Google Analyticator - Version 6.4.9.4

Version Description

  • Fix CSRF vulnerability on reset page
Download this release

Release Info

Developer grimmdude
Plugin Icon 128x128 Google Analyticator
Version 6.4.9.4
Comparing to
See all releases

Code changes from version 6.4.9.3 to 6.4.9.4

Files changed (110) hide show
  1. class.analytics.stats.php +0 -0
  2. download-button.png +0 -0
  3. external-tracking.js +0 -0
  4. external-tracking.min.js +0 -0
  5. ga-md-ad-532.png +0 -0
  6. ga-plugin-advert-sidebar.png +0 -0
  7. ga-plugin-advert.jpg +0 -0
  8. ga_logo.png +0 -0
  9. gapro-plugin-advert-sidebar.png +0 -0
  10. google-analyticator.php +33 -34
  11. google-analytics-stats-widget.php +0 -0
  12. google-analytics-summary-widget.php +0 -0
  13. google-api-php-client/LICENSE +0 -0
  14. google-api-php-client/NOTICE +0 -0
  15. google-api-php-client/README +0 -0
  16. google-api-php-client/src/Google_Client.php +0 -0
  17. google-api-php-client/src/auth/Google_AssertionCredentials.php +0 -0
  18. google-api-php-client/src/auth/Google_Auth.php +0 -0
  19. google-api-php-client/src/auth/Google_AuthNone.php +0 -0
  20. google-api-php-client/src/auth/Google_LoginTicket.php +0 -0
  21. google-api-php-client/src/auth/Google_OAuth2.php +0 -0
  22. google-api-php-client/src/auth/Google_P12Signer.php +0 -0
  23. google-api-php-client/src/auth/Google_PemVerifier.php +0 -0
  24. google-api-php-client/src/auth/Google_Signer.php +0 -0
  25. google-api-php-client/src/auth/Google_Verifier.php +0 -0
  26. google-api-php-client/src/cache/Google_ApcCache.php +0 -0
  27. google-api-php-client/src/cache/Google_Cache.php +0 -0
  28. google-api-php-client/src/cache/Google_FileCache.php +0 -0
  29. google-api-php-client/src/cache/Google_MemcacheCache.php +0 -0
  30. google-api-php-client/src/config.php +0 -0
  31. google-api-php-client/src/contrib/Google_AdExchangeSellerService.php +0 -0
  32. google-api-php-client/src/contrib/Google_AdexchangebuyerService.php +0 -0
  33. google-api-php-client/src/contrib/Google_AdsensehostService.php +0 -0
  34. google-api-php-client/src/contrib/Google_AnalyticsService.php +0 -0
  35. google-api-php-client/src/contrib/Google_AndroidpublisherService.php +0 -0
  36. google-api-php-client/src/contrib/Google_AppstateService.php +0 -0
  37. google-api-php-client/src/contrib/Google_AuditService.php +0 -0
  38. google-api-php-client/src/contrib/Google_BigqueryService.php +0 -0
  39. google-api-php-client/src/contrib/Google_BloggerService.php +0 -0
  40. google-api-php-client/src/contrib/Google_BooksService.php +0 -0
  41. google-api-php-client/src/contrib/Google_CalendarService.php +0 -0
  42. google-api-php-client/src/contrib/Google_CivicInfoService.php +0 -0
  43. google-api-php-client/src/contrib/Google_ComputeService.php +0 -0
  44. google-api-php-client/src/contrib/Google_CoordinateService.php +0 -0
  45. google-api-php-client/src/contrib/Google_CustomsearchService.php +0 -0
  46. google-api-php-client/src/contrib/Google_DatastoreService.php +0 -0
  47. google-api-php-client/src/contrib/Google_DfareportingService.php +0 -0
  48. google-api-php-client/src/contrib/Google_DirectoryService.php +0 -0
  49. google-api-php-client/src/contrib/Google_DriveService.php +0 -0
  50. google-api-php-client/src/contrib/Google_FreebaseService.php +0 -0
  51. google-api-php-client/src/contrib/Google_FusiontablesService.php +0 -0
  52. google-api-php-client/src/contrib/Google_GamesManagementService.php +0 -0
  53. google-api-php-client/src/contrib/Google_GamesService.php +0 -0
  54. google-api-php-client/src/contrib/Google_GanService.php +0 -0
  55. google-api-php-client/src/contrib/Google_GroupssettingsService.php +0 -0
  56. google-api-php-client/src/contrib/Google_LatitudeService.php +0 -0
  57. google-api-php-client/src/contrib/Google_LicensingService.php +0 -0
  58. google-api-php-client/src/contrib/Google_MirrorService.php +0 -0
  59. google-api-php-client/src/contrib/Google_ModeratorService.php +0 -0
  60. google-api-php-client/src/contrib/Google_Oauth2Service.php +0 -0
