Remove Footer Credit - Version 1.0.6

Version Description

  • 25.06.2021 = Fixed: Security issue regarding XSS
Download this release

Release Info

Developer giucu91
Plugin Icon 128x128 Remove Footer Credit
Version 1.0.6
Comparing to
See all releases

Code changes from version 1.0.5 to 1.0.6

Files changed (11) hide show
  1. assets/images/checkemail.png +0 -0
  2. assets/images/dm.png +0 -0
  3. assets/images/kb.png +0 -0
  4. assets/images/kiwi.png +0 -0
  5. assets/images/sab.png +0 -0
  6. assets/images/speed.png +0 -0
  7. assets/images/st.png +0 -0
  8. readme.txt +8 -10
  9. remove-footer-credit.php +27 -22
  10. sections/plugins.php +23 -5
  11. sections/settings.php +1 -0
assets/images/checkemail.png ADDED
Binary file
assets/images/dm.png ADDED
Binary file
assets/images/kb.png ADDED
Binary file
assets/images/kiwi.png DELETED
Binary file
assets/images/sab.png DELETED
Binary file
assets/images/speed.png DELETED
Binary file
assets/images/st.png ADDED
Binary file
readme.txt CHANGED
@@ -1,9 +1,9 @@
1
  === Remove Footer Credit ===
2
- Contributors: machothemes, silkalns
3
  Tags: footer, credit, change, modify, replace, remove, link, HTML, text, remove footer credit
4
- Requires at least: 4.6
5
- Tested up to: 5.2
6
- Stable tag: 1.0.5
7
  Requires PHP: 5.6
8
  License: GPLv3 or later
9
 
@@ -11,14 +11,9 @@ Remove or change footer credits or any text or HTML without modifying code.
11
 
12
  == Description ==
13
 
14
- **Remove Footer Credit** is a standalone plugin built, maintained & operated by the friendly folks over at [MachoThemes](https://www.machothemes.com/)
15
-
16
  Remove or replace footer credits (or any text or HTML in page) before page is rendered. With this plugin there is no need to modify code such as footer.php which if done incorrectly can cause your site to break or new theme updates will stomp over your changes requiring you to remove footer credits on each update.
17
 
18
- This plugin has very minimal options to keep things simple and easier to use. You enter the text or HTML that you would like to find in one text box and the text or HTML that you would like to replace in another text box (or nothing to remove). Go [here](https://www.machothemes.com/blog/remove-powered-by-wordpress/) to view my step by step tutorial with screenshots and video.
19
-
20
- **About us:**
21
- We are a young team of WordPress aficionados who love building WordPress plugins & <a href="https://www.machothemes.com/" target="_blank" title="Premium WordPress themes">Premium WordPress themes</a> over on our theme shop. We’re also blogging and wish to help our users find the <a href="https://www.machothemes.com/blog/cheapest-wordpress-hosting/" target="_blank" title="Best Cheap WordPress Hosting">Cheap WordPress Hosting</a> available on the market. Check out our blog.
22
 
23
 
24
  == Installation ==
@@ -37,6 +32,9 @@ We are a young team of WordPress aficionados who love building WordPress plugins
37
 
38
  == Changelog ==
39
 
 
 
 
40
  = 1.0.5 =
41
  * update translation file
42
 
1
  === Remove Footer Credit ===
2
+ Contributors: wpchill, silkalns
3
  Tags: footer, credit, change, modify, replace, remove, link, HTML, text, remove footer credit
4
+ Requires at least: 5.2
5
+ Tested up to: 5.7
6
+ Stable tag: 1.0.6
7
  Requires PHP: 5.6
8
  License: GPLv3 or later
9
 
11
 
12
  == Description ==
13
 
 
 
14
  Remove or replace footer credits (or any text or HTML in page) before page is rendered. With this plugin there is no need to modify code such as footer.php which if done incorrectly can cause your site to break or new theme updates will stomp over your changes requiring you to remove footer credits on each update.
15
 
16
+ This plugin has very minimal options to keep things simple and easier to use. You enter the text or HTML that you would like to find in one text box and the text or HTML that you would like to replace in another text box (or nothing to remove). Go [here](https://cpothemes.com/remove-powered-by-wordpress/) to view my step by step tutorial with screenshots and video.
 
