Version Description
Download this release
Release Info
| Developer | michelem |
| Plugin |  WassUp Real Time Analytics |
| Version | 1.8.3.1 |
| Comparing to | |
| See all releases | |
Code changes from version 1.8.3 to 1.8.3.1
- readme.txt +6 -2
- wassup.php +5 -5
readme.txt
CHANGED
|
@@ -1,10 +1,10 @@
|
|
| 1 |
-
=== WassUp ===
|
| 2 |
Contributors: michelem, helened
|
| 3 |
Donate link: https://www.paypal.com/cgi-bin/webscr?cmd=_xclick&business=michele%40befree%2eit&item_name=WassUp&no_shipping=0&no_note=1&tax=0¤cy_code=EUR&lc=IT&bn=PP%2dDonationsBF&charset=UTF%2d8
|
| 4 |
Tags: tracker, tracking, statistics, analyze, web, realtime, stats, ajax, visitors, visits, online users, details, seo, admin, spy, visitors, widgets, widget, sidebar, monitor, stalker, detector, webmaster, tool, geolocation, chart, google!charts, spammers, exploits, injection, security, useragent, browser, spider, detection, pageviews
|
| 5 |
Requires at least: 2.2
|
| 6 |
Tested up to: 3.2.1
|
| 7 |
-
Stable tag: 1.8.3
|
| 8 |
|
| 9 |
Analyze your visitors traffic with real-time statistics, a lot of chronological information, charts, a sidebar widget.
|
| 10 |
|
|
@@ -144,6 +144,10 @@ IMPORTANT: WassUp is incompatible with page-based caching plugins such as "WP Su
|
|
| 144 |
|
| 145 |
== Changelog ==
|
| 146 |
|
|
|
|
|
|
|
|
|
|
|
|
|
| 147 |
= 1.8.3 =
|
| 148 |
= Urgent bugfix, compatibility, and feature improvement upgrade =
|
| 149 |
* fixed typo that caused a php "foreach" error in v.1.8.2.
|
| 1 |
+
=== WassUp Real Time Analytics ===
|
| 2 |
Contributors: michelem, helened
|
| 3 |
Donate link: https://www.paypal.com/cgi-bin/webscr?cmd=_xclick&business=michele%40befree%2eit&item_name=WassUp&no_shipping=0&no_note=1&tax=0¤cy_code=EUR&lc=IT&bn=PP%2dDonationsBF&charset=UTF%2d8
|
| 4 |
Tags: tracker, tracking, statistics, analyze, web, realtime, stats, ajax, visitors, visits, online users, details, seo, admin, spy, visitors, widgets, widget, sidebar, monitor, stalker, detector, webmaster, tool, geolocation, chart, google!charts, spammers, exploits, injection, security, useragent, browser, spider, detection, pageviews
|
| 5 |
Requires at least: 2.2
|
| 6 |
Tested up to: 3.2.1
|
| 7 |
+
Stable tag: 1.8.3.1
|
| 8 |
|
| 9 |
Analyze your visitors traffic with real-time statistics, a lot of chronological information, charts, a sidebar widget.
|
| 10 |
|
| 144 |
|
| 145 |
== Changelog ==
|
| 146 |
|
| 147 |
+
= 1.8.3.1 =
|
| 148 |
+
= Urgent bugfix =
|
| 149 |
+
* fixed security issue: Change the UserAgent of the browser to include html tags, and by accessing a WordPress blog with WassUp installed, the tag is executed when going to "View Details" from the administrative page and viewing the access logs.
|
| 150 |
+
|
| 151 |
= 1.8.3 =
|
| 152 |
= Urgent bugfix, compatibility, and feature improvement upgrade =
|
| 153 |
* fixed typo that caused a php "foreach" error in v.1.8.2.
|
wassup.php
CHANGED
|
@@ -1,9 +1,9 @@
|
|
| 1 |
<?php
|
| 2 |
/*
|
| 3 |
-
Plugin Name: WassUp
|
| 4 |
Plugin URI: http://www.wpwp.org
|
| 5 |
Description: Analyze your visitors traffic with real-time stats, charts, and a lot of chronological information. Includes a sidebar widget of current online visitors and other statistics and an admin dashboard widget with chart. For Wordpress 2.2 or higher. Caution: don't upgrade when your site is busy!
|
| 6 |
-
Version: 1.8.3
|
| 7 |
Author: Michele Marcucci, Helene Duncker
|
| 8 |
Author URI: http://www.michelem.org/
|
| 9 |
Disclaimer: Use at your own risk. No warranty expressed or implied is provided.
