Version Description
- Fixed an XSS vulnerability and checked code for compatibility with WordPress 5.8.3.
Download this release
Release Info
| Developer | scheeeli |
| Plugin |  Anti-Malware Security and Brute-Force Firewall |
| Version | 4.20.94 |
| Comparing to | |
| See all releases | |
Code changes from version 4.20.93 to 4.20.94
- images/index.php +2 -2
- index.php +5 -5
- readme.txt +8 -2
images/index.php
CHANGED
|
@@ -16,7 +16,7 @@ GOTMLS_define("GOTMLS_plugin_path", substr(dirname(__FILE__), 0, strlen(dirname(
|
|
| 16 |
//if (is_file(GOTMLS_plugin_path.$file) && ($contents = @file_get_contents(GOTMLS_plugin_path.$file)) && preg_match('/\nversion:\s*([0-9\.]+)/i', $contents, $match))
|
| 17 |
// GOTMLS_define("GOTMLS_Version", $match[1]);
|
| 18 |
//else
|
| 19 |
-
GOTMLS_define("GOTMLS_Version", '4.20.
|
| 20 |
GOTMLS_define("GOTMLS_require_version", "3.3");
|
| 21 |
if (!function_exists("__")) {
|
| 22 |
function __($text, $domain = "gotmls") {
|
|
@@ -614,7 +614,7 @@ function GOTMLS_get_quarantine($only = false) {
|
|
| 614 |
wp_reset_query();
|
| 615 |
$return = "$Q_Paged\n</form><br style=\"clear: left;\" />\n$Q_Page\n</form>\n$Q_Paged\n</form><br style=\"clear: left;\" />\n";
|
| 616 |
if (($trashed = $wpdb->get_var("SELECT COUNT(*) FROM $wpdb->posts WHERE `post_type` = 'GOTMLS_quarantine' AND `post_status` != 'private'")) > 1)
|
| 617 |
-
$return = '<a href="'.admin_url('admin-ajax.php?action=GOTMLS_empty_trash&'.GOTMLS_set_nonce(__FUNCTION__."720")).'" id="empty_trash_link" style="float: right;" target="GOTMLS_statusFrame">['.sprintf(__("
|
| 618 |
return $return;
|
| 619 |
}
|
| 620 |
|
| 16 |
//if (is_file(GOTMLS_plugin_path.$file) && ($contents = @file_get_contents(GOTMLS_plugin_path.$file)) && preg_match('/\nversion:\s*([0-9\.]+)/i', $contents, $match))
|
| 17 |
// GOTMLS_define("GOTMLS_Version", $match[1]);
|
| 18 |
//else
|
| 19 |
+
GOTMLS_define("GOTMLS_Version", '4.20.94');
|
| 20 |
GOTMLS_define("GOTMLS_require_version", "3.3");
|
| 21 |
if (!function_exists("__")) {
|
| 22 |
function __($text, $domain = "gotmls") {
|
| 614 |
wp_reset_query();
|
| 615 |
$return = "$Q_Paged\n</form><br style=\"clear: left;\" />\n$Q_Page\n</form>\n$Q_Paged\n</form><br style=\"clear: left;\" />\n";
|
| 616 |
if (($trashed = $wpdb->get_var("SELECT COUNT(*) FROM $wpdb->posts WHERE `post_type` = 'GOTMLS_quarantine' AND `post_status` != 'private'")) > 1)
|
| 617 |
+
$return = '<a href="'.admin_url('admin-ajax.php?action=GOTMLS_empty_trash&'.GOTMLS_set_nonce(__FUNCTION__."720")).'" id="empty_trash_link" style="float: right;" target="GOTMLS_statusFrame">['.sprintf(__("Purge %s Deleted Quarantine records (%s restored) from the Trash",'gotmls'), $trashed, $wpdb->get_var("SELECT COUNT(*) FROM $wpdb->posts WHERE `post_type` = 'GOTMLS_quarantine' AND `post_status` = 'pending'"))."]</a>$return";
|
| 618 |
return $return;
|
| 619 |
}
|
| 620 |
|
index.php
CHANGED
|
@@ -8,7 +8,7 @@ Author URI: http://wordpress.ieonly.com/category/my-plugins/anti-malware/
|
|
| 8 |
Contributors: scheeeli, gotmls
|
| 9 |
Donate link: https://gotmls.net/donate/
|
| 10 |
Description: This Anti-Virus/Anti-Malware plugin searches for Malware and other Virus like threats and vulnerabilities on your server and helps you remove them. It's always growing and changing to adapt to new threats so let me know if it's not working for you.
