Version Description
- Security release to solve https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-38454
Download this release
Release Info
| Developer | karim79 |
| Plugin |  Kraken.io Image Optimizer |
| Version | 2.6.6 |
| Comparing to | |
| See all releases | |
Code changes from version 2.6.5 to 2.6.6
- kraken.php +7 -3
- readme.txt +10 -4
kraken.php
CHANGED
|
@@ -21,8 +21,10 @@
|
|
| 21 |
* Plugin URI: http://wordpress.org/plugins/kraken-image-optimizer/
|
| 22 |
* Description: This plugin allows you to optimize your WordPress images through the Kraken API, the world's most advanced image optimization solution.
|
| 23 |
* Author: Karim Salman
|
| 24 |
-
* Version: 2.6.
|
| 25 |
-
*
|
|
|
|
|
|
|
| 26 |
* Author URI: https://kraken.io
|
| 27 |
* License GPL2
|
| 28 |
*/
|
|
@@ -103,12 +105,13 @@ if ( !class_exists( 'Wp_Kraken' ) ) {
|
|
| 103 |
|
| 104 |
function kraken_settings_page() {
|
| 105 |
|
| 106 |
-
if ( !empty( $_POST ) ) {
|
| 107 |
$options = $_POST['_kraken_options'];
|
| 108 |
$result = $this->validate_options( $options );
|
| 109 |
update_option( '_kraken_options', $result['valid'] );
|
| 110 |
}
|
| 111 |
|
|
|
|
| 112 |
$settings = get_option( '_kraken_options' );
|
| 113 |
$lossy = isset( $settings['api_lossy'] ) ? $settings['api_lossy'] : 'lossy';
|
| 114 |
$auto_optimize = isset( $settings['auto_optimize'] ) ? $settings['auto_optimize'] : 1;
|
|
@@ -376,6 +379,7 @@ if ( !class_exists( 'Wp_Kraken' ) ) {
|
|
| 376 |
</tr>
|
| 377 |
</tbody>
|
| 378 |
</table>
|
|
|
|
| 379 |
<input type="submit" name="kraken_save" id="kraken_save" class="button button-primary" value="Save All"/>
|
| 380 |
</form>
|
| 381 |
<?php
|
| 21 |
* Plugin URI: http://wordpress.org/plugins/kraken-image-optimizer/
|
| 22 |
* Description: This plugin allows you to optimize your WordPress images through the Kraken API, the world's most advanced image optimization solution.
|
| 23 |
* Author: Karim Salman
|
| 24 |
+
* Version: 2.6.6
|
| 25 |
+
* Requires at least: 3.0.1
|
| 26 |
+
* Requires PHP: 5.0.0
|
| 27 |
+
* Stable Tag: 2.6.6
|
| 28 |
* Author URI: https://kraken.io
|
| 29 |
* License GPL2
|
| 30 |
*/
|
| 105 |
|
| 106 |
function kraken_settings_page() {
|
| 107 |
|
| 108 |
+
if ( !empty( $_POST ) && isset( $_POST['settings_form_nonce'] ) && wp_verify_nonce( $_POST['settings_form_nonce'], 'settings_form_nonce' ) ) {
|
| 109 |
$options = $_POST['_kraken_options'];
|
| 110 |
$result = $this->validate_options( $options );
|
| 111 |
update_option( '_kraken_options', $result['valid'] );
|
| 112 |
}
|
| 113 |
|
| 114 |
+
$form_nonce = wp_create_nonce( 'settings_form_nonce' );
|
| 115 |
$settings = get_option( '_kraken_options' );
|
| 116 |
$lossy = isset( $settings['api_lossy'] ) ? $settings['api_lossy'] : 'lossy';
|
| 117 |
$auto_optimize = isset( $settings['auto_optimize'] ) ? $settings['auto_optimize'] : 1;
|
| 379 |
</tr>
|
| 380 |
</tbody>
|
| 381 |
</table>
|
| 382 |
+
<input type="hidden" name="settings_form_nonce" value="<?php echo $form_nonce; ?>" />
|
| 383 |
