Product Feed PRO for WooCommerce

Version Description

Added some more sanitisation and escaping

Release Info

Developer	jorisverwater
Plugin	Product Feed PRO for WooCommerce
Version	11.6.1
Comparing to
See all releases

Code changes from version 11.6.0 to 11.6.1

Files changed (7) hide show

classes/class-admin-notifications.php +1 -2
js/woosea_key.js +1 -1
pages/admin/woosea-generate-feed-step-1.php +26 -3
pages/admin/woosea-generate-feed-step-9.php +1 -1
pages/admin/woosea-manage-feed.php +0 -3
readme.txt +8 -2
woocommerce-sea.php +6 -7

classes/class-admin-notifications.php CHANGED Viewed

	@@ -49,8 +49,7 @@ class WooSEA_Get_Admin_Notifications {
49	}
50
51	public function get_admin_notifications ( $step, $error ) {
52	-
53	- $domain = $_SERVER['HTTP_HOST'];
54
55	switch($step){
56	case 0:


49	}
50
51	public function get_admin_notifications ( $step, $error ) {
52	+ $domain = sanitize_text_field($_SERVER['HTTP_HOST']);

53
54	switch($step){
55	case 0:

js/woosea_key.js CHANGED Viewed

	@@ -26,7 +26,7 @@ jQuery(document).ready(function($) {
26	var license_key = $('#license-key').val();
27
28	jQuery.ajax({
29	- url: 'https://www.adtribes.io/check/license.php?key=' + license_key + '&email=' + license_email + '&domain=' + root_domain + '&version=11.6.0',
30	jsonp: 'callback',
31	dataType: 'jsonp',
32	type: 'GET',


26	var license_key = $('#license-key').val();
27
28	jQuery.ajax({
29	+ url: 'https://www.adtribes.io/check/license.php?key=' + license_key + '&email=' + license_email + '&domain=' + root_domain + '&version=11.6.1',
30	jsonp: 'callback',
31	dataType: 'jsonp',
32	type: 'GET',

pages/admin/woosea-generate-feed-step-1.php CHANGED Viewed

@@ -112,7 +112,6 @@ function woosea_hierarchical_term_tree($category, $prev_mapped){
             			// These are main categories
             			if($sub_category->parent == 0){
-            -
                 				$args = array(
                     				'parent' 	=> $sub_category->term_id,
             					'hide_empty'    => false,
@@ -144,8 +143,32 @@ function woosea_hierarchical_term_tree($category, $prev_mapped){
+            			}
             			$r .= $sub_category->term_id !== 0 ? woosea_hierarchical_term_tree($sub_category->term_id, $prev_mapped) : null;
+            		}
-            -
                	}
-            -
                	return $r;
+            }
             ?>


112
113	// These are main categories
114	if($sub_category->parent == 0){

115	$args = array(
116	'parent' => $sub_category->term_id,
117	'hide_empty' => false,

143	}
144	$r .= $sub_category->term_id !== 0 ? woosea_hierarchical_term_tree($sub_category->term_id, $prev_mapped) : null;
145	}
146	+ }
147	+
148	+ $allowed_tags = array(
149	+ 'tr' => array(
150	+ 'class' => array(),
151	+ ),
152	+ 'td' => array(),
153	+ 'input' => array(
154	+ 'type' => array(),
155	+ 'name' => array(),
156	+ 'value' => array(),
157	+ 'class' => array(),
158	+ 'id' => array(),
159	+ ),
160	+ 'span' => array(
161	+ 'class' => array(),
162	+ 'style' => array(),
163	+ 'title' => array(),
164	+ ),
165	+ 'div' => array(
166	+ 'id' => array(),
167	+ ),
168	+ '>' => array(),
169	+ '&' => array(),
170	+ );
171	+ return wp_kses_normalize_entities($r, $allowed_tags);
172	}
173	?>
174

pages/admin/woosea-generate-feed-step-9.php CHANGED Viewed

	@@ -7,7 +7,7 @@ function my_footer_text($default) {
7	}
8	add_filter('admin_footer_text', 'my_footer_text');
9	$add_manipulation_support = get_option ('add_manipulation_support');
10	- $host = $_SERVER['HTTP_HOST'];
11
12	/**
13	* Create notification object