|
| 11 |
-
Version: 4.20.
|
| 12 |
*/
|
| 13 |
if (isset($_SERVER["DOCUMENT_ROOT"]) && ($SCRIPT_FILE = str_replace($_SERVER["DOCUMENT_ROOT"], "", (isset($_SERVER["SCRIPT_FILENAME"])?$_SERVER["SCRIPT_FILENAME"]:(isset($_SERVER["SCRIPT_NAME"])?$_SERVER["SCRIPT_NAME"]:"")))) && strlen($SCRIPT_FILE) > strlen("/".basename(__FILE__)) && substr(__FILE__, -1 * strlen($SCRIPT_FILE)) == substr($SCRIPT_FILE, -1 * strlen(__FILE__)) || !(function_exists("add_action") && function_exists("load_plugin_textdomain")))
|
| 14 |
include(dirname(__FILE__)."/safe-load/index.php");
|
|
@@ -1008,9 +1008,9 @@ var startTime = 0;
|
|
| 1008 |
if (substr($name, 0, 10) != 'GOTMLS_fix') {
|
| 1009 |
if (is_array($value)) {
|
| 1010 |
foreach ($value as $val)
|
| 1011 |
-
echo $lt.'input type="hidden" name="'
|
| 1012 |
} else
|
| 1013 |
-
echo $lt.'input type="hidden" name="'
|
| 1014 |
}
|
| 1015 |
}
|
| 1016 |
echo "\n$lt".'script type="text/javascript"'.$gt.'showhide("inside_'.md5($ScanSettings).'");'.$lt.'/script'.$gt.GOTMLS_box(GOTMLS_htmlspecialchars($_REQUEST["scan_type"]).' Status', $lt.'div id="status_text"'.$gt.$lt.'img src="'.GOTMLS_images_path.'wait.gif" height=16 width=16 alt="..."'.$gt.' '.GOTMLS_Loading_LANGUAGE.$lt.'/div'.$gt.$lt.'div id="status_bar"'.$gt.$lt.'/div'.$gt.$lt.'p id="pause_button" style="display: none; position: absolute; left: 0; text-align: center; margin-left: -30px; padding-left: 50%;"'.$gt.$lt.'input type="button" value="Pause" class="button-primary" onclick="pauseresume(this);" id="resume_button" /'.$gt.$lt.'/p'.$gt.$lt.'div id="status_counts"'.$gt.$lt.'/div'.$gt.$lt.'p id="fix_button" style="display: none; text-align: center;"'.$gt.$lt.'input id="repair_button" type="submit" value="'.GOTMLS_Automatically_Fix_LANGUAGE.'" class="button-primary" onclick="loadIframe(\'Examine Results\');" /'.$gt.$lt.'/p'.$gt);
|
|
@@ -1543,7 +1543,7 @@ if (typeof window.parent.showhide === "function")
|
|
| 1543 |
$function = 'GOTMLS_decode';
|
| 1544 |
if (isset($_GET[$function]) && is_array($_GET[$function])) {
|
| 1545 |
foreach ($_GET[$function] as $decode) {
|
| 1546 |
-
$fa .= " NO
|
| 1547 |
}
|
| 1548 |
} elseif (isset($Q_post["post_excerpt"]) && strlen($Q_post["post_excerpt"]) && is_array($GLOBALS["GOTMLS"]["tmp"]["threats_found"] = @maybe_unserialize(GOTMLS_decode($Q_post["post_excerpt"])))) {
|
| 1549 |
$f = 1;
|
|
@@ -1636,7 +1636,7 @@ if (typeof window.parent.showhide === "function")
|
|
| 1636 |
$function = 'GOTMLS_decode';
|
| 1637 |
if (isset($_GET[$function]) && is_array($_GET[$function])) {
|
| 1638 |
foreach ($_GET[$function] as $decode) {
|
| 1639 |
-
$fa .= " NO
|
| 1640 |
}
|
| 1641 |
} elseif (isset($GLOBALS["GOTMLS"]["tmp"]["threats_found"]) && is_array($GLOBALS["GOTMLS"]["tmp"]["threats_found"]) && count($GLOBALS["GOTMLS"]["tmp"]["threats_found"])) {
|
| 1642 |
$f = 1;
|
| 8 |
Contributors: scheeeli, gotmls
|
| 9 |
Donate link: https://gotmls.net/donate/
|
| 10 |
Description: This Anti-Virus/Anti-Malware plugin searches for Malware and other Virus like threats and vulnerabilities on your server and helps you remove them. It's always growing and changing to adapt to new threats so let me know if it's not working for you.