|
|
@@ -23,7 +23,7 @@ if (!defined('ABSPATH')) {
|
|
| 23 |
}
|
| 24 |
//wassup globals & constants
|
| 25 |
global $wp_version, $current_user, $user_level, $wassup_options;
|
| 26 |
-
$wassupversion="1.8.3";
|
| 27 |
$wassup_cookie_value="";
|
| 28 |
$wdebug_mode=false; //turn on debugging (global)...Use cautiously! Will display errors from all plugins, not just WassUp
|
| 29 |
define('WASSUPDIR', dirname(__FILE__)); //new constant in v1.8
|
|
@@ -1555,7 +1555,7 @@ function WassUp() {
|
|
| 1555 |
echo __("Search","wassup").': <span class="raw">'.$rk->search.'</span> ';
|
| 1556 |
echo __("Page","wassup").': <span class="raw">'.$rk->searchpage.'</span>';?></li><?php
|
| 1557 |
} ?>
|
| 1558 |
-
<li><?php echo __("User Agent","wassup").': <span class="raw">'.attribute_escape(htmlspecialchars(html_entity_decode($rk->agent))).'</span>'; ?></li><?php
|
| 1559 |
if (empty($rk->spider) || $rk->browser != "") {
|
| 1560 |
echo "\n"; ?>
|
| 1561 |
<li><?php echo __("Browser","wassup").': <span class="raw">'.$rk->browser.'</span>'; ?></li>
|
|
@@ -1701,7 +1701,7 @@ function WassUp() {
|
|
| 1701 |
}
|
| 1702 |
//hidden user agent string
|
| 1703 |
?><div style="display: none;" class="togglenavi naviagent<?php echo $rk->id ?>"><ul class="useragent">
|
| 1704 |
-
<li class="useragent"><?php _e('User Agent','wassup'); ?>: <strong><?php print $rk->agent; ?></strong></li>
|
| 1705 |
</ul></div>
|
| 1706 |
<?php
|
| 1707 |
// User os/browser/language
|
| 1 |
<?php
|
| 2 |
/*
|
| 3 |
+
Plugin Name: WassUp Real Time Analytics
|
| 4 |
Plugin URI: http://www.wpwp.org
|
| 5 |
Description: Analyze your visitors traffic with real-time stats, charts, and a lot of chronological information. Includes a sidebar widget of current online visitors and other statistics and an admin dashboard widget with chart. For Wordpress 2.2 or higher. Caution: don't upgrade when your site is busy!
|
| 6 |
+
Version: 1.8.3.1
|
| 7 |
Author: Michele Marcucci, Helene Duncker
|
| 8 |
Author URI: http://www.michelem.org/
|
| 9 |
Disclaimer: Use at your own risk. No warranty expressed or implied is provided.
|
| 23 |
}
|
| 24 |
//wassup globals & constants
|
| 25 |
global $wp_version, $current_user, $user_level, $wassup_options;
|
| 26 |
+
$wassupversion="1.8.3.1";
|
| 27 |
$wassup_cookie_value="";
|
| 28 |
$wdebug_mode=false; //turn on debugging (global)...Use cautiously! Will display errors from all plugins, not just WassUp
|
| 29 |
define('WASSUPDIR', dirname(__FILE__)); //new constant in v1.8
|
| 1555 |
echo __("Search","wassup").': <span class="raw">'.$rk->search.'</span> ';
|
| 1556 |
echo __("Page","wassup").': <span class="raw">'.$rk->searchpage.'</span>';?></li><?php
|
| 1557 |
} ?>
|
| 1558 |
+
<li><?php echo __("User Agent","wassup").': <span class="raw">'.strip_tags(attribute_escape(htmlspecialchars(html_entity_decode($rk->agent)))).'</span>'; ?></li><?php
|
| 1559 |
if (empty($rk->spider) || $rk->browser != "") {
|
| 1560 |
echo "\n"; ?>
|
| 1561 |
<li><?php echo __("Browser","wassup").': <span class="raw">'.$rk->browser.'</span>'; ?></li>
|
| 1701 |
}
|
| 1702 |
//hidden user agent string
|
| 1703 |
?><div style="display: none;" class="togglenavi naviagent<?php echo $rk->id ?>"><ul class="useragent">
|
| 1704 |
+
<li class="useragent"><?php _e('User Agent','wassup'); ?>: <strong><?php print strip_tags($rk->agent); ?></strong></li>
|
| 1705 |
</ul></div>
|
| 1706 |
<?php
|
| 1707 |
// User os/browser/language
|
