Plugin Directory


Ignore:
File:
1 edited

Legend:

Unmodified
Added
Removed
  • ultimate-social-media-icons/tags/2.8.6/libs/controllers/sfsi_buttons_controller.php

    r2956446 r2975574  
    17261726function sfsi_save_export()
    17271727{
     1728    if (!wp_verify_nonce($_POST['nonce'], 'sfsi_save_export')) return wp_send_json_error();
     1729    if (!current_user_can('manage_options')) return wp_send_json_error();
     1730   
    17281731    $option1 = maybe_unserialize( get_option( 'sfsi_section1_options', false ) );
    17291732    $option2 = maybe_unserialize( get_option( 'sfsi_section2_options', false ) );
     
    17581761add_action( 'wp_ajax_sfsi_installDate', 'sfsi_installDate' );
    17591762function sfsi_installDate() {
     1763    if (!wp_verify_nonce($_POST['nonce'], 'sfsi_installDate')) return wp_send_json_error();
     1764    if (!current_user_can('manage_options')) return wp_send_json_error();
     1765   
    17601766    $sfsi_installDate_value = isset( $_POST["sfsi_installDate"] ) ? $_POST["sfsi_installDate"] : '';
    17611767    update_option( 'sfsi_installDate', $sfsi_installDate_value );
     
    17661772add_action( 'wp_ajax_sfsi_currentDate', 'sfsi_currentDate' );
    17671773function sfsi_currentDate() {
     1774    if (!wp_verify_nonce($_POST['nonce'], 'sfsi_currentDate')) return wp_send_json_error();
     1775    if (!current_user_can('manage_options')) return wp_send_json_error();
     1776   
    17681777    $sfsi_currentDate_value = isset( $_POST["sfsi_currentDate"] ) ? $_POST["sfsi_currentDate"] : '';
    17691778    update_option( 'sfsi_currentDate', $sfsi_currentDate_value );
     
    17741783add_action( 'wp_ajax_sfsi_showNextBannerDate', 'sfsi_showNextBannerDate' );
    17751784function sfsi_showNextBannerDate() {
     1785    if (!wp_verify_nonce($_POST['nonce'], 'sfsi_showNextBannerDate')) return wp_send_json_error();
     1786    if (!current_user_can('manage_options')) return wp_send_json_error();
     1787   
    17761788    $sfsi_showNextBannerDate_value = isset( $_POST["sfsi_showNextBannerDate"] ) ? $_POST["sfsi_showNextBannerDate"] : '';
    17771789    update_option( 'sfsi_showNextBannerDate', $sfsi_showNextBannerDate_value );
     
    17821794add_action( 'wp_ajax_sfsi_cycleDate', 'sfsi_cycleDate' );
    17831795function sfsi_cycleDate() {
     1796    if (!wp_verify_nonce($_POST['nonce'], 'sfsi_cycleDate')) return wp_send_json_error();
     1797    if (!current_user_can('manage_options')) return wp_send_json_error();
     1798   
    17841799    $sfsi_cycleDate_value = isset( $_POST["sfsi_cycleDate"] ) ? $_POST["sfsi_cycleDate"] : '';
    17851800    update_option( 'sfsi_cycleDate',  $sfsi_cycleDate_value );
     
    17901805add_action( 'wp_ajax_sfsi_loyaltyDate', 'sfsi_loyaltyDate' );
    17911806function sfsi_loyaltyDate() {
     1807    if (!wp_verify_nonce($_POST['nonce'], 'sfsi_loyaltyDate')) return wp_send_json_error();
     1808    if (!current_user_can('manage_options')) return wp_send_json_error();
     1809   
    17921810    $sfsi_loyaltyDate_value   = isset( $_POST["sfsi_loyaltyDate"] ) ? $_POST["sfsi_loyaltyDate"] : '';
    17931811    update_option( 'sfsi_loyaltyDate', $sfsi_loyaltyDate_value );
     
    17991817function sfsi_banner_global_pinterest()
    18001818{
     1819    if (!wp_verify_nonce($_POST['nonce'], 'sfsi_banner_global_pinterest')) return wp_send_json_error();
     1820    if (!current_user_can('manage_options')) return wp_send_json_error();
     1821   
    18011822    $sfsi_banner_global_pinterest_value   = isset( $_POST["sfsi_banner_global_pinterest"] ) ? $_POST["sfsi_banner_global_pinterest"] : '';
    18021823    $sfsi_banner_global_pinterest = maybe_unserialize(get_option('sfsi_banner_global_pinterest', false));
     