  61. google-api-php-client/src/contrib/Google_OrkutService.php +0 -0
  62. google-api-php-client/src/contrib/Google_PagespeedonlineService.php +0 -0
  63. google-api-php-client/src/contrib/Google_PlusDomainsService.php +0 -0
  64. google-api-php-client/src/contrib/Google_PlusMomentsService.php +0 -0
  65. google-api-php-client/src/contrib/Google_PlusService.php +0 -0
  66. google-api-php-client/src/contrib/Google_PredictionService.php +0 -0
  67. google-api-php-client/src/contrib/Google_ReportsService.php +0 -0
  68. google-api-php-client/src/contrib/Google_ResellerService.php +0 -0
  69. google-api-php-client/src/contrib/Google_SQLAdminService.php +0 -0
  70. google-api-php-client/src/contrib/Google_ShoppingService.php +0 -0
  71. google-api-php-client/src/contrib/Google_SiteVerificationService.php +0 -0
  72. google-api-php-client/src/contrib/Google_StorageService.php +0 -0
  73. google-api-php-client/src/contrib/Google_TaskqueueService.php +0 -0
  74. google-api-php-client/src/contrib/Google_TasksService.php +0 -0
  75. google-api-php-client/src/contrib/Google_TranslateService.php +0 -0
  76. google-api-php-client/src/contrib/Google_UrlshortenerService.php +0 -0
  77. google-api-php-client/src/contrib/Google_WebfontsService.php +0 -0
  78. google-api-php-client/src/contrib/Google_YouTubeAnalyticsService.php +0 -0
  79. google-api-php-client/src/external/URITemplateParser.php +0 -0
  80. google-api-php-client/src/io/Google_CacheParser.php +0 -0
  81. google-api-php-client/src/io/Google_CurlIO.php +0 -0
  82. google-api-php-client/src/io/Google_HttpRequest.php +0 -0
  83. google-api-php-client/src/io/Google_HttpStreamIO.php +0 -0
  84. google-api-php-client/src/io/Google_IO.php +0 -0
  85. google-api-php-client/src/io/Google_REST.php +0 -0
  86. google-api-php-client/src/io/cacerts.pem +0 -0
  87. google-api-php-client/src/local_config.php +0 -0
  88. google-api-php-client/src/service/Google_BatchRequest.php +0 -0
  89. google-api-php-client/src/service/Google_MediaFileUpload.php +0 -0
  90. google-api-php-client/src/service/Google_Model.php +0 -0
  91. google-api-php-client/src/service/Google_Service.php +0 -0
  92. google-api-php-client/src/service/Google_ServiceResource.php +0 -0
  93. google-api-php-client/src/service/Google_Utils.php +0 -0
  94. google-api-php-client/static/Credentials.png +0 -0
  95. jquery.flot.min.js +0 -0
  96. jquery.sparkline.min.js +0 -0
  97. localizations/google-analyticator-pl_PL.mo +0 -0
  98. localizations/google-analyticator-pl_PL.po +0 -0
  99. localizations/google-analyticator-tr_TR.mo +0 -0
  100. localizations/google-analyticator-tr_TR.po +0 -0
  101. other_plugins.php +0 -0
  102. privacy.png +0 -0
  103. readme.txt +3 -1
  104. screenshot-1.png +0 -0
  105. screenshot-2.png +0 -0
  106. screenshot-3.png +0 -0
  107. screenshot-4.png +0 -0
  108. screenshot-5.png +0 -0
  109. screenshot-6.png +0 -0
  110. wlcms-plugin-advert.png +0 -0
class.analytics.stats.php CHANGED
File without changes
download-button.png CHANGED
File without changes
external-tracking.js CHANGED
File without changes
external-tracking.min.js CHANGED
File without changes
ga-md-ad-532.png CHANGED
File without changes
ga-plugin-advert-sidebar.png CHANGED
File without changes
ga-plugin-advert.jpg CHANGED
File without changes
ga_logo.png CHANGED
File without changes
gapro-plugin-advert-sidebar.png CHANGED
File without changes
google-analyticator.php CHANGED
@@ -1,7 +1,7 @@
1
  <?php
2
  /*
3
  * Plugin Name: Google Analyticator
4
- * Version: 6.4.9.3
5
  * Plugin URI: http://www.videousermanuals.com/google-analyticator/?utm_campaign=analyticator&utm_medium=plugin&utm_source=readme-txt
6
  * Description: Adds the necessary JavaScript code to enable <a href="http://www.google.com/analytics/">Google's Analytics</a>. After enabling this plugin you need to authenticate with Google, then select your domain and you're set.
7
  * Author: SumoMe
@@ -263,46 +263,45 @@ function ga_filter_plugin_actions($links) {
263
  $new_links = array();
264
 
