Changes from ultimate-social-media-icons/tags/2.8.5/libs/controllers/sfsi_buttons_controller.php at r2956446 to ultimate-social-media-icons/tags/2.8.6/libs/controllers/sfsi_buttons_controller.php at r2975574
- File:
-
- 1 edited
Legend:
- Unmodified
- Added
- Removed
-
ultimate-social-media-icons/tags/2.8.6/libs/controllers/sfsi_buttons_controller.php
r2956446 r2975574 1726 1726 function sfsi_save_export() 1727 1727 { 1728 if (!wp_verify_nonce($_POST['nonce'], 'sfsi_save_export')) return wp_send_json_error(); 1729 if (!current_user_can('manage_options')) return wp_send_json_error(); 1730 1728 1731 $option1 = maybe_unserialize( get_option( 'sfsi_section1_options', false ) ); 1729 1732 $option2 = maybe_unserialize( get_option( 'sfsi_section2_options', false ) ); … … 1758 1761 add_action( 'wp_ajax_sfsi_installDate', 'sfsi_installDate' ); 1759 1762 function sfsi_installDate() { 1763 if (!wp_verify_nonce($_POST['nonce'], 'sfsi_installDate')) return wp_send_json_error(); 1764 if (!current_user_can('manage_options')) return wp_send_json_error(); 1765 1760 1766 $sfsi_installDate_value = isset( $_POST["sfsi_installDate"] ) ? $_POST["sfsi_installDate"] : ''; 1761 1767 update_option( 'sfsi_installDate', $sfsi_installDate_value ); … … 1766 1772 add_action( 'wp_ajax_sfsi_currentDate', 'sfsi_currentDate' ); 1767 1773 function sfsi_currentDate() { 1774 if (!wp_verify_nonce($_POST['nonce'], 'sfsi_currentDate')) return wp_send_json_error(); 1775 if (!current_user_can('manage_options')) return wp_send_json_error(); 1776 1768 1777 $sfsi_currentDate_value = isset( $_POST["sfsi_currentDate"] ) ? $_POST["sfsi_currentDate"] : ''; 1769 1778 update_option( 'sfsi_currentDate', $sfsi_currentDate_value ); … … 1774 1783 add_action( 'wp_ajax_sfsi_showNextBannerDate', 'sfsi_showNextBannerDate' ); 1775 1784 function sfsi_showNextBannerDate() { 1785 if (!wp_verify_nonce($_POST['nonce'], 'sfsi_showNextBannerDate')) return wp_send_json_error(); 1786 if (!current_user_can('manage_options')) return wp_send_json_error(); 1787 1776 1788 $sfsi_showNextBannerDate_value = isset( $_POST["sfsi_showNextBannerDate"] ) ? $_POST["sfsi_showNextBannerDate"] : ''; 1777 1789 update_option( 'sfsi_showNextBannerDate', $sfsi_showNextBannerDate_value ); … … 1782 1794 add_action( 'wp_ajax_sfsi_cycleDate', 'sfsi_cycleDate' ); 1783 1795 function sfsi_cycleDate() { 1796 if (!wp_verify_nonce($_POST['nonce'], 'sfsi_cycleDate')) return wp_send_json_error(); 1797 if (!current_user_can('manage_options')) return wp_send_json_error(); 1798 1784 1799 $sfsi_cycleDate_value = isset( $_POST["sfsi_cycleDate"] ) ? $_POST["sfsi_cycleDate"] : ''; 1785 1800 update_option( 'sfsi_cycleDate', $sfsi_cycleDate_value ); … … 1790 1805 add_action( 'wp_ajax_sfsi_loyaltyDate', 'sfsi_loyaltyDate' ); 1791 1806 function sfsi_loyaltyDate() { 1807 if (!wp_verify_nonce($_POST['nonce'], 'sfsi_loyaltyDate')) return wp_send_json_error(); 1808 if (!current_user_can('manage_options')) return wp_send_json_error(); 1809 1792 1810 $sfsi_loyaltyDate_value = isset( $_POST["sfsi_loyaltyDate"] ) ? $_POST["sfsi_loyaltyDate"] : ''; 1793 1811 update_option( 'sfsi_loyaltyDate', $sfsi_loyaltyDate_value ); … … 1799 1817 function sfsi_banner_global_pinterest() 1800 1818 { 1819 if (!wp_verify_nonce($_POST['nonce'], 'sfsi_banner_global_pinterest')) return wp_send_json_error(); 1820 if (!current_user_can('manage_options')) return wp_send_json_error(); 1821 1801 1822 $sfsi_banner_global_pinterest_value = isset( $_POST["sfsi_banner_global_pinterest"] ) ? $_POST["sfsi_banner_global_pinterest"] : ''; 1802 1823 $sfsi_banner_global_pinterest = maybe_unserialize(get_option('sfsi_banner_global_pinterest', false)); … … 1810 1831 function sfsi_banner_global_firsttime_offer() 1811 1832 { 1833 if (!wp_verify_nonce($_POST['nonce'], 'sfsi_banner_global_firsttime_offer')) return wp_send_json_error(); 1834 if (!current_user_can('manage_options')) return wp_send_json_error(); 1835 1812 1836 $sfsi_banner_global_firsttime_offer_value = isset( $_POST["sfsi_banner_global_firsttime_offer"] ) ? $_POST["sfsi_banner_global_firsttime_offer"] : ''; 1813 1837 $sfsi_banner_global_firsttime_offer = maybe_unserialize(get_option('sfsi_banner_global_firsttime_offer', false)); … … 1821 1845 function sfsi_banner_global_social() 1822 1846 { 1847 if (!wp_verify_nonce($_POST['nonce'], 'sfsi_banner_global_social')) return wp_send_json_error(); 1848 if (!current_user_can('manage_options')) return wp_send_json_error(); 1849 1823 1850 $sfsi_banner_global_social_value = isset( $_POST["sfsi_banner_global_social"] ) ? $_POST["sfsi_banner_global_social"] : ''; 1824 1851 $sfsi_banner_global_social = maybe_unserialize(get_option('sfsi_banner_global_social', false)); … … 1832 1859 function sfsi_banner_global_load_faster() 1833 1860 { 1861 if (!wp_verify_nonce($_POST['nonce'], 'sfsi_banner_global_load_faster')) return wp_send_json_error(); 1862 if (!current_user_can('manage_options')) return wp_send_json_error(); 1863 1834 1864 $sfsi_banner_global_load_faster_value = isset( $_POST["sfsi_banner_global_load_faster"] ) ? $_POST["sfsi_banner_global_load_faster"] : ''; 1835 1865 $sfsi_banner_global_load_faster = maybe_unserialize(get_option('sfsi_banner_global_load_faster', false)); … … 1843 1873 function sfsi_banner_global_shares() 1844 1874 { 1875 if (!wp_verify_nonce($_POST['nonce'], 'sfsi_banner_global_shares')) return wp_send_json_error(); 1876 if (!current_user_can('manage_options')) return wp_send_json_error(); 1877 1845 1878 $sfsi_banner_global_shares_value = isset( $_POST["sfsi_banner_global_shares"] ) ? $_POST["sfsi_banner_global_shares"] : ''; 1846 1879 $sfsi_banner_global_shares = maybe_unserialize(get_option('sfsi_banner_global_shares', false)); … … 1855 1888 function sfsi_banner_global_gdpr() 1856 1889 { 1890 if (!wp_verify_nonce($_POST['nonce'], 'sfsi_banner_global_gdpr')) return wp_send_json_error(); 1891 if (!current_user_can('manage_options')) return wp_send_json_error(); 1892 1857 1893 $sfsi_banner_global_gdpr_value = isset( $_POST["sfsi_banner_global_gdpr"] ) ? $_POST["sfsi_banner_global_gdpr"] : ''; 1858 1894 $sfsi_banner_global_gdpr = maybe_unserialize(get_option('sfsi_banner_global_gdpr', false)); … … 1866 1902 function sfsi_banner_global_http() 1867 1903 { 1904 if (!wp_verify_nonce($_POST['nonce'], 'sfsi_banner_global_http')) return wp_send_json_error(); 1905 if (!current_user_can('manage_options')) return wp_send_json_error(); 1906 1868 1907 $sfsi_banner_global_http_value = isset( $_POST["sfsi_banner_global_http"] ) ? $_POST["sfsi_banner_global_http"] : ''; 1869 1908 $sfsi_banner_global_http = maybe_unserialize(get_option('sfsi_banner_global_http', false)); … … 1877 1916 function sfsi_banner_global_upgrade() 1878 1917 { 1918 if (!wp_verify_nonce($_POST['nonce'], 'sfsi_banner_global_upgrade')) return wp_send_json_error(); 1919 if (!current_user_can('manage_options')) return wp_send_json_error(); 1920 1879 1921 $sfsi_banner_global_upgrade_value = isset( $_POST["sfsi_banner_global_upgrade"] ) ? $_POST["sfsi_banner_global_upgrade"] : ''; 1880 1922 $sfsi_banner_global_upgrade = maybe_unserialize(get_option('sfsi_banner_global_upgrade', false));
Note: See TracChangeset
for help on using the changeset viewer.