WordPress Social Share, Social Login and Social Comments Plugin

Version Description

[Bugfix] Fixed XSS vulnerability
[Improvement] Using class names 'the_champ_sharing_title' and 'the_champ_social_login_title' for title text of Social Sharing and Social Login shortcodes

Release Info

Developer	the_champ
Plugin	WordPress Social Share, Social Login and Social Comments Plugin – Super Socializer
Version	7.8.10
Comparing to
See all releases

Code changes from version 7.8.9 to 7.8.10

Files changed (9) hide show

admin/social_login.php +7 -7
admin/social_sharing.php +4 -4
helper.php +3 -3
inc/shortcode.php +6 -6
inc/social_login.php +3 -3
inc/social_sharing.php +7 -7
inc/widget.php +9 -9
readme.txt +11 -3
super_socializer.php +18 -18

admin/social_login.php CHANGED Viewed

	@@ -157,7 +157,7 @@
157	<br/>
158	<span style="color: #14ACDF"><?php _e('Paste following url in <strong>Site URL</strong> option at the link mentioned', 'Super-Socializer'); ?></span>
159	<br/>
160	- <strong style="color: #14ACDF"><?php echo home_url(); ?></strong>
161	</div>
162	</td>
163	</tr>
	@@ -179,7 +179,7 @@
179	<br/>
180	<span style="color: #14ACDF"><?php _e('Paste following url in <strong>Website</strong> and <strong>Callback URL</strong> options at the link mentioned', 'Super-Socializer'); ?></span>
181	<br/>
182	- <strong style="color: #14ACDF"><?php echo home_url(); ?></strong>
183	</div>
184	</td>
185	</tr>
	@@ -201,7 +201,7 @@
201	<br/>
202	<span style="color: #14ACDF"><?php _e('Paste following url in <strong>Website</strong> and <strong>Callback URL</strong> options at the link mentioned', 'Super-Socializer'); ?></span>
203	<br/>
204	- <strong style="color: #14ACDF"><?php echo home_url(); ?></strong>
205	</div>
206	</td>
207	</tr>
	@@ -223,7 +223,7 @@
223	<br/>
224	<span style="color: #14ACDF"><?php _e('Paste following url in <strong>Website URL</strong> option at the link mentioned', 'Super-Socializer'); ?></span>
225	<br/>
226	- <strong style="color: #14ACDF"><?php echo home_url(); ?></strong>
227	</div>
228	</td>
229	</tr>
	@@ -267,7 +267,7 @@
267	<br/>
268	<span style="color: #14ACDF"><?php _e('Paste following url in <strong>Site address</strong> option at the link mentioned', 'Super-Socializer'); ?></span>
269	<br/>
270	- <strong style="color: #14ACDF"><?php echo home_url(); ?></strong>
271	</div>
272	</td>
273	</tr>
	@@ -289,7 +289,7 @@
289	<br/>
290	<span style="color: #14ACDF"><?php _e('Paste following url in <strong>Website URL</strong> option at the link mentioned', 'Super-Socializer'); ?></span>
291	<br/>
292	- <strong style="color: #14ACDF"><?php echo home_url(); ?></strong>
293	</div>
294	</td>
295	</tr>
	@@ -355,7 +355,7 @@
355	<br/>
356	<span style="color: #14ACDF"><?php _e('Paste following url in <strong>Redirect URI</strong> option at the link mentioned', 'Super-Socializer'); ?></span>
357	<br/>
358	- <strong style="color: #14ACDF"><?php echo home_url() . '/?SuperSocializerAuth=Twitch'; ?></strong>
359	</div>
360	</td>
361	</tr>


157	<br/>
158	<span style="color: #14ACDF"><?php _e('Paste following url in <strong>Site URL</strong> option at the link mentioned', 'Super-Socializer'); ?></span>
159	<br/>
160	+ <strong style="color: #14ACDF"><?php echo esc_url(home_url()); ?></strong>
161	</div>
162	</td>
163	</tr>

179	<br/>
180	<span style="color: #14ACDF"><?php _e('Paste following url in <strong>Website</strong> and <strong>Callback URL</strong> options at the link mentioned', 'Super-Socializer'); ?></span>
181	<br/>
182	+ <strong style="color: #14ACDF"><?php echo esc_url(home_url()); ?></strong>
183	</div>
184	</td>
185	</tr>

201	<br/>
202	<span style="color: #14ACDF"><?php _e('Paste following url in <strong>Website</strong> and <strong>Callback URL</strong> options at the link mentioned', 'Super-Socializer'); ?></span>
203	<br/>
204	+ <strong style="color: #14ACDF"><?php echo esc_url(home_url()); ?></strong>
205	</div>
206	</td>
207	</tr>

223	<br/>
224	<span style="color: #14ACDF"><?php _e('Paste following url in <strong>Website URL</strong> option at the link mentioned', 'Super-Socializer'); ?></span>
225	<br/>
226	+ <strong style="color: #14ACDF"><?php echo esc_url(home_url()); ?></strong>
227	</div>
228	</td>
229	</tr>

267	<br/>
268	<span style="color: #14ACDF"><?php _e('Paste following url in <strong>Site address</strong> option at the link mentioned', 'Super-Socializer'); ?></span>
269	<br/>
270	+ <strong style="color: #14ACDF"><?php echo esc_url(home_url()); ?></strong>
271	</div>
272	</td>
273	</tr>

289	<br/>
290	<span style="color: #14ACDF"><?php _e('Paste following url in <strong>Website URL</strong> option at the link mentioned', 'Super-Socializer'); ?></span>
291	<br/>
292	+ <strong style="color: #14ACDF"><?php echo esc_url(home_url()); ?></strong>
293	</div>
294	</td>
295	</tr>

355	<br/>
356	<span style="color: #14ACDF"><?php _e('Paste following url in <strong>Redirect URI</strong> option at the link mentioned', 'Super-Socializer'); ?></span>
357	<br/>
358	+ <strong style="color: #14ACDF"><?php echo esc_url(home_url()) . '/?SuperSocializerAuth=Twitch'; ?></strong>
359	</div>
360	</td>
361	</tr>

admin/social_sharing.php CHANGED Viewed

	@@ -1018,11 +1018,11 @@
1018	<td>
1019	<input id="the_champ_newsharecounts" name="the_champ_sharing[tweet_count_service]" type="radio" <?php echo $tweetCountService == 'newsharecounts' ? 'checked = "checked"' : '';?> value="newsharecounts" /><label for="the_champ_newsharecounts"><?php echo sprintf( __( 'Use <a href="%s" target="_blank">NewShareCounts</a> to show Twitter share counts', 'Super-Socializer'), 'http://newsharecounts.com' ) ?></label>
1020	<br/>
1021	- <span class="the_champ_help_content" style="display:block"><?php echo sprintf( __( 'For this to work, you have to enter your website url %s and sign in using Twitter at <a href="%s" target="_blank">their website</a>', 'Super-Socializer'), home_url(), 'http://newsharecounts.com' ) ?></span>
1022	<br/>
1023	<input id="the_champ_opensharecount" name="the_champ_sharing[tweet_count_service]" type="radio" <?php echo $tweetCountService == 'opensharecount' ? 'checked = "checked"' : '';?> value="opensharecount" /><label for="the_champ_opensharecount"><?php echo sprintf( __( 'Use <a href="%s" target="_blank">OpenShareCount</a> to show Twitter share counts', 'Super-Socializer'), 'http://opensharecount.com' ) ?></label>
1024	<br/>
1025	- <span class="the_champ_help_content" style="display:block"><?php echo sprintf( __( 'For this to work, you have to sign up and register your website url %s at <a href="%s" target="_blank">their website</a>', 'Super-Socializer'), home_url(), 'http://opensharecount.com' ) ?></span>
1026	</td>
1027	</tr>
1028
	@@ -1431,11 +1431,11 @@
1431	<td>
1432	<input id="the_champ_vertical_newsharecounts" name="the_champ_sharing[vertical_tweet_count_service]" type="radio" <?php echo $tweetCountService == 'newsharecounts' ? 'checked = "checked"' : '';?> value="newsharecounts" /><label for="the_champ_vertical_newsharecounts"><?php echo sprintf( __( 'Use <a href="%s" target="_blank">NewShareCounts</a> to show Twitter share counts', 'Super-Socializer'), 'http://newsharecounts.com' ) ?></label>
1433	<br/>
1434	- <span class="the_champ_help_content" style="display:block"><?php echo sprintf( __( 'For this to work, you have to enter your website url %s and sign in using Twitter at <a href="%s" target="_blank">their website</a>', 'Super-Socializer'), home_url(), 'http://newsharecounts.com' ) ?></span>
1435	<br/>
1436	<input id="the_champ_vertical_opensharecount" name="the_champ_sharing[vertical_tweet_count_service]" type="radio" <?php echo $tweetCountService == 'opensharecount' ? 'checked = "checked"' : '';?> value="opensharecount" /><label for="the_champ_vertical_opensharecount"><?php echo sprintf( __( 'Use <a href="%s" target="_blank">OpenShareCount</a> to show Twitter share counts', 'Super-Socializer'), 'http://opensharecount.com' ) ?></label>
1437	<br/>
1438	- <span class="the_champ_help_content" style="display:block"><?php echo sprintf( __( 'For this to work, you have to sign up and register your website url %s at <a href="%s" target="_blank">their website</a>', 'Super-Socializer'), home_url(), 'http://opensharecount.com' ) ?></span>
1439	</td>
1440	</tr>
1441