265
  $new_links[] = '<a href="' . ga_analyticator_setting_url() .'">' . __('Settings', 'google-analyticator') . '</a>';
266
- $new_links[] = '<a href="' . admin_url('options-general.php?page=ga_reset">') . __('Reset', 'google-analyticator') . '</a>';
267
 
268
  return array_merge($new_links, $links);
269
  }
270
 
271
  function ga_do_reset()
272
  {
 
273
  // Check to make sure referer is same as host.
274
- if (strstr($_SERVER['HTTP_REFERER'], $_SERVER['HTTP_HOST'])) {
275
- global $wpdb;
276
-
277
- // Delete all GA options.
278
- delete_option(key_ga_status);
279
- delete_option(key_ga_disable_gasites);
280
- delete_option(key_ga_analytic_snippet);
281
- delete_option(key_ga_uid);
282
- delete_option(key_ga_admin);
283
- delete_option(key_ga_admin_disable);
284
- delete_option(key_ga_admin_role);
285
- delete_option(key_ga_dashboard_role);
286
- delete_option(key_ga_adsense);
287
- delete_option(key_ga_extra);
288
- delete_option(key_ga_extra_after);
289
- delete_option(key_ga_event);
290
- delete_option(key_ga_outbound);
291
- delete_option(key_ga_outbound_prefix);
292
- delete_option(key_ga_enhanced_link_attr);
293
- delete_option(key_ga_downloads);
294
- delete_option(key_ga_downloads_prefix);
295
- delete_option(key_ga_widgets);
296
- delete_option(key_ga_annon);
297
- delete_option('ga_defaults');
298
- delete_option('ga_google_token');
299
- delete_option('ga_google_authtoken');
300
- delete_option('ga_profileid');
301
- delete_transient('ga_admin_stats_widget');
302
-
303
- // Need to remove cached items from GA widgets
304
- $wpdb->query( "delete from $wpdb->options where `option_name` like 'google_stats_visitsGraph_%'");
305
- }
306
 