7	}
8	add_filter('admin_footer_text', 'my_footer_text');
9	$add_manipulation_support = get_option ('add_manipulation_support');
10	+ $host = sanitize_text_field($_SERVER['HTTP_HOST']);
11
12	/**
13	* Create notification object

pages/admin/woosea-manage-feed.php CHANGED Viewed

	@@ -181,9 +181,6 @@ if (!wp_next_scheduled( 'woosea_cron_hook' ) ) {
181	$class = "";
182
183	foreach ($cron_projects as $key=>$val){
184	-
185	- //echo '<pre>' . print_r( $val, true ) . '</pre>';
186	-
187	if(isset($val['active']) AND ($val['active'] == "true")){
188	$checked = "checked";
189	$class = "";


181	$class = "";
182
183	foreach ($cron_projects as $key=>$val){



184	if(isset($val['active']) AND ($val['active'] == "true")){
185	$checked = "checked";
186	$class = "";

readme.txt CHANGED Viewed

	@@ -4,8 +4,8 @@ License: GPLv3
4	License URI: http://www.gnu.org/licenses/gpl.html
5	Tags: Google Shopping Feed, Facebook feed, Facebook catalog feed, WooCommerce Product Feed, Product Feed, Bing Shopping Feed, Bing Product Feed, Google Merchant Feed, Skroutz, Google Product Feed, Pinterest, Idealo, Pixels, Conversion API
6	Requires at least: 4.5
7	- Tested up to: 5.9
8	- Stable tag: 11.6.0
9
10	== Description ==
11
	@@ -345,6 +345,9 @@ Questions left or unanswered? Please do not hesitate to contact us at support@ad
345
346	=== Changelog ===
347



348	= 11.6.0 (2022-05-31) =
349	* Added support for the new Skroutz additional_image requirements
350
	@@ -3713,6 +3716,9 @@ Questions left or unanswered? Please do not hesitate to contact us at support@ad
3713
3714	== Upgrade Notice ==
3715



3716	= 11.6.0 =
3717	Added support for the new Skroutz additional_image requirements
3718


4	License URI: http://www.gnu.org/licenses/gpl.html
5	Tags: Google Shopping Feed, Facebook feed, Facebook catalog feed, WooCommerce Product Feed, Product Feed, Bing Shopping Feed, Bing Product Feed, Google Merchant Feed, Skroutz, Google Product Feed, Pinterest, Idealo, Pixels, Conversion API
6	Requires at least: 4.5
7	+ Tested up to: 6.0
8	+ Stable tag: 11.6.1
9
10	== Description ==
11

345
346	=== Changelog ===
347
348	+ = 11.6.1 (2022-06-01) =
349	+ * Added some more sanitisation and escaping
350	+
351	= 11.6.0 (2022-05-31) =
352	* Added support for the new Skroutz additional_image requirements
353

3716
3717	== Upgrade Notice ==
3718
3719	+ = 11.6.1 =
3720	+ Added some more sanitisation and escaping
3721	+
3722	= 11.6.0 =
3723	Added support for the new Skroutz additional_image requirements
3724

woocommerce-sea.php CHANGED Viewed

	@@ -1,7 +1,7 @@
1	<?php
2	/**
3	* Plugin Name: Product Feed PRO for WooCommerce
4	- * Version: 11.6.0
5	* Plugin URI: https://www.adtribes.io/support/?utm_source=wpadmin&utm_medium=plugin&utm_campaign=woosea_product_feed_pro
6	* Description: Configure and maintain your WooCommerce product feeds for Google Shopping, Catalog managers, Remarketing, Bing, Skroutz, Yandex, Comparison shopping websites and over a 100 channels more.
7	* Author: AdTribes.io
	@@ -48,7 +48,7 @@ if (!defined('ABSPATH')) {
48	* Plugin versionnumber, please do not override.
49	* Define some constants
50	*/
51	- define( 'WOOCOMMERCESEA_PLUGIN_VERSION', '11.6.0' );
52	define( 'WOOCOMMERCESEA_PLUGIN_NAME', 'woocommerce-product-feed-pro' );
53	define( 'WOOCOMMERCESEA_PLUGIN_NAME_SHORT', 'woo-product-feed-pro' );
54
	@@ -872,8 +872,9 @@ add_action('admin_notices', 'woosea_request_review');
872	* Add some JS and mark-up code on every front-end page in order to get the conversion tracking to work
873	*/
874	function woosea_hook_header() {
875	- $marker = sprintf('<!-- This website runs the Product Feed PRO for WooCommerce by AdTribes.io plugin -->');
876	- ~~echo~~ ~~"\n${marker}\n"~~;