|
| 11 |
+
Version: 4.20.94
|
| 12 |
*/
|
| 13 |
if (isset($_SERVER["DOCUMENT_ROOT"]) && ($SCRIPT_FILE = str_replace($_SERVER["DOCUMENT_ROOT"], "", (isset($_SERVER["SCRIPT_FILENAME"])?$_SERVER["SCRIPT_FILENAME"]:(isset($_SERVER["SCRIPT_NAME"])?$_SERVER["SCRIPT_NAME"]:"")))) && strlen($SCRIPT_FILE) > strlen("/".basename(__FILE__)) && substr(__FILE__, -1 * strlen($SCRIPT_FILE)) == substr($SCRIPT_FILE, -1 * strlen(__FILE__)) || !(function_exists("add_action") && function_exists("load_plugin_textdomain")))
|
| 14 |
include(dirname(__FILE__)."/safe-load/index.php");
|
| 1008 |
if (substr($name, 0, 10) != 'GOTMLS_fix') {
|
| 1009 |
if (is_array($value)) {
|
| 1010 |
foreach ($value as $val)
|
| 1011 |
+
echo $lt.'input type="hidden" name="'.GOTMLS_htmlspecialchars($name).'[]" value="'.GOTMLS_htmlspecialchars($val).'"'.$gt;
|
| 1012 |
} else
|
| 1013 |
+
echo $lt.'input type="hidden" name="'.GOTMLS_htmlspecialchars($name).'" value="'.GOTMLS_htmlspecialchars($value).'"'.$gt;
|
| 1014 |
}
|
| 1015 |
}
|
| 1016 |
echo "\n$lt".'script type="text/javascript"'.$gt.'showhide("inside_'.md5($ScanSettings).'");'.$lt.'/script'.$gt.GOTMLS_box(GOTMLS_htmlspecialchars($_REQUEST["scan_type"]).' Status', $lt.'div id="status_text"'.$gt.$lt.'img src="'.GOTMLS_images_path.'wait.gif" height=16 width=16 alt="..."'.$gt.' '.GOTMLS_Loading_LANGUAGE.$lt.'/div'.$gt.$lt.'div id="status_bar"'.$gt.$lt.'/div'.$gt.$lt.'p id="pause_button" style="display: none; position: absolute; left: 0; text-align: center; margin-left: -30px; padding-left: 50%;"'.$gt.$lt.'input type="button" value="Pause" class="button-primary" onclick="pauseresume(this);" id="resume_button" /'.$gt.$lt.'/p'.$gt.$lt.'div id="status_counts"'.$gt.$lt.'/div'.$gt.$lt.'p id="fix_button" style="display: none; text-align: center;"'.$gt.$lt.'input id="repair_button" type="submit" value="'.GOTMLS_Automatically_Fix_LANGUAGE.'" class="button-primary" onclick="loadIframe(\'Examine Results\');" /'.$gt.$lt.'/p'.$gt);
|
| 1543 |
$function = 'GOTMLS_decode';
|
| 1544 |
if (isset($_GET[$function]) && is_array($_GET[$function])) {
|
| 1545 |
foreach ($_GET[$function] as $decode) {
|
| 1546 |
+
$fa .= " NO-".GOTMLS_htmlspecialchars($decode);
|
| 1547 |
}
|
| 1548 |
} elseif (isset($Q_post["post_excerpt"]) && strlen($Q_post["post_excerpt"]) && is_array($GLOBALS["GOTMLS"]["tmp"]["threats_found"] = @maybe_unserialize(GOTMLS_decode($Q_post["post_excerpt"])))) {
|
| 1549 |
$f = 1;
|
| 1636 |
$function = 'GOTMLS_decode';
|
| 1637 |
if (isset($_GET[$function]) && is_array($_GET[$function])) {
|
| 1638 |