1018	<td>
1019	<input id="the_champ_newsharecounts" name="the_champ_sharing[tweet_count_service]" type="radio" <?php echo $tweetCountService == 'newsharecounts' ? 'checked = "checked"' : '';?> value="newsharecounts" /><label for="the_champ_newsharecounts"><?php echo sprintf( __( 'Use <a href="%s" target="_blank">NewShareCounts</a> to show Twitter share counts', 'Super-Socializer'), 'http://newsharecounts.com' ) ?></label>
1020	<br/>
1021	+ <span class="the_champ_help_content" style="display:block"><?php echo sprintf( __( 'For this to work, you have to enter your website url %s and sign in using Twitter at <a href="%s" target="_blank">their website</a>', 'Super-Socializer'), esc_url(home_url()), 'http://newsharecounts.com' ) ?></span>
1022	<br/>
1023	<input id="the_champ_opensharecount" name="the_champ_sharing[tweet_count_service]" type="radio" <?php echo $tweetCountService == 'opensharecount' ? 'checked = "checked"' : '';?> value="opensharecount" /><label for="the_champ_opensharecount"><?php echo sprintf( __( 'Use <a href="%s" target="_blank">OpenShareCount</a> to show Twitter share counts', 'Super-Socializer'), 'http://opensharecount.com' ) ?></label>
1024	<br/>
1025	+ <span class="the_champ_help_content" style="display:block"><?php echo sprintf( __( 'For this to work, you have to sign up and register your website url %s at <a href="%s" target="_blank">their website</a>', 'Super-Socializer'), esc_url(home_url()), 'http://opensharecount.com' ) ?></span>
1026	</td>
1027	</tr>
1028

1431	<td>
1432	<input id="the_champ_vertical_newsharecounts" name="the_champ_sharing[vertical_tweet_count_service]" type="radio" <?php echo $tweetCountService == 'newsharecounts' ? 'checked = "checked"' : '';?> value="newsharecounts" /><label for="the_champ_vertical_newsharecounts"><?php echo sprintf( __( 'Use <a href="%s" target="_blank">NewShareCounts</a> to show Twitter share counts', 'Super-Socializer'), 'http://newsharecounts.com' ) ?></label>
1433	<br/>
1434	+ <span class="the_champ_help_content" style="display:block"><?php echo sprintf( __( 'For this to work, you have to enter your website url %s and sign in using Twitter at <a href="%s" target="_blank">their website</a>', 'Super-Socializer'), esc_url(home_url()), 'http://newsharecounts.com' ) ?></span>
1435	<br/>
1436	<input id="the_champ_vertical_opensharecount" name="the_champ_sharing[vertical_tweet_count_service]" type="radio" <?php echo $tweetCountService == 'opensharecount' ? 'checked = "checked"' : '';?> value="opensharecount" /><label for="the_champ_vertical_opensharecount"><?php echo sprintf( __( 'Use <a href="%s" target="_blank">OpenShareCount</a> to show Twitter share counts', 'Super-Socializer'), 'http://opensharecount.com' ) ?></label>
1437	<br/>
1438	+ <span class="the_champ_help_content" style="display:block"><?php echo sprintf( __( 'For this to work, you have to sign up and register your website url %s at <a href="%s" target="_blank">their website</a>', 'Super-Socializer'), esc_url(home_url()), 'http://opensharecount.com' ) ?></span>
1439	</td>
1440	</tr>
1441

helper.php CHANGED Viewed

	@@ -153,7 +153,7 @@ add_action('admin_init', 'the_champ_options_init');
153	*/
154	function the_champ_admin_scripts(){
155	?>
156	- <script>var theChampWebsiteUrl = '<?php echo home_url() ?>', theChampHelpBubbleTitle = "<?php echo __('Click to show help', 'Super-Socializer') ?>", theChampHelpBubbleCollapseTitle = "<?php echo __('Click to hide help', 'Super-Socializer') ?>" </script>
157	<?php
158	wp_enqueue_script('the_champ_admin_script', plugins_url('js/admin/admin.js', __FILE__), array('jquery', 'jquery-ui-tabs'), THE_CHAMP_SS_VERSION);
159	}
	@@ -490,7 +490,7 @@ function the_champ_account_linking(){
490	<?php
491	// general (required) scripts
492	wp_enqueue_script('the_champ_ss_general_scripts', plugins_url('js/front/social_login/general.js', __FILE__), false, THE_CHAMP_SS_VERSION);
493	- $websiteUrl = home_url();
494	$twitterRedirect = urlencode(the_champ_get_valid_url(the_champ_get_http().$_SERVER["HTTP_HOST"] . html_entity_decode(esc_url(remove_query_arg(array('linked'))))));
495	?>
496	<script> var theChampLinkingRedirection = '<?php echo the_champ_get_http().$_SERVER["HTTP_HOST"] . html_entity_decode(esc_url(remove_query_arg(array( 'linked')))) ?>'; var theChampSiteUrl = '<?php echo $websiteUrl ?>'; var theChampVerified = 0; var theChampAjaxUrl = '<?php echo admin_url() ?>/admin-ajax.php'; var theChampPopupTitle = ''; var theChampEmailPopup = 0; var theChampEmailAjaxUrl = '<?php echo admin_url() ?>/admin-ajax.php'; var theChampEmailPopupTitle = ''; var theChampEmailPopupErrorMsg = ''; var theChampEmailPopupUniqueId = ''; var theChampEmailPopupVerifyMessage = ''; var theChampTwitterRedirect = '<?php echo $twitterRedirect; ?>';</script>
	@@ -503,7 +503,7 @@ function the_champ_account_linking(){
503	$regRedirectionUrl = the_champ_get_login_redirection_url('', true);
504	global $theChampSteamLogin;
505	?>
506	- <script> var theChampLoadingImgPath = '<?php echo $loadingImagePath ?>'; var theChampAjaxUrl = '<?php echo $theChampAjaxUrl ?>'; var theChampRedirectionUrl = '<?php echo $redirectionUrl ?>'; var theChampRegRedirectionUrl = '<?php echo $regRedirectionUrl ?>', theChampSteamAuthUrl = "<?php echo $theChampSteamLogin ? $theChampSteamLogin->url( home_url() . '?SuperSocializerSteamAuth=' . $twitterRedirect ) : ''; ?>"; </script>
507	<?php
508	$userVerified = false;
509	$ajaxUrl = 'admin-ajax.php';


153	*/
154	function the_champ_admin_scripts(){
155	?>
156	+ <script>var theChampWebsiteUrl = '<?php echo esc_url(home_url()) ?>', theChampHelpBubbleTitle = "<?php echo __('Click to show help', 'Super-Socializer') ?>", theChampHelpBubbleCollapseTitle = "<?php echo __('Click to hide help', 'Super-Socializer') ?>" </script>
157	<?php
158	wp_enqueue_script('the_champ_admin_script', plugins_url('js/admin/admin.js', __FILE__), array('jquery', 'jquery-ui-tabs'), THE_CHAMP_SS_VERSION);
159	}

