Plugin Directory


Ignore:
Location:
redirection/trunk
Files:
6 edited

Legend:

Unmodified
Added
Removed
  • redirection/trunk/matches/user_agent.php

    r421721 r447262  
    2727        return __( 'URL and user agent', 'redirection' );
    2828    }
    29    
     29
    3030    function show() {
    3131        $defined = array(
     
    3636            'Safari'                   => __( 'Safari', 'redirection' ),
    3737            'iPhone'                   => __( 'iPhone', 'redirection' ),
     38            'iPad'                     => __( 'iPad', 'redirection' ),
     39            'Android'                  => __( 'Android', 'redirection' ),
    3840            'Wii'                      => __( 'Nintendo Wii', 'redirection' ),
    3941         );
  • redirection/trunk/models/log.php

    r421721 r447262  
    129129    function show_url ($url)
    130130    {
    131         return implode ('​/', explode ('/', substr (htmlspecialchars ($url), 0, 80))).(strlen ($url) > 80 ? '...' : '');
     131        return implode ('​/', explode ('/', substr (esc_html ($url), 0, 80))).(strlen ($url) > 80 ? '...' : '');
    132132    }
    133133
  • redirection/trunk/readme.txt

    r421721 r447262  
    8888== Changelog ==
    8989
     90= 2.2.10 =
     91* Fix XSS in referrers log
     92
    9093= 2.2.9 =
    9194* Fix XSS in admin menu
  • redirection/trunk/redirection.php

    r421721 r447262  
    44Plugin URI: http://urbangiraffe.com/plugins/redirection/
    55Description: Manage all your 301 redirects and monitor 404 errors
    6 Version: 2.2.9
     6Version: 2.2.10
    77Author: John Godley
    88Author URI: http://urbangiraffe.com
  • redirection/trunk/view/admin/log_item.php

    r421721 r447262  
    99</td>
    1010<td class="info">
    11     <a class="details" href="<?php echo $log->url ?>"><?php echo $log->show_url ($log->url) ?></a>
     11    <a class="details" href="<?php echo esc_attr( $log->url ) ?>"><?php echo $log->show_url( $log->url ) ?></a>
    1212</td>
    1313<td>
    1414    <?php if (strlen ($log->referrer) > 0) : ?>
    15     <a href="<?php echo $this->url ($log->referrer) ?>"><?php echo $log->show_url ($log->referrer ()) ?></a>
     15    <a href="<?php echo esc_attr( $this->url ( $log->referrer) ) ?>"><?php echo $log->show_url( $log->referrer() ) ?></a>
    1616    <?php endif; ?>
    1717</td>
    1818<td style="width:9em" class="center">
    19     <a target="_blank" href="<?php echo $lookup.$log->ip ?>"><?php echo htmlspecialchars ($log->ip) ?></a>
     19    <a target="_blank" href="<?php echo $lookup.esc_attr( $log->ip ) ?>"><?php echo esc_html( $log->ip ) ?></a>
    2020</td>
    2121<td style="width: 16px" class="lastcol">
  • redirection/trunk/view/admin/log_item_details.php

    r421721 r447262  
    33    <tr>
    44        <th><a href="<?php echo $log->url ?>"><?php _e ('Source URL', 'redirection'); ?>:</a></th>
    5         <td><input style="width: 95%" type="text" name="something" readonly="readonly" value="<?php echo htmlspecialchars (urldecode ($log->url)) ?>"/></td>
     5        <td><input style="width: 95%" type="text" name="something" readonly="readonly" value="<?php echo esc_attr (urldecode ($log->url)) ?>"/></td>
    66    </tr>
    77    <?php if ($log->sent_to) : ?>
    88    <tr>
    99        <th><a href="<?php echo $log->sent_to ?>"><?php _e ('Redirect to', 'redirection'); ?>:</a></th>
    10         <td><input style="width: 95%" type="text" name="something" readonly="readonly" value="<?php echo htmlspecialchars ($log->sent_to) ?>"/></td>
     10        <td><input style="width: 95%" type="text" name="something" readonly="readonly" value="<?php echo esc_attr ($log->sent_to) ?>"/></td>
    1111    </tr>
    1212    <?php endif; ?>
     
    1414    <tr>
    1515        <th><?php _e ('Redirected by', 'redirection'); ?>:</th>
    16         <td><?php echo $redirect->method->name () ?> <?php _e ('for', 'redirection'); ?>: <code><?php echo htmlspecialchars ($redirect->url) ?></code></td>
     16        <td><?php echo $redirect->method->name () ?> <?php _e ('for', 'redirection'); ?>: <code><?php echo esc_html ($redirect->url) ?></code></td>
    1717    </tr>
    1818    <?php endif; ?>
    1919    <tr>
    2020        <th><?php _e ('User Agent', 'redirection'); ?>:</th>
    21         <td><input style="width: 95%" type="text" readonly="readonly" name="other" value="<?php echo htmlspecialchars ($log->agent) ?>"/></td>
     21        <td><input style="width: 95%" type="text" readonly="readonly" name="other" value="<?php echo esc_html ($log->agent) ?>"/></td>
    2222    </tr>
    2323    <tr>
Note: See TracChangeset for help on using the changeset viewer.