Version Description
- Fixed: Slideshow settings nonce prevented 3.4 and older WP users from saving their slideshows.
Download this release
Release Info
| Developer | stefanboonstra |
| Plugin |  Slideshow |
| Version | 2.2.5 |
| Comparing to | |
| See all releases | |
Code changes from version 2.2.4 to 2.2.5
classes/SlideshowPluginPostType.php
CHANGED
|
@@ -307,6 +307,9 @@ class SlideshowPluginPostType {
|
|
| 307 |
static function settingsMetaBox(){
|
| 308 |
global $post;
|
| 309 |
|
|
|
|
|
|
|
|
|
|
| 310 |
// Get settings
|
| 311 |
$settings = SlideshowPluginSlideshowSettingsHandler::getSettings($post->ID, true);
|
| 312 |
|
| 307 |
static function settingsMetaBox(){
|
| 308 |
global $post;
|
| 309 |
|
| 310 |
+
// Nonce
|
| 311 |
+
wp_nonce_field(SlideshowPluginSlideshowSettingsHandler::$nonceAction, SlideshowPluginSlideshowSettingsHandler::$nonceName);
|
| 312 |
+
|
| 313 |
// Get settings
|
| 314 |
$settings = SlideshowPluginSlideshowSettingsHandler::getSettings($post->ID, true);
|
| 315 |
|
classes/SlideshowPluginSlideshowSettingsHandler.php
CHANGED
|
@@ -8,6 +8,10 @@
|
|
| 8 |
*/
|
| 9 |
class SlideshowPluginSlideshowSettingsHandler {
|
| 10 |
|
|
|
|
|
|
|
|
|
|
|
|
|
| 11 |
/** Setting keys */
|
| 12 |
static $settingsKey = 'settings';
|
| 13 |
static $styleSettingsKey = 'styleSettings';
|
|
@@ -290,7 +294,7 @@ class SlideshowPluginSlideshowSettingsHandler {
|
|
| 290 |
|
| 291 |
// Verify nonce, check if user has sufficient rights and return on auto-save.
|
| 292 |
if(get_post_type($postId) != SlideshowPluginPostType::$postType ||
|
| 293 |
-
(!isset($_POST[
|
| 294 |
!current_user_can('edit_post', $postId) ||
|
| 295 |
(defined('DOING_AUTOSAVE') && DOING_AUTOSAVE))
|
| 296 |
return $postId;
|
| 8 |
*/
|
| 9 |
class SlideshowPluginSlideshowSettingsHandler {
|
| 10 |
|
| 11 |
+
/** Nonce */
|
| 12 |
+
static $nonceAction = 'slideshow-jquery-image-gallery-nonceAction';
|
| 13 |
+
static $nonceName = 'slideshow-jquery-image-gallery-nonceName';
|
| 14 |
+
|
| 15 |
/** Setting keys */
|
| 16 |
static $settingsKey = 'settings';
|
| 17 |
static $styleSettingsKey = 'styleSettings';
|
| 294 |
|
| 295 |
// Verify nonce, check if user has sufficient rights and return on auto-save.
|
| 296 |
if(get_post_type($postId) != SlideshowPluginPostType::$postType ||
|
| 297 |
+
(!isset($_POST[self::$nonceName]) || !wp_verify_nonce($_POST[self::$nonceName], self::$nonceAction)) ||
|
| 298 |
!current_user_can('edit_post', $postId) ||
|
| 299 |
(defined('DOING_AUTOSAVE') && DOING_AUTOSAVE))
|
| 300 |
return $postId;
|
readme.txt
CHANGED
|
@@ -5,7 +5,7 @@ Donate link: http://stefanboonstra.com/donate-to-slideshow/
|
|
| 5 |
Tags: slideshow, slider, slide, slides, show, images, image, photo, gallery, galleries, jquery, javascript, video, text
|
| 6 |
Requires at least: 3.3
|
| 7 |
Tested up to: 3.5.1
|
| 8 |
-
Stable tag: 2.2.
|
| 9 |
License: GPLv2
|
| 10 |
|
| 11 |
Integrate a fancy slideshow in just five steps. - Rainbows. Rainbows everywhere.
|
|
@@ -165,6 +165,9 @@ personal taste.
|
|
| 165 |
|
| 166 |
== Changelog ==
|
| 167 |
|
|
|
|
|
|
|
|
|
|
| 168 |
= 2.2.4 =
|
| 169 |
* Fixed: Video slideshows will now work on mobile devices supported by YouTube.
|
| 170 |
* Fixed: Removed multi-line element tags to prevent WordPress from adding '<br />' tags into them.
|
| 5 |
Tags: slideshow, slider, slide, slides, show, images, image, photo, gallery, galleries, jquery, javascript, video, text
|
| 6 |
Requires at least: 3.3
|
| 7 |
Tested up to: 3.5.1
|
| 8 |
+
Stable tag: 2.2.5
|
| 9 |
License: GPLv2
|
| 10 |
|
| 11 |
Integrate a fancy slideshow in just five steps. - Rainbows. Rainbows everywhere.
|
| 165 |
|
| 166 |
== Changelog ==
|
| 167 |
|
| 168 |
+
= 2.2.5 =
|
| 169 |
+
* Fixed: Slideshow settings nonce prevented 3.4 and older WP users from saving their slideshows.
|
| 170 |
+
|
| 171 |
= 2.2.4 =
|
| 172 |
* Fixed: Video slideshows will now work on mobile devices supported by YouTube.
|
| 173 |
* Fixed: Removed multi-line element tags to prevent WordPress from adding '<br />' tags into them.
|
slideshow.php
CHANGED
|
@@ -3,7 +3,7 @@
|
|
| 3 |
Plugin Name: Slideshow
|
| 4 |
Plugin URI: http://wordpress.org/extend/plugins/slideshow-jquery-image-gallery/
|
| 5 |
Description: The slideshow plugin is easily deployable on your website. Add any image that has already been uploaded to add to your slideshow, add text slides, or even add a video. Options and styles are customizable for every single slideshow on your website.
|
| 6 |
-
Version: 2.2.
|
| 7 |
Requires at least: 3.3
|
| 8 |
Author: StefanBoonstra
|
| 9 |
Author URI: http://stefanboonstra.com/
|
|
@@ -22,7 +22,7 @@
|
|
| 22 |
class SlideshowPluginMain {
|
| 23 |
|
| 24 |
/** Variables */
|
| 25 |
-
static $version = '2.2.
|
| 26 |
|
| 27 |
/**
|
| 28 |
* Bootstraps the application by assigning the right functions to
|
| 3 |
Plugin Name: Slideshow
|
| 4 |
Plugin URI: http://wordpress.org/extend/plugins/slideshow-jquery-image-gallery/
|
| 5 |
Description: The slideshow plugin is easily deployable on your website. Add any image that has already been uploaded to add to your slideshow, add text slides, or even add a video. Options and styles are customizable for every single slideshow on your website.
|
| 6 |
+
Version: 2.2.5
|
| 7 |
Requires at least: 3.3
|
| 8 |
Author: StefanBoonstra
|
| 9 |
Author URI: http://stefanboonstra.com/
|
| 22 |
class SlideshowPluginMain {
|
| 23 |
|
| 24 |
/** Variables */
|
| 25 |
+
static $version = '2.2.5';
|
| 26 |
|
| 27 |
/**
|
| 28 |
* Bootstraps the application by assigning the right functions to
|