490	<?php
491	// general (required) scripts
492	wp_enqueue_script('the_champ_ss_general_scripts', plugins_url('js/front/social_login/general.js', __FILE__), false, THE_CHAMP_SS_VERSION);
493	+ $websiteUrl = esc_url(home_url());
494	$twitterRedirect = urlencode(the_champ_get_valid_url(the_champ_get_http().$_SERVER["HTTP_HOST"] . html_entity_decode(esc_url(remove_query_arg(array('linked'))))));
495	?>
496	<script> var theChampLinkingRedirection = '<?php echo the_champ_get_http().$_SERVER["HTTP_HOST"] . html_entity_decode(esc_url(remove_query_arg(array( 'linked')))) ?>'; var theChampSiteUrl = '<?php echo $websiteUrl ?>'; var theChampVerified = 0; var theChampAjaxUrl = '<?php echo admin_url() ?>/admin-ajax.php'; var theChampPopupTitle = ''; var theChampEmailPopup = 0; var theChampEmailAjaxUrl = '<?php echo admin_url() ?>/admin-ajax.php'; var theChampEmailPopupTitle = ''; var theChampEmailPopupErrorMsg = ''; var theChampEmailPopupUniqueId = ''; var theChampEmailPopupVerifyMessage = ''; var theChampTwitterRedirect = '<?php echo $twitterRedirect; ?>';</script>

503	$regRedirectionUrl = the_champ_get_login_redirection_url('', true);
504	global $theChampSteamLogin;
505	?>
506	+ <script> var theChampLoadingImgPath = '<?php echo $loadingImagePath ?>'; var theChampAjaxUrl = '<?php echo $theChampAjaxUrl ?>'; var theChampRedirectionUrl = '<?php echo $redirectionUrl ?>'; var theChampRegRedirectionUrl = '<?php echo $regRedirectionUrl ?>', theChampSteamAuthUrl = "<?php echo $theChampSteamLogin ? $theChampSteamLogin->url( esc_url(home_url()) . '?SuperSocializerSteamAuth=' . $twitterRedirect ) : ''; ?>"; </script>
507	<?php
508	$userVerified = false;
509	$ajaxUrl = 'admin-ajax.php';

inc/shortcode.php CHANGED Viewed

	@@ -31,7 +31,7 @@ function the_champ_sharing_shortcode($params){
31	$targetUrl = $url;
32	$postId = 0;
33	}elseif(is_front_page()){
34	- $targetUrl = home_url();
35	$postId = 0;
36	}elseif(isset($_SERVER['QUERY_STRING']) && $_SERVER['QUERY_STRING']){
37	$targetUrl = html_entity_decode(esc_url(the_champ_get_http().$_SERVER["HTTP_HOST"] . $_SERVER["REQUEST_URI"]));
	@@ -74,7 +74,7 @@ function the_champ_sharing_shortcode($params){
74	}
75	$html .= '>';
76	if( $type == 'horizontal' && $title != '' ) {
77	- $html .= '<div style="font-weight:bold">' . ucfirst( $title ) . '</div>';
78	}
79	$html .= the_champ_prepare_sharing_html($shortUrl == '' ? $targetUrl : $shortUrl, $type, $count, $total_shares == 'ON' ? 1 : 0, $shareCountTransientId);
80	$html .= '</div>';
	@@ -121,7 +121,7 @@ function the_champ_counter_shortcode($params){
121	$targetUrl = $url;
122	$postId = 0;
123	}elseif(is_front_page()){
124	- $targetUrl = home_url();
125	$postId = 0;
126	}elseif(isset($_SERVER['QUERY_STRING']) && $_SERVER['QUERY_STRING']){
127	$targetUrl = html_entity_decode(esc_url(the_champ_get_http().$_SERVER["HTTP_HOST"] . $_SERVER["REQUEST_URI"]));
	@@ -155,7 +155,7 @@ function the_champ_counter_shortcode($params){
155	}
156	$html .= '>';
157	if( $type == 'horizontal' && $title != '' ) {
158	- $html .= '<div style="font-weight:bold">' . ucfirst( $title ) . '</div>';
159	}
160	$counterUrl = $targetUrl;
161	if(isset($theChampCounterOptions['use_shortlinks']) && function_exists('wp_get_shortlink')){
	@@ -192,7 +192,7 @@ function the_champ_login_shortcode($params){
192	$html .= "</div><div style='float:left; margin-left:10px'>";
193	$html .= str_replace('-', ' ', $userInfo -> user_login);
194	//do_action('the_champ_login_widget_hook', $userInfo -> user_login);
195	- $html .= '<br/><a href="' . wp_logout_url(home_url()) . '">' .__('Log Out', 'Super-Socializer') . '</a></div></div>';
196	}else{
197	$html = '<div ';
198	// style
	@@ -204,7 +204,7 @@ function the_champ_login_shortcode($params){
204	}
205	$html .= '>';
206	if( !is_user_logged_in() && $title != '' ) {
207	- $html .= '<div style="font-weight:bold">' . ucfirst( $title ) . '</div>';
208	}
209	$html .= the_champ_login_button(true);
210	$html .= '</div><div style="clear:both"></div>';


31	$targetUrl = $url;
32	$postId = 0;
33	}elseif(is_front_page()){
34	+ $targetUrl = esc_url(home_url());
35	$postId = 0;
36	}elseif(isset($_SERVER['QUERY_STRING']) && $_SERVER['QUERY_STRING']){
37	$targetUrl = html_entity_decode(esc_url(the_champ_get_http().$_SERVER["HTTP_HOST"] . $_SERVER["REQUEST_URI"]));

74	}
75	$html .= '>';
76	if( $type == 'horizontal' && $title != '' ) {
77	+ $html .= '<div style="font-weight:bold" class="the_champ_sharing_title">' . ucfirst( $title ) . '</div>';
78	}
79	$html .= the_champ_prepare_sharing_html($shortUrl == '' ? $targetUrl : $shortUrl, $type, $count, $total_shares == 'ON' ? 1 : 0, $shareCountTransientId);
80	$html .= '</div>';

121	$targetUrl = $url;
122	$postId = 0;
123	}elseif(is_front_page()){
124	+ $targetUrl = esc_url(home_url());
125	$postId = 0;
126	}elseif(isset($_SERVER['QUERY_STRING']) && $_SERVER['QUERY_STRING']){
127	$targetUrl = html_entity_decode(esc_url(the_champ_get_http().$_SERVER["HTTP_HOST"] . $_SERVER["REQUEST_URI"]));

155	}
156	$html .= '>';
157	if( $type == 'horizontal' && $title != '' ) {
158	+ $html .= '<div style="font-weight:bold" class="the_champ_counter_title">' . ucfirst( $title ) . '</div>';
159	}
160	$counterUrl = $targetUrl;
161	if(isset($theChampCounterOptions['use_shortlinks']) && function_exists('wp_get_shortlink')){

192	$html .= "</div><div style='float:left; margin-left:10px'>";
193	$html .= str_replace('-', ' ', $userInfo -> user_login);
194	//do_action('the_champ_login_widget_hook', $userInfo -> user_login);
195	+ $html .= '<br/><a href="' . wp_logout_url(esc_url(home_url())) . '">' .__('Log Out', 'Super-Socializer') . '</a></div></div>';
196	}else{
197	$html = '<div ';
198	// style

204	}
205	$html .= '>';
206	if( !is_user_logged_in() && $title != '' ) {
207	+ $html .= '<div style="font-weight:bold" class="the_champ_social_login_title">' . ucfirst( $title ) . '</div>';
208	}
209	$html .= the_champ_login_button(true);
210	$html .= '</div><div style="clear:both"></div>';

inc/social_login.php CHANGED Viewed

	@@ -503,7 +503,7 @@ function the_champ_user_auth($profileData, $provider = 'facebook', $twitterRedir
503	the_champ_link_account($profileData['id'], $profileData['provider'], $user_ID);
504	the_champ_close_login_popup(admin_url() . '/profile.php'); //** may be BP profile/custom profile page/wp profile page
505	}else{
506	- the_champ_close_login_popup(home_url().'?SuperSocializerUnverified=1');
507	}
508	}
509	if(is_user_logged_in()){
	@@ -597,7 +597,7 @@ function the_champ_user_auth($profileData, $provider = 'facebook', $twitterRedir
597	if(!in_array($profileData['provider'], array('twitter', 'instagram', 'xing', 'steam'))){
598	return array('status' => false, 'message' => 'ask email\|' . $uniqueId);
599	}
600	- the_champ_close_login_popup(home_url().'?SuperSocializerEmail=1&par='.$uniqueId);
601	}
602	}
603	// check if email exists in database
	@@ -748,7 +748,7 @@ add_action('wp_ajax_nopriv_the_champ_save_email', 'the_champ_save_email');
748	*/
749	function the_champ_send_verification_email($receiverEmail, $verificationKey){
750	$subject = "[".wp_specialchars_decode(trim(get_option('blogname')), ENT_QUOTES)."] " . __('Email Verification', 'Super-Socializer');
751	- $url = home_url()."?SuperSocializerKey=".$verificationKey;
752	$message = __("Please click on the following link or paste it in browser to verify your email", 'Super-Socializer') . "\r\n" . $url;
753	wp_mail($receiverEmail, $subject, $message);
754	}