 
 
17
 
18
 
19
  == Installation ==
32
 
33
  == Changelog ==
34
 
35
+ = 1.0.6 - 25.06.2021 =
36
+ Fixed: Security issue regarding XSS
37
+
38
  = 1.0.5 =
39
  * update translation file
40
 
remove-footer-credit.php CHANGED
@@ -2,18 +2,19 @@
2
  /**
3
  * Plugin Name: Remove Footer Credit
4
  * Description: A simple plugin to remove footer credits
5
- * Version: 1.0.5
6
- * Author: MachoThemes
7
- * Author URI: https://www.machothemes.com/
8
- * Requires: 4.6 or higher
9
  * License: GPLv3 or later
10
  * License URI: http://www.gnu.org/licenses/gpl-3.0.html
11
  * Requires PHP: 5.6
12
  * Text Domain: remove-footer-credit
13
- * Tested up to: 5.2
14
  *
15
  * Copyright 2016-2017 Joe Bill joe@upwerd.com
16
- * Copyright 2017-2019 MachoThemes office@machothemes.com
 
17
  *
18
  * Original Plugin URI: https://upwerd.com/remove-footer-credit
19
  * Original Author URI: https://upwerd.com/
@@ -24,6 +25,8 @@
24
  * The MachoThemes ownership period started on: 11/13/2017 05:12:23 PM
25
  * SVN commit proof of ownership transferral: https://plugins.trac.wordpress.org/changeset/1765266/remove-footer-credit
26
  *
 
 
27
  * This program is free software; you can redistribute it and/or modify
28
  * it under the terms of the GNU General Public License, version 3, as
29
  * published by the Free Software Foundation.
@@ -145,13 +148,21 @@ class RFC_Plugin {
145
  public function jabrfc_options_page() {
146
 
147
  if ($_SERVER['REQUEST_METHOD'] == 'POST') {
 
 
 
 
 
148
  $_POST = stripslashes_deep( $_POST );
149
 
 
 
 
150
  $data = array(
151
- 'find' => explode("\n", str_replace("\r", "", $_POST['find'])),
152
- 'replace' => explode("\n", str_replace("\r", "", $_POST['replace'])),
153
- 'willLinkback' => $_POST['willLinkback'],
154
- 'linkbackPostId' => $_POST['linkbackPostId']
155
  );
156
 
157
  update_option( 'jabrfc_text', $data );
@@ -188,9 +199,6 @@ class RFC_Plugin {
188
 
189
  new RFC_Plugin();
190
 
191
-
192
-
193
-
194
  /*
195
  * Apply find and replace rules
196
  */
@@ -201,16 +209,13 @@ function jabrfc_ob_call( $buffer ) { // $buffer contains entire page
201
  if ( is_array( $data['find']) ) {
202
  $i = 0;
203
  foreach ( $data['find'] as &$value ) {
204
- $buffer = str_replace( $value, (array_key_exists($i, $data['replace']) ? $data['replace'][$i] : ''), $buffer );
205
- $i++;
 
 
 
 
206
  }
207
  }
208
  return $buffer;
209
  }
210
-
211
-
212
-
213
-
214
-
215
-
216
-
2
  /**
3
  * Plugin Name: Remove Footer Credit
4
  * Description: A simple plugin to remove footer credits
5
+ * Version: 1.0.6
6
+ * Author: WPChill
7
+ * Author URI: https://wpchill.com
8
+ * Requires: 5.2 or higher
9
  * License: GPLv3 or later
10
  * License URI: http://www.gnu.org/licenses/gpl-3.0.html
11
  * Requires PHP: 5.6
12
  * Text Domain: remove-footer-credit
13
+ * Tested up to: 5.7
14
  *
15
  * Copyright 2016-2017 Joe Bill joe@upwerd.com
16
+ * Copyright 2017-2020 MachoThemes office@machothemes.com
17
+ * Copyright 2020 WPChill heyyy@wpchill.com
18
  *
19
  * Original Plugin URI: https://upwerd.com/remove-footer-credit
20
  * Original Author URI: https://upwerd.com/
25
  * The MachoThemes ownership period started on: 11/13/2017 05:12:23 PM
26
  * SVN commit proof of ownership transferral: https://plugins.trac.wordpress.org/changeset/1765266/remove-footer-credit
27
  *
28
+ * WPChill received ownership from MachoThemes on 5th of November, 2020. WPChill is a restructure and rebrand of MachoThemes.
29
+ *
30
  * This program is free software; you can redistribute it and/or modify
31
  * it under the terms of the GNU General Public License, version 3, as
32
  * published by the Free Software Foundation.
148
  public function jabrfc_options_page() {
149
 
150
  if ($_SERVER['REQUEST_METHOD'] == 'POST') {
151
+
152
+ if ( ! isset( $_POST['remove_footer_credit_nonce'] ) || ! wp_verify_nonce( $_POST['remove_footer_credit_nonce'], 'remove_footer_credit_options' ) ) {
153
+ return;
154
+ }
155
+
156
  $_POST = stripslashes_deep( $_POST );
157
 