    18101831function sfsi_banner_global_firsttime_offer()
    18111832{
     1833    if (!wp_verify_nonce($_POST['nonce'], 'sfsi_banner_global_firsttime_offer')) return wp_send_json_error();
     1834    if (!current_user_can('manage_options')) return wp_send_json_error();
     1835   
    18121836    $sfsi_banner_global_firsttime_offer_value   = isset( $_POST["sfsi_banner_global_firsttime_offer"] ) ? $_POST["sfsi_banner_global_firsttime_offer"] : '';
    18131837    $sfsi_banner_global_firsttime_offer = maybe_unserialize(get_option('sfsi_banner_global_firsttime_offer', false));
     
    18211845function sfsi_banner_global_social()
    18221846{
     1847    if (!wp_verify_nonce($_POST['nonce'], 'sfsi_banner_global_social')) return wp_send_json_error();
     1848    if (!current_user_can('manage_options')) return wp_send_json_error();
     1849   
    18231850    $sfsi_banner_global_social_value   = isset( $_POST["sfsi_banner_global_social"] ) ? $_POST["sfsi_banner_global_social"] : '';
    18241851    $sfsi_banner_global_social = maybe_unserialize(get_option('sfsi_banner_global_social', false));
     
    18321859function sfsi_banner_global_load_faster()
    18331860{
     1861    if (!wp_verify_nonce($_POST['nonce'], 'sfsi_banner_global_load_faster')) return wp_send_json_error();
     1862    if (!current_user_can('manage_options')) return wp_send_json_error();
     1863   
    18341864    $sfsi_banner_global_load_faster_value   = isset( $_POST["sfsi_banner_global_load_faster"] ) ? $_POST["sfsi_banner_global_load_faster"] : '';
    18351865    $sfsi_banner_global_load_faster = maybe_unserialize(get_option('sfsi_banner_global_load_faster', false));
     
    18431873function sfsi_banner_global_shares()
    18441874{
     1875    if (!wp_verify_nonce($_POST['nonce'], 'sfsi_banner_global_shares')) return wp_send_json_error();
     1876    if (!current_user_can('manage_options')) return wp_send_json_error();
     1877   
    18451878    $sfsi_banner_global_shares_value   = isset( $_POST["sfsi_banner_global_shares"] ) ? $_POST["sfsi_banner_global_shares"] : '';
    18461879    $sfsi_banner_global_shares = maybe_unserialize(get_option('sfsi_banner_global_shares', false));
     
    18551888function sfsi_banner_global_gdpr()
    18561889{
     1890    if (!wp_verify_nonce($_POST['nonce'], 'sfsi_banner_global_gdpr')) return wp_send_json_error();
     1891    if (!current_user_can('manage_options')) return wp_send_json_error();
     1892   
    18571893    $sfsi_banner_global_gdpr_value   = isset( $_POST["sfsi_banner_global_gdpr"] ) ? $_POST["sfsi_banner_global_gdpr"] : '';
    18581894    $sfsi_banner_global_gdpr = maybe_unserialize(get_option('sfsi_banner_global_gdpr', false));
     
    18661902function sfsi_banner_global_http()
    18671903{
     1904    if (!wp_verify_nonce($_POST['nonce'], 'sfsi_banner_global_http')) return wp_send_json_error();
     1905    if (!current_user_can('manage_options')) return wp_send_json_error();
     1906   
    18681907    $sfsi_banner_global_http_value   = isset( $_POST["sfsi_banner_global_http"] ) ? $_POST["sfsi_banner_global_http"] : '';
    18691908    $sfsi_banner_global_http = maybe_unserialize(get_option('sfsi_banner_global_http', false));
     
    18771916function sfsi_banner_global_upgrade()
    18781917{
     1918    if (!wp_verify_nonce($_POST['nonce'], 'sfsi_banner_global_upgrade')) return wp_send_json_error();
     1919    if (!current_user_can('manage_options')) return wp_send_json_error();
     1920   
    18791921    $sfsi_banner_global_upgrade_value   = isset( $_POST["sfsi_banner_global_upgrade"] ) ? $_POST["sfsi_banner_global_upgrade"] : '';
    18801922    $sfsi_banner_global_upgrade = maybe_unserialize(get_option('sfsi_banner_global_upgrade', false));
Note: See TracChangeset for help on using the changeset viewer.