503	the_champ_link_account($profileData['id'], $profileData['provider'], $user_ID);
504	the_champ_close_login_popup(admin_url() . '/profile.php'); //** may be BP profile/custom profile page/wp profile page
505	}else{
506	+ the_champ_close_login_popup(esc_url(home_url()).'?SuperSocializerUnverified=1');
507	}
508	}
509	if(is_user_logged_in()){

597	if(!in_array($profileData['provider'], array('twitter', 'instagram', 'xing', 'steam'))){
598	return array('status' => false, 'message' => 'ask email\|' . $uniqueId);
599	}
600	+ the_champ_close_login_popup(esc_url(home_url()).'?SuperSocializerEmail=1&par='.$uniqueId);
601	}
602	}
603	// check if email exists in database

748	*/
749	function the_champ_send_verification_email($receiverEmail, $verificationKey){
750	$subject = "[".wp_specialchars_decode(trim(get_option('blogname')), ENT_QUOTES)."] " . __('Email Verification', 'Super-Socializer');
751	+ $url = esc_url(home_url())."?SuperSocializerKey=".$verificationKey;
752	$message = __("Please click on the following link or paste it in browser to verify your email", 'Super-Socializer') . "\r\n" . $url;
753	wp_mail($receiverEmail, $subject, $message);
754	}

inc/social_sharing.php CHANGED Viewed

	@@ -425,7 +425,7 @@ function the_champ_render_sharing($content){
425	$counterPostUrl = html_entity_decode(esc_url(the_champ_get_http().$_SERVER["HTTP_HOST"] . $_SERVER["REQUEST_URI"]));
426	}
427	}elseif($theChampCounterOptions['horizontal_target_url'] == 'home'){
428	- $counterPostUrl = home_url();
429	$postId = 0;
430	}elseif($theChampCounterOptions['horizontal_target_url'] == 'custom'){
431	$counterPostUrl = isset($theChampCounterOptions['horizontal_target_url_custom']) ? trim($theChampCounterOptions['horizontal_target_url_custom']) : get_permalink($post->ID);
	@@ -457,7 +457,7 @@ function the_champ_render_sharing($content){
457	$sharingTitleStyle = 'style="font-weight: bold;list-style: none;position: relative;left: 50%;"';
458	}
459	}
460	- $horizontalDiv = "<div style='clear: both'></div><div ". $sharingContainerStyle ." class='the_champ_counter_container the_champ_horizontal_counter'><div ". $sharingTitleStyle .">".ucfirst($theChampCounterOptions['title'])."</div>".$sharingDiv."</div><div style='clear: both'></div>";
461	if($counterBpActivity){
462	echo $horizontalDiv;
463	}
	@@ -503,7 +503,7 @@ function the_champ_render_sharing($content){
503	$counterPostUrl = html_entity_decode(esc_url(the_champ_get_http().$_SERVER["HTTP_HOST"] . $_SERVER["REQUEST_URI"]));
504	}
505	}elseif($theChampCounterOptions['vertical_target_url'] == 'home'){
506	- $counterPostUrl = home_url();
507	$postId = 0;
508	}elseif($theChampCounterOptions['vertical_target_url'] == 'custom'){
509	$counterPostUrl = isset($theChampCounterOptions['vertical_target_url_custom']) ? trim($theChampCounterOptions['vertical_target_url_custom']) : get_permalink($post->ID);
	@@ -541,7 +541,7 @@ function the_champ_render_sharing($content){
541	}
542	if($$var == 0){
543	if(isset($theChampCounterOptions['vertical_target_url']) && $theChampCounterOptions['vertical_target_url'] == 'default'){
544	- $counterPostUrl = home_url();
545	$counterUrl = $counterPostUrl;
546	if(isset($theChampCounterOptions['use_shortlinks']) && function_exists('wp_get_shortlink')){
547	$counterUrl = wp_get_shortlink();
	@@ -589,7 +589,7 @@ function the_champ_render_sharing($content){
589	$postUrl = html_entity_decode(esc_url(the_champ_get_http().$_SERVER["HTTP_HOST"] . $_SERVER["REQUEST_URI"]));
590	}
591	}elseif($theChampSharingOptions['horizontal_target_url'] == 'home'){
592	- $postUrl = home_url();
593	$postId = 0;
594	}elseif($theChampSharingOptions['horizontal_target_url'] == 'custom'){
595	$postUrl = isset($theChampSharingOptions['horizontal_target_url_custom']) ? trim($theChampSharingOptions['horizontal_target_url_custom']) : get_permalink($post->ID);
	@@ -668,7 +668,7 @@ function the_champ_render_sharing($content){
668	$postUrl = html_entity_decode(esc_url(the_champ_get_http().$_SERVER["HTTP_HOST"] . $_SERVER["REQUEST_URI"]));
669	}
670	}elseif($theChampSharingOptions['vertical_target_url'] == 'home'){
671	- $postUrl = home_url();
672	$postId = 0;
673	}elseif($theChampSharingOptions['vertical_target_url'] == 'custom'){
674	$postUrl = isset($theChampSharingOptions['vertical_target_url_custom']) ? trim($theChampSharingOptions['vertical_target_url_custom']) : get_permalink($post->ID);
	@@ -707,7 +707,7 @@ function the_champ_render_sharing($content){
707	}
708	if($$var == 0){
709	if(isset($theChampSharingOptions['vertical_target_url']) && $theChampSharingOptions['vertical_target_url'] == 'default'){
710	- $postUrl = home_url();
711	$sharingUrl = $postUrl;
712	if(isset($theChampSharingOptions['use_shortlinks']) && function_exists('wp_get_shortlink')){
713	$sharingUrl = wp_get_shortlink();


425	$counterPostUrl = html_entity_decode(esc_url(the_champ_get_http().$_SERVER["HTTP_HOST"] . $_SERVER["REQUEST_URI"]));
426	}
427	}elseif($theChampCounterOptions['horizontal_target_url'] == 'home'){
428	+ $counterPostUrl = esc_url(home_url());
429	$postId = 0;
430	}elseif($theChampCounterOptions['horizontal_target_url'] == 'custom'){
431	$counterPostUrl = isset($theChampCounterOptions['horizontal_target_url_custom']) ? trim($theChampCounterOptions['horizontal_target_url_custom']) : get_permalink($post->ID);

457	$sharingTitleStyle = 'style="font-weight: bold;list-style: none;position: relative;left: 50%;"';
458	}
459	}
460	+ $horizontalDiv = "<div style='clear: both'></div><div ". $sharingContainerStyle ." class='the_champ_counter_container the_champ_horizontal_counter'><div class='the_champ_counter_title' ". $sharingTitleStyle .">".ucfirst($theChampCounterOptions['title'])."</div>".$sharingDiv."</div><div style='clear: both'></div>";
461	if($counterBpActivity){
462	echo $horizontalDiv;
463	}

503	$counterPostUrl = html_entity_decode(esc_url(the_champ_get_http().$_SERVER["HTTP_HOST"] . $_SERVER["REQUEST_URI"]));
504	}
505	}elseif($theChampCounterOptions['vertical_target_url'] == 'home'){
506	+ $counterPostUrl = esc_url(home_url());
507	$postId = 0;
508	}elseif($theChampCounterOptions['vertical_target_url'] == 'custom'){
509	$counterPostUrl = isset($theChampCounterOptions['vertical_target_url_custom']) ? trim($theChampCounterOptions['vertical_target_url_custom']) : get_permalink($post->ID);

