Widget Logic - Version 5.10.4

Version Description

  • Security update. The export feature has been protected with nonce.
Download this release

Release Info

Developer wpchefgadget
Plugin Icon 128x128 Widget Logic
Version 5.10.4
Comparing to
See all releases

Code changes from version 5.10.3 to 5.10.4

Files changed (2) hide show
  1. readme.txt +5 -1
  2. widget_logic.php +3 -3
readme.txt CHANGED
@@ -3,7 +3,7 @@ Contributors: wpchefgadget
3
  Tags: widget, sidebar, content, conditional tags, toggle
4
  Requires at least: 3.0
5
  Tested up to: 5.2.2
6
- Stable tag: 5.10.3
7
 
8
  Widget Logic lets you control on which pages widgets appear using WP's conditional tags.
9
 
@@ -101,6 +101,10 @@ Tighten up your definitions with PHPs 'logical AND' &&, for example:
101
 
102
  == Changelog ==
103
 
 
 
 
 
104
  = 5.10.3 =
105
 
106
  * Security update. Huge thanks to the [Plugin Vulnerabilities](https://www.pluginvulnerabilities.com/) Team!
3
  Tags: widget, sidebar, content, conditional tags, toggle
4
  Requires at least: 3.0
5
  Tested up to: 5.2.2
6
+ Stable tag: 5.10.4
7
 
8
  Widget Logic lets you control on which pages widgets appear using WP's conditional tags.
9
 
101
 
102
  == Changelog ==
103
 
104
+ = 5.10.4 =
105
+
106
+ * Security update. The export feature has been protected with nonce.
107
+
108
  = 5.10.3 =
109
 
110
  * Security update. Huge thanks to the [Plugin Vulnerabilities](https://www.pluginvulnerabilities.com/) Team!
widget_logic.php CHANGED
@@ -3,7 +3,7 @@
3
  Plugin Name: Widget Logic
4
  Author URI: https://wpchef.org
5
  Description: Control widgets with WP's conditional tags is_home etc
6
- Version: 5.10.3
7
  Author: WPChef
8
  Text Domain: widget-logic
9
  */
@@ -89,7 +89,7 @@ function widget_logic_expand_control()
89
 
90
 
91
  // EXPORT ALL OPTIONS
92
- if (isset($_GET['wl-options-export']))
93
  {
94
  header("Content-Disposition: attachment; filename=widget_logic_options.txt");
95
  header('Content-Type: text/plain; charset=utf-8');
@@ -212,7 +212,7 @@ function widget_logic_options_control()
212
 
213
  </form>
214
  <form method="POST" enctype="multipart/form-data" style="float:left; width:45%">
215
- <a class="submit button" href="?wl-options-export" title="<?php _e('Save all WL options to a plain text config file', 'widget-logic'); ?>"><?php _e('Export options', 'widget-logic'); ?></a><p>
216
  <?php submit_button( __( 'Import options', 'widget-logic' ), 'button', 'wl-options-import', false, array('title'=> __( 'Load all WL options from a plain text config file', 'widget-logic' ) ) ); ?>
217
  <input type="file" name="wl-options-import-file" id="wl-options-import-file" title="<?php _e('Select file for importing', 'widget-logic'); ?>" /></p>
218
 
3
  Plugin Name: Widget Logic
4
  Author URI: https://wpchef.org
5
  Description: Control widgets with WP's conditional tags is_home etc
6
+ Version: 5.10.4
7
  Author: WPChef
8
  Text Domain: widget-logic
9
  */
89
 
90
 
91
  // EXPORT ALL OPTIONS
92
+ if (isset($_GET['wl-options-export']) && isset( $_GET['widget_logic_nonce'] ) && wp_verify_nonce( $_GET['widget_logic_nonce'], 'widget_logic_export'))
93
  {
94
  header("Content-Disposition: attachment; filename=widget_logic_options.txt");
95
  header('Content-Type: text/plain; charset=utf-8');
212
 
213
  </form>
214
  <form method="POST" enctype="multipart/form-data" style="float:left; width:45%">
215
+ <a class="submit button" href="<?php echo wp_nonce_url( '?wl-options-export', 'widget_logic_export', 'widget_logic_nonce' ); ?>" title="<?php _e('Save all WL options to a plain text config file', 'widget-logic'); ?>"><?php _e('Export options', 'widget-logic'); ?></a><p>
216
  <?php submit_button( __( 'Import options', 'widget-logic' ), 'button', 'wl-options-import', false, array('title'=> __( 'Load all WL options from a plain text config file', 'widget-logic' ) ) ); ?>
217
  <input type="file" name="wl-options-import-file" id="wl-options-import-file" title="<?php _e('Select file for importing', 'widget-logic'); ?>" /></p>
218