158
+ $find = preg_replace( '#<script(.*?)>(.*?)</script>#is', '', $_POST['find'] );
159
+ $replace = preg_replace( '#<script(.*?)>(.*?)</script>#is', '', $_POST['replace'] );
160
+
161
  $data = array(
162
+ 'find' => explode( "\n", str_replace( "\r", "", $find ) ),
163
+ 'replace' => explode( "\n", str_replace( "\r", "", $replace ) ),
164
+ 'willLinkback' => sanitize_text_field($_POST['willLinkback']),
165
+ 'linkbackPostId' => sanitize_text_field($_POST['linkbackPostId'])
166
  );
167
 
168
  update_option( 'jabrfc_text', $data );
199
 
200
  new RFC_Plugin();
201
 
 
 
 
202
  /*
203
  * Apply find and replace rules
204
  */
209
  if ( is_array( $data['find']) ) {
210
  $i = 0;
211
  foreach ( $data['find'] as &$value ) {
212
+
213
+ $value = preg_replace( '#<script(.*?)>(.*?)</script>#is', '', $value );
214
+ $replace = preg_replace( '#<script(.*?)>(.*?)</script>#is', '', $data['replace'][ $i ] );
215
+
216
+ $buffer = str_replace( $value, ( array_key_exists( $i, $data['replace'] ) ? $replace : '' ), $buffer );
217
+ $i ++;
218
  }
219
  }
220
  return $buffer;
221
  }
 
 
 
 
 
 
 
sections/plugins.php CHANGED
@@ -7,11 +7,29 @@ $plugins = array(
7
  'more' => 'https://wordpress.org/plugins/modula-best-grid-gallery/',
8
  'image' => 'modula.jpg',
9
  ),
10
- 'simple-author-box' => array(
11
- 'title' => esc_html__( 'Simple Author Box', 'remove-footer-credit' ),
12
- 'description' => esc_html__( 'Simple Author Box adds a responsive author box at the end of your posts, showing the author name, author gravatar and author description. It also adds over 30 social profile fields on WordPress user profile screen, allowing to display the author social icons.', 'remove-footer-credit' ),
13
- 'more' => 'https://wordpress.org/plugins/simple-author-box/',
14
- 'image' => 'sab.png',
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
15
  ),
16
  );
17
 
7
  'more' => 'https://wordpress.org/plugins/modula-best-grid-gallery/',
8
  'image' => 'modula.jpg',
9
  ),
10
+ 'strong-testimonials' => array(
11
+ 'title' => esc_html__( 'Strong Testimonials', 'remove-footer-credit' ),
12
+ 'description' => esc_html__( 'Easily collect and display testimonials on your website', 'remove-footer-credit' ),
13
+ 'more' => 'https://wordpress.org/plugins/strong-testimonials/',
14
+ 'image' => 'st.png',
15
+ ),
16
+ 'download-monitor' => array(
17
+ 'title' => esc_html__( 'Download Monitor', 'remove-footer-credit' ),
18
+ 'description' => esc_html__( 'Download Monitor provides an interface for uploading and managing downloadable files (including support for multiple versions), inserting download links into posts, logging downloads and selling downloads!', 'remove-footer-credit' ),
19
+ 'more' => 'https://wordpress.org/plugins/download-monitor/',
20
+ 'image' => 'dm.png',
21
+ ),
22
+ 'check-email' => array(
23
+ 'title' => esc_html__( 'Check & Log Email', 'remove-footer-credit' ),
24
+ 'description' => esc_html__( 'Check & Log email allows you to test if your WordPress installation is sending emails correctly and logs every email.', 'remove-footer-credit' ),
25
+ 'more' => 'https://wordpress.org/plugins/check-email/',
26
+ 'image' => 'checkemail.png',
27
+ ),
28
+ 'kb-support' => array(
29
+ 'title' => esc_html__( 'KB Support – WordPress Help Desk', 'remove-footer-credit' ),
30
+ 'description' => esc_html__( 'KB Support is the ultimate WordPress plugin for providing support and help desk services to your customers.', 'remove-footer-credit' ),
31
+ 'more' => 'https://wordpress.org/plugins/kb-support/',
32
+ 'image' => 'kb.png',
33
  ),
34
  );
35
 
sections/settings.php CHANGED
@@ -55,6 +55,7 @@
55
  </div>
56
  </div>
57
  <div style="margin-top: 20px;">
 
58
  <input type="submit" class="button" value="Save" />
59
  </div>
60
  </form>
55
  </div>
56
  </div>
57
  <div style="margin-top: 20px;">
58
+ <?php wp_nonce_field( 'remove_footer_credit_options', 'remove_footer_credit_nonce' ); ?>
59
  <input type="submit" class="button" value="Save" />
60
  </div>
61
  </form>