307
  wp_redirect( admin_url( 'options-general.php?page=ga_activate' ) );
308
  exit;
1
  <?php
2
  /*
3
  * Plugin Name: Google Analyticator
4
+ * Version: 6.4.9.4
5
  * Plugin URI: http://www.videousermanuals.com/google-analyticator/?utm_campaign=analyticator&utm_medium=plugin&utm_source=readme-txt
6
  * Description: Adds the necessary JavaScript code to enable <a href="http://www.google.com/analytics/">Google's Analytics</a>. After enabling this plugin you need to authenticate with Google, then select your domain and you're set.
7
  * Author: SumoMe
263
  $new_links = array();
264
 
265
  $new_links[] = '<a href="' . ga_analyticator_setting_url() .'">' . __('Settings', 'google-analyticator') . '</a>';
266
+ $new_links[] = '<a href="' . wp_nonce_url( admin_url('options-general.php?page=ga_reset'), 'ga-reset' ) .'">'. __('Reset', 'google-analyticator') . '</a>';
267
 
268
  return array_merge($new_links, $links);
269
  }
270
 
271
  function ga_do_reset()
272
  {
273
+ global $wpdb;
274
  // Check to make sure referer is same as host.
275
+ check_admin_referer( 'ga-reset' );
276
+
277
+ // Delete all GA options.
278
+ delete_option(key_ga_status);
279
+ delete_option(key_ga_disable_gasites);
280
+ delete_option(key_ga_analytic_snippet);
281
+ delete_option(key_ga_uid);
282
+ delete_option(key_ga_admin);
283
+ delete_option(key_ga_admin_disable);
284
+ delete_option(key_ga_admin_role);
285
+ delete_option(key_ga_dashboard_role);
286
+ delete_option(key_ga_adsense);
287
+ delete_option(key_ga_extra);
288
+ delete_option(key_ga_extra_after);
289
+ delete_option(key_ga_event);
290
+ delete_option(key_ga_outbound);
291
+ delete_option(key_ga_outbound_prefix);
292
+ delete_option(key_ga_enhanced_link_attr);
293
+ delete_option(key_ga_downloads);
294
+ delete_option(key_ga_downloads_prefix);
295
+ delete_option(key_ga_widgets);
296
+ delete_option(key_ga_annon);
297
+ delete_option('ga_defaults');
298
+ delete_option('ga_google_token');
299
+ delete_option('ga_google_authtoken');
300
+ delete_option('ga_profileid');
301
+ delete_transient('ga_admin_stats_widget');
302
+
303
+ // Need to remove cached items from GA widgets
304
+ $wpdb->query( "delete from $wpdb->options where `option_name` like 'google_stats_visitsGraph_%'");
 