foreach ($_GET[$function] as $decode) {
|
| 1639 |
+
$fa .= " NO-".GOTMLS_htmlspecialchars($decode);
|
| 1640 |
}
|
| 1641 |
} elseif (isset($GLOBALS["GOTMLS"]["tmp"]["threats_found"]) && is_array($GLOBALS["GOTMLS"]["tmp"]["threats_found"]) && count($GLOBALS["GOTMLS"]["tmp"]["threats_found"])) {
|
| 1642 |
$f = 1;
|
readme.txt
CHANGED
|
@@ -5,8 +5,8 @@ Author URI: http://wordpress.ieonly.com/category/my-plugins/anti-malware/
|
|
| 5 |
Contributors: scheeeli, gotmls
|
| 6 |
Donate link: https://gotmls.net/donate/
|
| 7 |
Tags: security, firewall, anti-malware, scanner, automatic, repair, remove, malware, virus, threat, hacked, malicious, infection, timthumb, exploit, block, brute-force, wp-login, patch, antimalware, revslider, Revolution Slider
|
| 8 |
-
Version: 4.20.
|
| 9 |
-
Stable tag: 4.20.
|
| 10 |
Requires at least: 3.3
|
| 11 |
Tested up to: 5.8.3
|
| 12 |
|
|
@@ -93,6 +93,9 @@ sucuri.net caches their scan results and will not refresh the scan until you cli
|
|
| 93 |
|
| 94 |
== Changelog ==
|
| 95 |
|
|
|
|
|
|
|
|
|
|
| 96 |
= 4.20.93 =
|
| 97 |
* Fixed undefined variable warning.
|
| 98 |
* Updated code for compatibility with PHP version 8.0.
|
|
@@ -373,6 +376,9 @@ sucuri.net caches their scan results and will not refresh the scan until you cli
|
|
| 373 |
|
| 374 |
== Upgrade Notice ==
|
| 375 |
|
|
|
|
|
|
|
|
|
|
| 376 |
= 4.20.93 =
|
| 377 |
Fixed undefined variable warning and updated code for compatibility with PHP version 8.0.
|
| 378 |
|
| 5 |
Contributors: scheeeli, gotmls
|
| 6 |
Donate link: https://gotmls.net/donate/
|
| 7 |
Tags: security, firewall, anti-malware, scanner, automatic, repair, remove, malware, virus, threat, hacked, malicious, infection, timthumb, exploit, block, brute-force, wp-login, patch, antimalware, revslider, Revolution Slider
|
| 8 |
+
Version: 4.20.94
|
| 9 |
+
Stable tag: 4.20.94
|
| 10 |
Requires at least: 3.3
|
| 11 |
Tested up to: 5.8.3
|
| 12 |
|
| 93 |
|
| 94 |
== Changelog ==
|
| 95 |
|
| 96 |
+
= 4.20.94 =
|
| 97 |
+
* Fixed an XSS vulnerability and checked code for compatibility with WordPress 5.8.3.
|
| 98 |
+
|
| 99 |
= 4.20.93 =
|
| 100 |
* Fixed undefined variable warning.
|
| 101 |
* Updated code for compatibility with PHP version 8.0.
|
| 376 |
|
| 377 |
== Upgrade Notice ==
|
| 378 |
|
| 379 |
+
= 4.20.94 =
|
| 380 |
+
Fixed an XSS vulnerability and checked code for compatibility with WordPress 5.8.3.
|
| 381 |
+
|
| 382 |
= 4.20.93 =
|
| 383 |
Fixed undefined variable warning and updated code for compatibility with PHP version 8.0.
|
| 384 |
|