<input type="submit" name="kraken_save" id="kraken_save" class="button button-primary" value="Save All"/>
|
| 384 |
</form>
|
| 385 |
<?php
|
readme.txt
CHANGED
|
@@ -1,11 +1,11 @@
|
|
| 1 |
=== Kraken.io Image Optimizer ===
|
| 2 |
Contributors: karim79
|
| 3 |
-
|
|
|
|
| 4 |
Requires at least: 3.0.1
|
|
|
|
| 5 |
Requires PHP: 5.0.0
|
| 6 |
-
|
| 7 |
-
Donate link: https://kraken.io
|
| 8 |
-
Stable tag: 2.6.5
|
| 9 |
License: GPLv2 or later
|
| 10 |
License URI: http://www.gnu.org/licenses/old-licenses/gpl-2.0.html
|
| 11 |
|
|
@@ -109,6 +109,9 @@ You will need to switch the Media Library from the Grid view to the List view. I
|
|
| 109 |
|
| 110 |
== Changelog ==
|
| 111 |
|
|
|
|
|
|
|
|
|
|
| 112 |
= 2.6.5 =
|
| 113 |
* Security and maintenance release
|
| 114 |
|
|
@@ -252,6 +255,9 @@ You will need to switch the Media Library from the Grid view to the List view. I
|
|
| 252 |
* Hooks to Media Uploader to optimize all uploaded images, including generated thumbnails.
|
| 253 |
* Allows optimization of existing images in Wordpress Media Library.
|
| 254 |
|
|
|
|
|
|
|
|
|
|
| 255 |
== Notes and Incompatible plugins ==
|
| 256 |
If you use the WP Super Cache plugin, you must **disable the plugin** prior to performing any image optimization, as it is known to cause strange and buggy behaviour with the Kraken.io Image Optimizer plugin.
|
| 257 |
|
| 1 |
=== Kraken.io Image Optimizer ===
|
| 2 |
Contributors: karim79
|
| 3 |
+
Donate link: https://kraken.io
|
| 4 |
+
Tags: compress images, image optimizer, SEO, performance, image resize, jpg, media, Optimization, optimize, optimize animated gif, optimize gif, optimize jpeg, optimize png, PageRank, PageSpeed Insights, photos, png, Reduce Image Size, retina, sitespeed, speed up site, svg, upload, svg, upload, gtmetrix speed test, EXIF, image resize
|
| 5 |
Requires at least: 3.0.1
|
| 6 |
+
Tested up to: 6.0.3
|
| 7 |
Requires PHP: 5.0.0
|
| 8 |
+
Stable tag: 2.6.6
|
|
|
|
|
|
|
| 9 |
License: GPLv2 or later
|
| 10 |
License URI: http://www.gnu.org/licenses/old-licenses/gpl-2.0.html
|
| 11 |
|
| 109 |
|
| 110 |
== Changelog ==
|
| 111 |
|
| 112 |
+
= 2.6.6 =
|
| 113 |
+
* Security release to solve https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-38454
|
| 114 |
+
|
| 115 |
= 2.6.5 =
|
| 116 |
* Security and maintenance release
|
| 117 |
|
| 255 |
* Hooks to Media Uploader to optimize all uploaded images, including generated thumbnails.
|
| 256 |
* Allows optimization of existing images in Wordpress Media Library.
|
| 257 |
|
| 258 |
+
== Upgrade Notice ==
|
| 259 |
+
Please upgrade immediately in order to avoid a potential security issue that could allow an attacker to overwrite your plugin setting (of the Kraken.io plugin.
|
| 260 |
+
|
| 261 |
== Notes and Incompatible plugins ==
|
| 262 |
If you use the WP Super Cache plugin, you must **disable the plugin** prior to performing any image optimization, as it is known to cause strange and buggy behaviour with the Kraken.io Image Optimizer plugin.
|
| 263 |
|