 
305
 
306
  wp_redirect( admin_url( 'options-general.php?page=ga_activate' ) );
307
  exit;
google-analytics-stats-widget.php CHANGED
File without changes
google-analytics-summary-widget.php CHANGED
File without changes
google-api-php-client/LICENSE CHANGED
File without changes
google-api-php-client/NOTICE CHANGED
File without changes
google-api-php-client/README CHANGED
File without changes
google-api-php-client/src/Google_Client.php CHANGED
File without changes
google-api-php-client/src/auth/Google_AssertionCredentials.php CHANGED
File without changes
google-api-php-client/src/auth/Google_Auth.php CHANGED
File without changes
google-api-php-client/src/auth/Google_AuthNone.php CHANGED
File without changes
google-api-php-client/src/auth/Google_LoginTicket.php CHANGED
File without changes
google-api-php-client/src/auth/Google_OAuth2.php CHANGED
File without changes
google-api-php-client/src/auth/Google_P12Signer.php CHANGED
File without changes
google-api-php-client/src/auth/Google_PemVerifier.php CHANGED
File without changes
google-api-php-client/src/auth/Google_Signer.php CHANGED
File without changes
google-api-php-client/src/auth/Google_Verifier.php CHANGED
File without changes
google-api-php-client/src/cache/Google_ApcCache.php CHANGED
File without changes
google-api-php-client/src/cache/Google_Cache.php CHANGED
File without changes
google-api-php-client/src/cache/Google_FileCache.php CHANGED
File without changes
google-api-php-client/src/cache/Google_MemcacheCache.php CHANGED
File without changes
google-api-php-client/src/config.php CHANGED
File without changes
google-api-php-client/src/contrib/Google_AdExchangeSellerService.php CHANGED
File without changes
google-api-php-client/src/contrib/Google_AdexchangebuyerService.php CHANGED
File without changes
google-api-php-client/src/contrib/Google_AdsensehostService.php CHANGED
File without changes
google-api-php-client/src/contrib/Google_AnalyticsService.php CHANGED
File without changes
google-api-php-client/src/contrib/Google_AndroidpublisherService.php CHANGED
File without changes
google-api-php-client/src/contrib/Google_AppstateService.php CHANGED
File without changes
google-api-php-client/src/contrib/Google_AuditService.php CHANGED
File without changes
google-api-php-client/src/contrib/Google_BigqueryService.php CHANGED
File without changes
google-api-php-client/src/contrib/Google_BloggerService.php CHANGED
File without changes
google-api-php-client/src/contrib/Google_BooksService.php CHANGED
File without changes
google-api-php-client/src/contrib/Google_CalendarService.php CHANGED
File without changes
google-api-php-client/src/contrib/Google_CivicInfoService.php CHANGED
File without changes
google-api-php-client/src/contrib/Google_ComputeService.php CHANGED
File without changes
google-api-php-client/src/contrib/Google_CoordinateService.php CHANGED
File without changes
google-api-php-client/src/contrib/Google_CustomsearchService.php CHANGED
File without changes
google-api-php-client/src/contrib/Google_DatastoreService.php CHANGED
File without changes
google-api-php-client/src/contrib/Google_DfareportingService.php CHANGED
File without changes
google-api-php-client/src/contrib/Google_DirectoryService.php CHANGED
File without changes
google-api-php-client/src/contrib/Google_DriveService.php CHANGED
File without changes
google-api-php-client/src/contrib/Google_FreebaseService.php CHANGED
File without changes
google-api-php-client/src/contrib/Google_FusiontablesService.php CHANGED
File without changes
google-api-php-client/src/contrib/Google_GamesManagementService.php CHANGED
File without changes
google-api-php-client/src/contrib/Google_GamesService.php CHANGED
File without changes
google-api-php-client/src/contrib/Google_GanService.php CHANGED
File without changes
google-api-php-client/src/contrib/Google_GroupssettingsService.php CHANGED
File without changes
google-api-php-client/src/contrib/Google_LatitudeService.php CHANGED
File without changes
google-api-php-client/src/contrib/Google_LicensingService.php CHANGED
File without changes
google-api-php-client/src/contrib/Google_MirrorService.php CHANGED
File without changes
google-api-php-client/src/contrib/Google_ModeratorService.php CHANGED
File without changes
google-api-php-client/src/contrib/Google_Oauth2Service.php CHANGED
File without changes
google-api-php-client/src/contrib/Google_OrkutService.php CHANGED
File without changes
google-api-php-client/src/contrib/Google_PagespeedonlineService.php CHANGED
File without changes
google-api-php-client/src/contrib/Google_PlusDomainsService.php CHANGED