541	}
542	if($$var == 0){
543	if(isset($theChampCounterOptions['vertical_target_url']) && $theChampCounterOptions['vertical_target_url'] == 'default'){
544	+ $counterPostUrl = esc_url(home_url());
545	$counterUrl = $counterPostUrl;
546	if(isset($theChampCounterOptions['use_shortlinks']) && function_exists('wp_get_shortlink')){
547	$counterUrl = wp_get_shortlink();

589	$postUrl = html_entity_decode(esc_url(the_champ_get_http().$_SERVER["HTTP_HOST"] . $_SERVER["REQUEST_URI"]));
590	}
591	}elseif($theChampSharingOptions['horizontal_target_url'] == 'home'){
592	+ $postUrl = esc_url(home_url());
593	$postId = 0;
594	}elseif($theChampSharingOptions['horizontal_target_url'] == 'custom'){
595	$postUrl = isset($theChampSharingOptions['horizontal_target_url_custom']) ? trim($theChampSharingOptions['horizontal_target_url_custom']) : get_permalink($post->ID);

668	$postUrl = html_entity_decode(esc_url(the_champ_get_http().$_SERVER["HTTP_HOST"] . $_SERVER["REQUEST_URI"]));
669	}
670	}elseif($theChampSharingOptions['vertical_target_url'] == 'home'){
671	+ $postUrl = esc_url(home_url());
672	$postId = 0;
673	}elseif($theChampSharingOptions['vertical_target_url'] == 'custom'){
674	$postUrl = isset($theChampSharingOptions['vertical_target_url_custom']) ? trim($theChampSharingOptions['vertical_target_url_custom']) : get_permalink($post->ID);

707	}
708	if($$var == 0){
709	if(isset($theChampSharingOptions['vertical_target_url']) && $theChampSharingOptions['vertical_target_url'] == 'default'){
710	+ $postUrl = esc_url(home_url());
711	$sharingUrl = $postUrl;
712	if(isset($theChampSharingOptions['use_shortlinks']) && function_exists('wp_get_shortlink')){
713	$sharingUrl = wp_get_shortlink();

inc/widget.php CHANGED Viewed

	@@ -40,7 +40,7 @@ class TheChampLoginWidget extends WP_Widget {
40	echo "</div><div style='float:left; margin-left:10px'>";
41	echo str_replace('-', ' ', $userInfo -> user_login);
42	do_action('the_champ_login_widget_hook', $userInfo -> user_login);
43	- echo '<br/><a href="' . wp_logout_url(home_url()) . '">' .__('Log Out', 'Super-Socializer') . '</a></div></div>';
44	}
45	echo '<div style="clear:both"></div>';
46	if( !empty( $instance['after_widget_content'] ) ){
	@@ -123,7 +123,7 @@ class TheChampSharingWidget extends WP_Widget {
123	}elseif(isset($instance['target_url'])){
124	if($instance['target_url'] == 'default'){
125	if(is_home()){
126	- $sharingUrl = home_url();
127	$postId = 0;
128	}elseif(isset($_SERVER['QUERY_STRING']) && $_SERVER['QUERY_STRING']){
129	$sharingUrl = html_entity_decode(esc_url(the_champ_get_http().$_SERVER["HTTP_HOST"] . $_SERVER["REQUEST_URI"]));
	@@ -133,7 +133,7 @@ class TheChampSharingWidget extends WP_Widget {
133	$sharingUrl = html_entity_decode(esc_url(the_champ_get_http().$_SERVER["HTTP_HOST"] . $_SERVER["REQUEST_URI"]));
134	}
135	}elseif($instance['target_url'] == 'homepage'){
136	- $sharingUrl = home_url();
137	$postId = 0;
138	}elseif($instance['target_url'] == 'custom'){
139	$sharingUrl = isset($instance['target_url_custom']) ? trim($instance['target_url_custom']) : get_permalink($post->ID);
	@@ -285,7 +285,7 @@ class TheChampVerticalSharingWidget extends WP_Widget {
285	}elseif(isset($instance['target_url'])){
286	if($instance['target_url'] == 'default'){
287	if(is_home()){
288	- $sharingUrl = home_url();
289	$postId = 0;
290	}elseif(isset($_SERVER['QUERY_STRING']) && $_SERVER['QUERY_STRING']){
291	$sharingUrl = html_entity_decode(esc_url(the_champ_get_http().$_SERVER["HTTP_HOST"] . $_SERVER["REQUEST_URI"]));
	@@ -295,7 +295,7 @@ class TheChampVerticalSharingWidget extends WP_Widget {
295	$sharingUrl = html_entity_decode(esc_url(the_champ_get_http().$_SERVER["HTTP_HOST"] . $_SERVER["REQUEST_URI"]));
296	}
297	}elseif($instance['target_url'] == 'homepage'){
298	- $sharingUrl = home_url();
299	$postId = 0;
300	}elseif($instance['target_url'] == 'custom'){
301	$sharingUrl = isset($instance['target_url_custom']) ? trim($instance['target_url_custom']) : get_permalink($post->ID);
	@@ -462,7 +462,7 @@ class TheChampCounterWidget extends WP_Widget {
462	}elseif(isset($instance['target_url'])){
463	if($instance['target_url'] == 'default'){
464	if(is_home()){
465	- $counterUrl = home_url();
466	$postId = 0;
467	}elseif(isset($_SERVER['QUERY_STRING']) && $_SERVER['QUERY_STRING']){
468	$counterUrl = html_entity_decode(esc_url(the_champ_get_http().$_SERVER["HTTP_HOST"] . $_SERVER["REQUEST_URI"]));
	@@ -472,7 +472,7 @@ class TheChampCounterWidget extends WP_Widget {
472	$counterUrl = html_entity_decode(esc_url(the_champ_get_http().$_SERVER["HTTP_HOST"] . $_SERVER["REQUEST_URI"]));
473	}
474	}elseif($instance['target_url'] == 'homepage'){
475	- $counterUrl = home_url();
476	$postId = 0;
477	}elseif($instance['target_url'] == 'custom'){
478	$counterUrl = isset($instance['target_url_custom']) ? trim($instance['target_url_custom']) : get_permalink($post->ID);
	@@ -606,7 +606,7 @@ class TheChampVerticalCounterWidget extends WP_Widget {
606	}elseif(isset($instance['target_url'])){
607	if($instance['target_url'] == 'default'){
608	if(is_home()){
609	- $counterUrl = home_url();
610	$postId = 0;
611	}elseif(isset($_SERVER['QUERY_STRING']) && $_SERVER['QUERY_STRING']){
612	$counterUrl = html_entity_decode(esc_url(the_champ_get_http().$_SERVER["HTTP_HOST"] . $_SERVER["REQUEST_URI"]));
	@@ -616,7 +616,7 @@ class TheChampVerticalCounterWidget extends WP_Widget {
616	$counterUrl = html_entity_decode(esc_url(the_champ_get_http().$_SERVER["HTTP_HOST"] . $_SERVER["REQUEST_URI"]));
617	}
618	}elseif($instance['target_url'] == 'homepage'){
619	- $counterUrl = home_url();
620	$postId = 0;
621	}elseif($instance['target_url'] == 'custom'){
622	$counterUrl = isset($instance['target_url_custom']) ? trim($instance['target_url_custom']) : get_permalink($post->ID);


40	echo "</div><div style='float:left; margin-left:10px'>";
41	echo str_replace('-', ' ', $userInfo -> user_login);
42	do_action('the_champ_login_widget_hook', $userInfo -> user_login);
43	+ echo '<br/><a href="' . wp_logout_url(esc_url(home_url())) . '">' .__('Log Out', 'Super-Socializer') . '</a></div></div>';
44	}
45	echo '<div style="clear:both"></div>';
46	if( !empty( $instance['after_widget_content'] ) ){

123	}elseif(isset($instance['target_url'])){
124	if($instance['target_url'] == 'default'){
125	if(is_home()){
126	+ $sharingUrl = esc_url(home_url());
127	$postId = 0;
128	}elseif(isset($_SERVER['QUERY_STRING']) && $_SERVER['QUERY_STRING']){
129	$sharingUrl = html_entity_decode(esc_url(the_champ_get_http().$_SERVER["HTTP_HOST"] . $_SERVER["REQUEST_URI"]));

