
4
  * @author RocketTheme http://www.rockettheme.com
5
  * @copyright Copyright (C) 2007 - 2015 RocketTheme, LLC
6
  * @license http://www.gnu.org/licenses/gpl-2.0.html GNU/GPLv2 only
1
  <?php
2
  /**
3
+ * @version 4.1.4 March 11, 2015
4
  * @author RocketTheme http://www.rockettheme.com
5
  * @copyright Copyright (C) 2007 - 2015 RocketTheme, LLC
6
  * @license http://www.gnu.org/licenses/gpl-2.0.html GNU/GPLv2 only