File without changes
google-api-php-client/src/contrib/Google_PlusMomentsService.php CHANGED
File without changes
google-api-php-client/src/contrib/Google_PlusService.php CHANGED
File without changes
google-api-php-client/src/contrib/Google_PredictionService.php CHANGED
File without changes
google-api-php-client/src/contrib/Google_ReportsService.php CHANGED
File without changes
google-api-php-client/src/contrib/Google_ResellerService.php CHANGED
File without changes
google-api-php-client/src/contrib/Google_SQLAdminService.php CHANGED
File without changes
google-api-php-client/src/contrib/Google_ShoppingService.php CHANGED
File without changes
google-api-php-client/src/contrib/Google_SiteVerificationService.php CHANGED
File without changes
google-api-php-client/src/contrib/Google_StorageService.php CHANGED
File without changes
google-api-php-client/src/contrib/Google_TaskqueueService.php CHANGED
File without changes
google-api-php-client/src/contrib/Google_TasksService.php CHANGED
File without changes
google-api-php-client/src/contrib/Google_TranslateService.php CHANGED
File without changes
google-api-php-client/src/contrib/Google_UrlshortenerService.php CHANGED
File without changes
google-api-php-client/src/contrib/Google_WebfontsService.php CHANGED
File without changes
google-api-php-client/src/contrib/Google_YouTubeAnalyticsService.php CHANGED
File without changes
google-api-php-client/src/external/URITemplateParser.php CHANGED
File without changes
google-api-php-client/src/io/Google_CacheParser.php CHANGED
File without changes
google-api-php-client/src/io/Google_CurlIO.php CHANGED
File without changes
google-api-php-client/src/io/Google_HttpRequest.php CHANGED
File without changes
google-api-php-client/src/io/Google_HttpStreamIO.php CHANGED
File without changes
google-api-php-client/src/io/Google_IO.php CHANGED
File without changes
google-api-php-client/src/io/Google_REST.php CHANGED
File without changes
google-api-php-client/src/io/cacerts.pem CHANGED
File without changes
google-api-php-client/src/local_config.php CHANGED
File without changes
google-api-php-client/src/service/Google_BatchRequest.php CHANGED
File without changes
google-api-php-client/src/service/Google_MediaFileUpload.php CHANGED
File without changes
google-api-php-client/src/service/Google_Model.php CHANGED
File without changes
google-api-php-client/src/service/Google_Service.php CHANGED
File without changes
google-api-php-client/src/service/Google_ServiceResource.php CHANGED
File without changes
google-api-php-client/src/service/Google_Utils.php CHANGED
File without changes
google-api-php-client/static/Credentials.png CHANGED
File without changes
jquery.flot.min.js CHANGED
File without changes
jquery.sparkline.min.js CHANGED
File without changes
localizations/google-analyticator-pl_PL.mo CHANGED
File without changes
localizations/google-analyticator-pl_PL.po CHANGED
File without changes
localizations/google-analyticator-tr_TR.mo CHANGED
File without changes
localizations/google-analyticator-tr_TR.po CHANGED
File without changes
other_plugins.php CHANGED
File without changes
privacy.png CHANGED
File without changes
readme.txt CHANGED
@@ -3,7 +3,7 @@ Contributors: noahkagan
3
  Tags: google analytics plugin, stats, statistics, google, analytics, dashboard, google analytics, tracking, widget, marketing,pageviews,visits, web stats, javascript
4
  Requires at least: 3.2
5
  Tested up to: 4.2.2
6
- Stable tag: 6.4.9.3
7
  License: GPLv2 or later
8
  License URI: http://www.gnu.org/licenses/gpl-2.0.html
9
 
@@ -73,6 +73,8 @@ For any support issues, please use the official WordPress support forums.
73
 
74
 
75
  == Changelog ==
 
 
76
 
77
  = 6.4.9.3 =
78
  * Re-enable [analytics] shortcode with fix
3
  Tags: google analytics plugin, stats, statistics, google, analytics, dashboard, google analytics, tracking, widget, marketing,pageviews,visits, web stats, javascript
4
  Requires at least: 3.2
5
  Tested up to: 4.2.2
6
+ Stable tag: 6.4.9.4
7
  License: GPLv2 or later
8
  License URI: http://www.gnu.org/licenses/gpl-2.0.html
9
 
73
 
74
 
75
  == Changelog ==
76
+ = 6.4.9.4 =
77
+ * Fix CSRF vulnerability on reset page
78
 
79
  = 6.4.9.3 =
80
  * Re-enable [analytics] shortcode with fix
screenshot-1.png CHANGED
File without changes
screenshot-2.png CHANGED
File without changes
screenshot-3.png CHANGED
File without changes
screenshot-4.png CHANGED
File without changes
screenshot-5.png CHANGED
File without changes
screenshot-6.png CHANGED
File without changes
wlcms-plugin-advert.png CHANGED
File without changes