133	$sharingUrl = html_entity_decode(esc_url(the_champ_get_http().$_SERVER["HTTP_HOST"] . $_SERVER["REQUEST_URI"]));
134	}
135	}elseif($instance['target_url'] == 'homepage'){
136	+ $sharingUrl = esc_url(home_url());
137	$postId = 0;
138	}elseif($instance['target_url'] == 'custom'){
139	$sharingUrl = isset($instance['target_url_custom']) ? trim($instance['target_url_custom']) : get_permalink($post->ID);

285	}elseif(isset($instance['target_url'])){
286	if($instance['target_url'] == 'default'){
287	if(is_home()){
288	+ $sharingUrl = esc_url(home_url());
289	$postId = 0;
290	}elseif(isset($_SERVER['QUERY_STRING']) && $_SERVER['QUERY_STRING']){
291	$sharingUrl = html_entity_decode(esc_url(the_champ_get_http().$_SERVER["HTTP_HOST"] . $_SERVER["REQUEST_URI"]));

295	$sharingUrl = html_entity_decode(esc_url(the_champ_get_http().$_SERVER["HTTP_HOST"] . $_SERVER["REQUEST_URI"]));
296	}
297	}elseif($instance['target_url'] == 'homepage'){
298	+ $sharingUrl = esc_url(home_url());
299	$postId = 0;
300	}elseif($instance['target_url'] == 'custom'){
301	$sharingUrl = isset($instance['target_url_custom']) ? trim($instance['target_url_custom']) : get_permalink($post->ID);

462	}elseif(isset($instance['target_url'])){
463	if($instance['target_url'] == 'default'){
464	if(is_home()){
465	+ $counterUrl = esc_url(home_url());
466	$postId = 0;
467	}elseif(isset($_SERVER['QUERY_STRING']) && $_SERVER['QUERY_STRING']){
468	$counterUrl = html_entity_decode(esc_url(the_champ_get_http().$_SERVER["HTTP_HOST"] . $_SERVER["REQUEST_URI"]));

472	$counterUrl = html_entity_decode(esc_url(the_champ_get_http().$_SERVER["HTTP_HOST"] . $_SERVER["REQUEST_URI"]));
473	}
474	}elseif($instance['target_url'] == 'homepage'){
475	+ $counterUrl = esc_url(home_url());
476	$postId = 0;
477	}elseif($instance['target_url'] == 'custom'){
478	$counterUrl = isset($instance['target_url_custom']) ? trim($instance['target_url_custom']) : get_permalink($post->ID);

606	}elseif(isset($instance['target_url'])){
607	if($instance['target_url'] == 'default'){
608	if(is_home()){
609	+ $counterUrl = esc_url(home_url());
610	$postId = 0;
611	}elseif(isset($_SERVER['QUERY_STRING']) && $_SERVER['QUERY_STRING']){
612	$counterUrl = html_entity_decode(esc_url(the_champ_get_http().$_SERVER["HTTP_HOST"] . $_SERVER["REQUEST_URI"]));

616	$counterUrl = html_entity_decode(esc_url(the_champ_get_http().$_SERVER["HTTP_HOST"] . $_SERVER["REQUEST_URI"]));
617	}
618	}elseif($instance['target_url'] == 'homepage'){
619	+ $counterUrl = esc_url(home_url());
620	$postId = 0;
621	}elseif($instance['target_url'] == 'custom'){
622	$counterUrl = isset($instance['target_url_custom']) ? trim($instance['target_url_custom']) : get_permalink($post->ID);

readme.txt CHANGED Viewed

	@@ -3,8 +3,8 @@ Contributors: Heateor, the_champ, Hungarian Translator: László Tavaszi http://
3	Donate link: https://www.heateor.com/donate?action=Super+Socializer
4	Tags: the champ, champ, social login, social sharing, social commenting, social comments, social plugin, buddypress, bbpress, social share, comments, share post, user profile data, social analytics, online identity, social profile storage, id provider, single sign-on, social media tools, free social login, post to social networks, social authentication, social app, connect, capture social data, social sign-in, signin, sign up, signup, social connect, facebook login, twitter login, google login, google+ login, linkedin login, yahoo, vkontakte, instagram, reddit, digg, stumbleupon, delicious, float it, tumblr, social network
5	Requires at least: 2.5.0
6	- Tested up to: 4.7
7	- Stable tag: 7.8.9
8	License: GPLv2 or later
9
10	The unique Social Plugin to let you integrate Social Login, Social Share and Social Comments at your website
	@@ -204,6 +204,10 @@ Yes, we can help you with it. Just drop an email at support@heateor.com
204	8. Social Commenting: Disqus Commenting selected
205
206	== Changelog ==




207	= 7.8.9 =
208	* [Bugfix] Google Login was capturing the profile data of first account if they were logged into multiple Google accounts
209	* [Improvement] Compatibility improvement with <a href="https://www.heateor.com/social-login-mycred-integration/" target="_blank">Social Login myCRED Integration</a> add-on
	@@ -1112,4 +1116,8 @@ Yes, we can help you with it. Just drop an email at support@heateor.com
1112
1113	= 7.8.9 =
1114	* [Bugfix] Google Login was capturing the profile data of first account if they were logged into multiple Google accounts
1115	- * [Improvement] Compatibility improvement with <a href="https://www.heateor.com/social-login-mycred-integration/" target="_blank">Social Login myCRED Integration</a> add-on


3	Donate link: https://www.heateor.com/donate?action=Super+Socializer
4	Tags: the champ, champ, social login, social sharing, social commenting, social comments, social plugin, buddypress, bbpress, social share, comments, share post, user profile data, social analytics, online identity, social profile storage, id provider, single sign-on, social media tools, free social login, post to social networks, social authentication, social app, connect, capture social data, social sign-in, signin, sign up, signup, social connect, facebook login, twitter login, google login, google+ login, linkedin login, yahoo, vkontakte, instagram, reddit, digg, stumbleupon, delicious, float it, tumblr, social network
5	Requires at least: 2.5.0
6	+ Tested up to: 4.7.1
7	+ Stable tag: 7.8.10
8	License: GPLv2 or later
9
10	The unique Social Plugin to let you integrate Social Login, Social Share and Social Comments at your website

204	8. Social Commenting: Disqus Commenting selected
205
206	== Changelog ==
207	+ = 7.8.10 =
208	+ * [Bugfix] Fixed XSS vulnerability
209	+ * [Improvement] Using class names 'the_champ_sharing_title' and 'the_champ_social_login_title' for title text of Social Sharing and Social Login shortcodes
210	+
211	= 7.8.9 =
212	* [Bugfix] Google Login was capturing the profile data of first account if they were logged into multiple Google accounts
213	* [Improvement] Compatibility improvement with <a href="https://www.heateor.com/social-login-mycred-integration/" target="_blank">Social Login myCRED Integration</a> add-on

1116
1117	= 7.8.9 =
1118	* [Bugfix] Google Login was capturing the profile data of first account if they were logged into multiple Google accounts
1119	+ * [Improvement] Compatibility improvement with <a href="https://www.heateor.com/social-login-mycred-integration/" target="_blank">Social Login myCRED Integration</a> add-on
1120	+
1121	+ = 7.8.10 =
1122	+ * [Bugfix] Fixed XSS vulnerability
1123	+ * [Improvement] Using class names 'the_champ_sharing_title' and 'the_champ_social_login_title' for title text of Social Sharing and Social Login shortcodes