877	}
878	add_action('wp_head','woosea_hook_header');
879
	@@ -1132,8 +1133,6 @@ function woosea_add_cat_mapping() {
1132	$map_to_category = sanitize_text_field($_POST['map_to_category']);
1133	$project_hash = sanitize_text_field($_POST['project_hash']);
1134	$criteria = sanitize_text_field($_POST['criteria']);
1135	-
1136	- //$criteria = $_POST['criteria'];
1137	$status_mapping = "false";
1138	$project = WooSEA_Update_Project::get_project_data(sanitize_text_field($project_hash));
1139
	@@ -1611,7 +1610,7 @@ function woosea_product_fix_structured_data( $product = null ) {
1611	foreach ($children_ids as &$child_val) {
1612	$product_variations = new WC_Product_Variation( $child_val );
1613	$variations = array_filter($product_variations->get_variation_attributes());
1614	- $from_url = str_replace("\\","",$_GET,$i);
1615	$intersect = array_intersect($from_url, $variations);
1616	if($variations == $intersect){
1617	$variation_id = $child_val;


1	<?php
2	/**
3	* Plugin Name: Product Feed PRO for WooCommerce
4	+ * Version: 11.6.1
5	* Plugin URI: https://www.adtribes.io/support/?utm_source=wpadmin&utm_medium=plugin&utm_campaign=woosea_product_feed_pro
6	* Description: Configure and maintain your WooCommerce product feeds for Google Shopping, Catalog managers, Remarketing, Bing, Skroutz, Yandex, Comparison shopping websites and over a 100 channels more.
7	* Author: AdTribes.io

48	* Plugin versionnumber, please do not override.
49	* Define some constants
50	*/
51	+ define( 'WOOCOMMERCESEA_PLUGIN_VERSION', '11.6.1' );
52	define( 'WOOCOMMERCESEA_PLUGIN_NAME', 'woocommerce-product-feed-pro' );
53	define( 'WOOCOMMERCESEA_PLUGIN_NAME_SHORT', 'woo-product-feed-pro' );
54

872	* Add some JS and mark-up code on every front-end page in order to get the conversion tracking to work
873	*/
874	function woosea_hook_header() {
875	+ $marker = sprintf('<!-- This website runs the Product Feed PRO for WooCommerce by AdTribes.io plugin - version ' . WOOCOMMERCESEA_PLUGIN_VERSION .' -->');
876	+ $allowed_tags = array('<!--' => array(), '-->' => array());
877	+ echo wp_kses("\n${marker}\n",$allowed_tags);
878	}
879	add_action('wp_head','woosea_hook_header');
880

1133	$map_to_category = sanitize_text_field($_POST['map_to_category']);
1134	$project_hash = sanitize_text_field($_POST['project_hash']);
1135	$criteria = sanitize_text_field($_POST['criteria']);


1136	$status_mapping = "false";
1137	$project = WooSEA_Update_Project::get_project_data(sanitize_text_field($project_hash));
1138

1610	foreach ($children_ids as &$child_val) {
1611	$product_variations = new WC_Product_Variation( $child_val );
1612	$variations = array_filter($product_variations->get_variation_attributes());
1613	+ $from_url = str_replace("\\","",sanitize_text_field($_GET),$i);
1614	$intersect = array_intersect($from_url, $variations);
1615	if($variations == $intersect){
1616	$variation_id = $child_val;

Product Feed PRO for WooCommerce - Version 11.6.1

Version Description

Release Info

Code changes from version 11.6.0 to 11.6.1