Google Analytics Dashboard for WP (GADWP) - Version 5.1.2.4

Version Description

  • Security:
    • fixes a security vulnerability on a dashboard report, see the release notes; credits Oways
Download this release

Release Info

Developer deconf
Plugin Icon 128x128 Google Analytics Dashboard for WP (GADWP)
Version 5.1.2.4
Comparing to
See all releases

Code changes from version 5.1.2.3 to 5.1.2.4

Files changed (4) hide show
  1. admin/setup.php +1 -2
  2. gadwp.php +2 -2
  3. readme.txt +5 -1
  4. tools/gapi.php +1 -1
admin/setup.php CHANGED
@@ -359,9 +359,8 @@ if ( ! class_exists( 'GADWP_Backend_Setup' ) ) {
359
  if ( get_option( 'gadwp_got_updated' ) ) :
360
  ?>
361
  <div id="gadwp-notice" class="notice is-dismissible">
362
- <p><?php echo sprintf( __('Google Analytics Dashboard for WP has been updated to version %s.', 'google-analytics-dashboard-for-wp' ), GADWP_CURRENT_VERSION).' '.sprintf( __('For details, check out %1$s and %2$s.', 'google-analytics-dashboard-for-wp' ), sprintf(' <a href="https://deconf.com/google-analytics-dashboard-wordpress/?utm_source=gadwp_notice&utm_medium=link&utm_content=release_notice&utm_campaign=gadwp">%s</a> ', __('the documentation page', 'google-analytics-dashboard-for-wp') ), sprintf(' <a href="%1$s">%2$s</a>', esc_url( get_admin_url( null, 'admin.php?page=gadash_settings' ) ), __('the plugin&#39;s settings page', 'google-analytics-dashboard-for-wp') ) ); ?></p>
363
  </div>
364
-
365
  <?php
366
  endif;
367
  }
359
  if ( get_option( 'gadwp_got_updated' ) ) :
360
  ?>
361
  <div id="gadwp-notice" class="notice is-dismissible">
362
+ <p><?php echo sprintf( __('Google Analytics Dashboard for WP has been updated to version %s.', 'google-analytics-dashboard-for-wp' ), GADWP_CURRENT_VERSION).' '.sprintf( __('For details, check out %1$s and %2$s.', 'google-analytics-dashboard-for-wp' ), sprintf(' <a href="https://deconf.com/google-analytics-dashboard-for-wp-5-1-2-4-security-release/?utm_source=gadwp_notice&utm_medium=link&utm_content=release_notice&utm_campaign=gadwp">%s</a> ', __('the release notes', 'google-analytics-dashboard-for-wp') ), sprintf(' <a href="%1$s">%2$s</a>', esc_url( get_admin_url( null, 'admin.php?page=gadwp_settings' ) ), __('the plugin&#39;s settings page', 'google-analytics-dashboard-for-wp') ) ); ?></p>
363
  </div>
 
364
  <?php
365
  endif;
366
  }
gadwp.php CHANGED
@@ -4,7 +4,7 @@
4
  * Plugin URI: https://deconf.com
5
  * Description: Displays Google Analytics Reports and Real-Time Statistics in your Dashboard. Automatically inserts the tracking code in every page of your website.
6
  * Author: Alin Marcu
7
- * Version: 5.1.2.3
8
  * Author URI: https://deconf.com
9
  * Text Domain: google-analytics-dashboard-for-wp
10
  * Domain Path: /languages
@@ -16,7 +16,7 @@ if ( ! defined( 'ABSPATH' ) )
16
 
17
  // Plugin Version
18
  if ( ! defined( 'GADWP_CURRENT_VERSION' ) ) {
19
- define( 'GADWP_CURRENT_VERSION', '5.1.2.3' );
20
  }
21
 
22
  if ( ! class_exists( 'GADWP_Manager' ) ) {
4
  * Plugin URI: https://deconf.com
5
  * Description: Displays Google Analytics Reports and Real-Time Statistics in your Dashboard. Automatically inserts the tracking code in every page of your website.
6
  * Author: Alin Marcu
7
+ * Version: 5.1.2.4
8
  * Author URI: https://deconf.com
9
  * Text Domain: google-analytics-dashboard-for-wp
10
  * Domain Path: /languages
16
 
17
  // Plugin Version
18
  if ( ! defined( 'GADWP_CURRENT_VERSION' ) ) {
19
+ define( 'GADWP_CURRENT_VERSION', '5.1.2.4' );
20
  }
21
 
22
  if ( ! class_exists( 'GADWP_Manager' ) ) {
readme.txt CHANGED
@@ -4,7 +4,7 @@ Donate link: https://deconf.com/donate/
4
  Tags: analytics,google analytics,google analytics dashboard,google analytics plugin,google analytics widget
5
  Requires at least: 3.5
6
  Tested up to: 4.9.1
7
- Stable tag: 5.1.2.3
8
  License: GPLv2 or later
9
  License URI: http://www.gnu.org/licenses/gpl-2.0.html
10
 
@@ -167,6 +167,10 @@ This is a major update, please read the [release notes](https://deconf.com/googl
167
 
168
  == Changelog ==
169
 
 
 
 
 
170
  = 5.1.2.3 =
171
  * Bug Fixes:
172
  * fixes an access token request loop
4
  Tags: analytics,google analytics,google analytics dashboard,google analytics plugin,google analytics widget
5
  Requires at least: 3.5
6
  Tested up to: 4.9.1
7
+ Stable tag: 5.1.2.4
8
  License: GPLv2 or later
9
  License URI: http://www.gnu.org/licenses/gpl-2.0.html
10
 
167
 
168
  == Changelog ==
169
 
170
+ = 5.1.2.4 =
171
+ * Security:
172
+ * fixes a security vulnerability on a dashboard report, see [the release notes](https://deconf.com/google-analytics-dashboard-for-wp-5-1-2-4-security-release); credits [Oways](https://hackerone.com/0ways)
173
+
174
  = 5.1.2.3 =
175
  * Bug Fixes:
176
  * fixes an access token request loop
tools/gapi.php CHANGED
@@ -810,7 +810,7 @@ if ( ! class_exists( 'GADWP_GAPI_Controller' ) ) {
810
  $i = 0;
811
  $gadwp_data = $data;
812
  foreach ( $data->getRows() as $row ) {
813
- $gadwp_data->rows[$i] = array_map( 'esc_html', $row );
814
  $i++;
815
  }
816
 
810
  $i = 0;
811
  $gadwp_data = $data;
812
  foreach ( $data->getRows() as $row ) {
813
+ $gadwp_data->rows[$i] = array_map( 'wp_kses_data', $row );
814
  $i++;
815
  }
816