super_socializer.php CHANGED Viewed

	@@ -3,7 +3,7 @@
3	Plugin Name: Super Socializer
4	Plugin URI: http://super-socializer-wordpress.heateor.com
5	Description: A complete 360 degree solution to provide all the social features like Social Login, Social Commenting, Social Sharing and more.
6	- Version: 7.8.9
7	Author: Team Heateor
8	Author URI: https://www.heateor.com
9	Text Domain: Super-Socializer
	@@ -11,7 +11,7 @@ Domain Path: /languages
11	License: GPL2+
12	*/
13	defined('ABSPATH') or die("Cheating........Uh!!");
14	- define('THE_CHAMP_SS_VERSION', '7.8.9');
15
16	require 'helper.php';
17
	@@ -123,7 +123,7 @@ function the_champ_connect(){
123	$users = get_users('meta_key=thechamp_key&meta_value='.$verificationKey);
124	if(count($users) > 0 && isset($users[0] -> ID)){
125	delete_user_meta($users[0] -> ID, 'thechamp_key');
126	- wp_redirect(home_url().'?SuperSocializerVerified=1');
127	die;
128	}
129	}
	@@ -208,7 +208,7 @@ function the_champ_connect(){
208	Twitch.api({method: 'user'}, function(error, user) {
209	if(user._id && user._id != null){
210	window.opener.theChampAjaxUserAuth(user, 'twitch');
211	- window.opener.location.href = '<?php echo home_url() ?>?SuperSocializerAuth=Twitch&super_socializer_redirect_to='+window.opener.theChampTwitterRedirect+'&SuperSocializerData=' + encodeURIComponent(theChampSerialize(user));
212	window.close();
213	}
214	});
	@@ -260,7 +260,7 @@ function the_champ_connect(){
260	$xingClient->debug = 0;
261	$xingClient->debug_http = 1;
262	$xingClient->server = 'XING';
263	- $xingClient->redirect_uri = home_url() . '/index.php?SuperSocializerAuth=Xing&super_socializer_redirect_to=' . esc_attr(str_replace(array('http://', 'https://'), '', urldecode($_GET['super_socializer_redirect_to'])));
264	$xingClient->client_id = $theChampLoginOptions['xing_ck'];
265	$xingClient->client_secret = $theChampLoginOptions['xing_cs'];
266	if(($success = $xingClient->Initialize())){
	@@ -312,7 +312,7 @@ function the_champ_connect(){
312	/* Build TwitterOAuth object with client credentials. */
313	$connection = new TwitterOAuth($theChampLoginOptions['twitter_key'], $theChampLoginOptions['twitter_secret']);
314	/* Get temporary credentials. */
315	- $requestToken = $connection->getRequestToken(home_url().'/index.php');
316	if($connection->http_code == 200){
317	// generate unique ID
318	$uniqueId = mt_rand();
	@@ -329,7 +329,7 @@ function the_champ_connect(){
329	<div style="width: 500px; margin: 0 auto">
330	<ol>
331	<li><?php echo sprintf(__('Enter exactly the following url in <strong>Website</strong> and <strong>Callback Url</strong> options in your Twitter app (see step 3 %s)', 'Super-Socializer'), '<a target="_blank" href="http://support.heateor.com/how-to-get-twitter-api-key-and-secret/">here</a>') ?><br/>
332	- <?php echo home_url() ?>
333	</li>
334	<li><?php _e('Make sure cURL is enabled at your website server. You may need to contact the server administrator of your website to verify this', 'Super-Socializer') ?></li>
335	<li><?php echo sprintf(__('Make sure that "Enable Callback Locking" option is disabled. See step 4 %s', 'Super-Socializer'), '<a target="_blank" href="http://support.heateor.com/how-to-get-twitter-api-key-and-secret">here</a>') ?></li>
	@@ -349,7 +349,7 @@ function the_champ_connect(){
349	$twitterRedirectUrl = get_user_meta($uniqueId, 'thechamp_twitter_redirect', true);
350	if(empty($uniqueId) \|\| $oauthTokenSecret == ''){
351	// invalid request
352	- wp_redirect(home_url());
353	die;
354	}
355	$connection = new TwitterOAuth($theChampLoginOptions['twitter_key'], $theChampLoginOptions['twitter_secret'], $_REQUEST['oauth_token'], $oauthTokenSecret);
	@@ -419,17 +419,17 @@ function the_champ_get_http(){
419	function the_champ_get_valid_url($url){
420	$url = urldecode($url);
421	if(html_entity_decode(esc_url(remove_query_arg(array('ss_message', 'SuperSocializerVerified', 'SuperSocializerUnverified'), $url))) == wp_login_url() \|\| $url == home_url().'/wp-login.php?action=register' \|\| $url == home_url().'/wp-login.php?loggedout=true'){
422	- $url = home_url().'/';
423	}elseif(isset($_GET['redirect_to'])){
424	if(urldecode($_GET['redirect_to']) == admin_url()){
425	- $url = home_url().'/';
426	}elseif(the_champ_validate_url(urldecode($_GET['redirect_to'])) && (strpos(urldecode($_GET['redirect_to']), 'http://') !== false \|\| strpos(urldecode($_GET['redirect_to']), 'https://') !== false)){
427	- $url = ~~esc_attr(~~$_GET['redirect_to']);
428	}else{
429	- $url = home_url().'/';
430	}
431	}
432	- return $url;
433	}
434
435	/**
	@@ -452,7 +452,7 @@ function the_champ_get_login_redirection_url($twitterRedirect = '', $register =
452	}
453	return the_champ_get_valid_url($url);
454	}elseif($theChampLoginOptions[$option.'_redirection'] == 'homepage'){
455	- return home_url();
456	}elseif($theChampLoginOptions[$option.'_redirection'] == 'account'){
457	return admin_url();
458	}elseif($theChampLoginOptions[$option.'_redirection'] == 'custom' && $theChampLoginOptions[$option.'_redirection_url'] != ''){
	@@ -460,10 +460,10 @@ function the_champ_get_login_redirection_url($twitterRedirect = '', $register =
460	}elseif($theChampLoginOptions[$option.'_redirection'] == 'bp_profile' && $user_ID != 0){
461	return function_exists('bp_core_get_user_domain') ? bp_core_get_user_domain($user_ID) : admin_url();
462	}else{
463	- return home_url();
464	}
465	}else{
466	- return home_url();
467	}
468	}
469
	@@ -477,7 +477,7 @@ function the_champ_frontend_scripts(){
477	if(!$combinedScript){
478	wp_enqueue_script('the_champ_ss_general_scripts', plugins_url('js/front/social_login/general.js', __FILE__), false, THE_CHAMP_SS_VERSION, $inFooter);
479	}
480	- $websiteUrl = home_url();
481	$fbKey = isset($theChampLoginOptions["fb_key"]) && $theChampLoginOptions["fb_key"] != "" ? $theChampLoginOptions["fb_key"] : "";
482	$userVerified = false;
483	$emailPopup = false;
	@@ -532,7 +532,7 @@ function the_champ_frontend_scripts(){
532	global $theChampSteamLogin;
533	$twitterRedirect = urlencode(the_champ_get_valid_url(html_entity_decode(esc_url(the_champ_get_http().$_SERVER["HTTP_HOST"] . $_SERVER["REQUEST_URI"]))));
534	?>
535	- <script> var theChampFacebookScope = 'public_profile,email', theChampFBKey = '<?php echo $fbKey ?>', theChampVerified = <?php echo intval($userVerified) ?>; var theChampAjaxUrl = '<?php echo html_entity_decode(admin_url().$ajaxUrl) ?>'; var theChampPopupTitle = '<?php echo $notification; ?>'; var theChampEmailPopup = <?php echo intval($emailPopup); ?>; var theChampEmailAjaxUrl = '<?php echo html_entity_decode(admin_url().$emailAjaxUrl); ?>'; var theChampEmailPopupTitle = '<?php echo $emailPopupTitle; ?>'; var theChampEmailPopupErrorMsg = '<?php echo htmlspecialchars($emailPopupErrorMessage, ENT_QUOTES); ?>'; var theChampEmailPopupUniqueId = '<?php echo $emailPopupUniqueId; ?>'; var theChampEmailPopupVerifyMessage = '<?php echo $emailPopupVerifyMessage; ?>'; var theChampSteamAuthUrl = "<?php echo $theChampSteamLogin ? $theChampSteamLogin->url( home_url() . '?SuperSocializerSteamAuth=' . $twitterRedirect ) : ''; ?>"; var theChampTwitterRedirect = '<?php echo $twitterRedirect ?>'; <?php echo isset($theChampLoginOptions['disable_reg']) && isset($theChampLoginOptions['disable_reg_redirect']) && $theChampLoginOptions['disable_reg_redirect'] != '' ? 'var theChampDisableRegRedirect = "' . html_entity_decode(esc_url($theChampLoginOptions['disable_reg_redirect'])) . '";' : '' ?> </script>
536	<?php
537	if(!$combinedScript){
538	wp_enqueue_script('the_champ_sl_common', plugins_url('js/front/social_login/common.js', __FILE__), array('jquery'), THE_CHAMP_SS_VERSION, $inFooter);


3	Plugin Name: Super Socializer
4	Plugin URI: http://super-socializer-wordpress.heateor.com
5	Description: A complete 360 degree solution to provide all the social features like Social Login, Social Commenting, Social Sharing and more.
6	+ Version: 7.8.10
7	Author: Team Heateor
8	Author URI: https://www.heateor.com
9	Text Domain: Super-Socializer

11	License: GPL2+
12	*/
13	defined('ABSPATH') or die("Cheating........Uh!!");
14	+ define('THE_CHAMP_SS_VERSION', '7.8.10');
15
16	require 'helper.php';
17

123	$users = get_users('meta_key=thechamp_key&meta_value='.$verificationKey);
124	if(count($users) > 0 && isset($users[0] -> ID)){
125	delete_user_meta($users[0] -> ID, 'thechamp_key');
126	+ wp_redirect(esc_url(home_url()).'?SuperSocializerVerified=1');
127	die;
128	}
129	}

208	Twitch.api({method: 'user'}, function(error, user) {
209	if(user._id && user._id != null){
210	window.opener.theChampAjaxUserAuth(user, 'twitch');
211	+ window.opener.location.href = '<?php echo esc_url(home_url()) ?>?SuperSocializerAuth=Twitch&super_socializer_redirect_to='+window.opener.theChampTwitterRedirect+'&SuperSocializerData=' + encodeURIComponent(theChampSerialize(user));
212	window.close();
213	}
214	});

260	$xingClient->debug = 0;
261	$xingClient->debug_http = 1;
262	$xingClient->server = 'XING';
263	+ $xingClient->redirect_uri = esc_url(home_url()) . '/index.php?SuperSocializerAuth=Xing&super_socializer_redirect_to=' . esc_attr(str_replace(array('http://', 'https://'), '', urldecode($_GET['super_socializer_redirect_to'])));
264	$xingClient->client_id = $theChampLoginOptions['xing_ck'];
265	$xingClient->client_secret = $theChampLoginOptions['xing_cs'];
266	if(($success = $xingClient->Initialize())){

312	/* Build TwitterOAuth object with client credentials. */
313	$connection = new TwitterOAuth($theChampLoginOptions['twitter_key'], $theChampLoginOptions['twitter_secret']);
314	/* Get temporary credentials. */
315	+ $requestToken = $connection->getRequestToken(esc_url(home_url()).'/index.php');
316	if($connection->http_code == 200){
317	// generate unique ID
318	$uniqueId = mt_rand();

329	<div style="width: 500px; margin: 0 auto">
330	<ol>
331	<li><?php echo sprintf(__('Enter exactly the following url in <strong>Website</strong> and <strong>Callback Url</strong> options in your Twitter app (see step 3 %s)', 'Super-Socializer'), '<a target="_blank" href="http://support.heateor.com/how-to-get-twitter-api-key-and-secret/">here</a>') ?><br/>
332	+ <?php echo esc_url(home_url()) ?>
333	</li>
334	<li><?php _e('Make sure cURL is enabled at your website server. You may need to contact the server administrator of your website to verify this', 'Super-Socializer') ?></li>
335	<li><?php echo sprintf(__('Make sure that "Enable Callback Locking" option is disabled. See step 4 %s', 'Super-Socializer'), '<a target="_blank" href="http://support.heateor.com/how-to-get-twitter-api-key-and-secret">here</a>') ?></li>

349	$twitterRedirectUrl = get_user_meta($uniqueId, 'thechamp_twitter_redirect', true);
350	if(empty($uniqueId) \|\| $oauthTokenSecret == ''){
351	// invalid request
352	+ wp_redirect(esc_url(home_url()));
353	die;
354	}
355	$connection = new TwitterOAuth($theChampLoginOptions['twitter_key'], $theChampLoginOptions['twitter_secret'], $_REQUEST['oauth_token'], $oauthTokenSecret);

419	function the_champ_get_valid_url($url){
420	$url = urldecode($url);
421	if(html_entity_decode(esc_url(remove_query_arg(array('ss_message', 'SuperSocializerVerified', 'SuperSocializerUnverified'), $url))) == wp_login_url() \|\| $url == home_url().'/wp-login.php?action=register' \|\| $url == home_url().'/wp-login.php?loggedout=true'){
422	+ $url = esc_url(home_url()).'/';
423	}elseif(isset($_GET['redirect_to'])){
424	if(urldecode($_GET['redirect_to']) == admin_url()){
425	+ $url = esc_url(home_url()).'/';
426	}elseif(the_champ_validate_url(urldecode($_GET['redirect_to'])) && (strpos(urldecode($_GET['redirect_to']), 'http://') !== false \|\| strpos(urldecode($_GET['redirect_to']), 'https://') !== false)){
427	+ $url = $_GET['redirect_to'];
428	}else{
429	+ $url = esc_url(home_url()).'/';
430	}
431	}
432	+ return str_replace(array("&","#038;","&"), "&", esc_url($url));
433	}
434
435	/**

452	}
453	return the_champ_get_valid_url($url);
454	}elseif($theChampLoginOptions[$option.'_redirection'] == 'homepage'){
455	+ return esc_url(home_url());
456	}elseif($theChampLoginOptions[$option.'_redirection'] == 'account'){
457	return admin_url();
458	}elseif($theChampLoginOptions[$option.'_redirection'] == 'custom' && $theChampLoginOptions[$option.'_redirection_url'] != ''){

460	}elseif($theChampLoginOptions[$option.'_redirection'] == 'bp_profile' && $user_ID != 0){
461	return function_exists('bp_core_get_user_domain') ? bp_core_get_user_domain($user_ID) : admin_url();
462	}else{
463	+ return esc_url(home_url());
464	}
465	}else{
466	+ return esc_url(home_url());
467	}
468	}
469

477	if(!$combinedScript){
478	wp_enqueue_script('the_champ_ss_general_scripts', plugins_url('js/front/social_login/general.js', __FILE__), false, THE_CHAMP_SS_VERSION, $inFooter);
479	}
480	+ $websiteUrl = esc_url(home_url());
481	$fbKey = isset($theChampLoginOptions["fb_key"]) && $theChampLoginOptions["fb_key"] != "" ? $theChampLoginOptions["fb_key"] : "";
482	$userVerified = false;
483	$emailPopup = false;

532	global $theChampSteamLogin;
533	$twitterRedirect = urlencode(the_champ_get_valid_url(html_entity_decode(esc_url(the_champ_get_http().$_SERVER["HTTP_HOST"] . $_SERVER["REQUEST_URI"]))));
534	?>
535	+ <script> var theChampFacebookScope = 'public_profile,email', theChampFBKey = '<?php echo $fbKey ?>', theChampVerified = <?php echo intval($userVerified) ?>; var theChampAjaxUrl = '<?php echo html_entity_decode(admin_url().$ajaxUrl) ?>'; var theChampPopupTitle = '<?php echo $notification; ?>'; var theChampEmailPopup = <?php echo intval($emailPopup); ?>; var theChampEmailAjaxUrl = '<?php echo html_entity_decode(admin_url().$emailAjaxUrl); ?>'; var theChampEmailPopupTitle = '<?php echo $emailPopupTitle; ?>'; var theChampEmailPopupErrorMsg = '<?php echo htmlspecialchars($emailPopupErrorMessage, ENT_QUOTES); ?>'; var theChampEmailPopupUniqueId = '<?php echo $emailPopupUniqueId; ?>'; var theChampEmailPopupVerifyMessage = '<?php echo $emailPopupVerifyMessage; ?>'; var theChampSteamAuthUrl = "<?php echo $theChampSteamLogin ? $theChampSteamLogin->url( esc_url(home_url()) . '?SuperSocializerSteamAuth=' . $twitterRedirect ) : ''; ?>"; var theChampTwitterRedirect = '<?php echo $twitterRedirect ?>'; <?php echo isset($theChampLoginOptions['disable_reg']) && isset($theChampLoginOptions['disable_reg_redirect']) && $theChampLoginOptions['disable_reg_redirect'] != '' ? 'var theChampDisableRegRedirect = "' . html_entity_decode(esc_url($theChampLoginOptions['disable_reg_redirect'])) . '";' : '' ?> </script>
536	<?php
537	if(!$combinedScript){
538	wp_enqueue_script('the_champ_sl_common', plugins_url('js/front/social_login/common.js', __FILE__), array('jquery'), THE_CHAMP_SS_VERSION, $inFooter);

WordPress Social Share, Social Login and Social Comments Plugin – Super Socializer - Version 7.8.10

Version Description

Release Info

Code changes from version 7.8.9 to 7.8.10