WordPress.org

Plugin Directory


Ignore:
Location:
adminimize
Files:
99 added
2 deleted
6 edited

Legend:

Unmodified
Added
Removed
  • adminimize/trunk/adminimize.php

    r466900 r467338  
    1313Author: Frank Bültge 
    1414Author URI: http://bueltge.de/ 
    15 Version: 1.7.21 
     15Version: 1.7.22 
    1616License: GPLv2 
    1717*/ 
     
    230230     
    231231    if ( isset( $_GET['post'] ) ) 
    232         $post_id = (int) $_GET['post']; 
     232        $post_id = (int) esc_attr( $_GET['post'] ); 
    233233    elseif ( isset( $_POST['post_ID'] ) ) 
    234         $post_id = (int) $_POST['post_ID']; 
     234        $post_id = (int) esc_attr( $_POST['post_ID'] ); 
    235235    else 
    236236        $post_id = 0; 
  • adminimize/trunk/adminimize_page.php

    r466900 r467338  
    119119        ?> 
    120120         
    121         <form name="backend_option" method="post" id="_mw_adminimize_options" action="?page=<?php echo $_GET['page'];?>" > 
     121        <form name="backend_option" method="post" id="_mw_adminimize_options" action="?page=<?php echo esc_attr( $_GET['page'] );?>" > 
    122122        <?php  
    123123        // Backend Options for all roles 
  • adminimize/trunk/inc-options/deinstall_options.php

    r466900 r467338  
    1717 
    1818                    <p><?php _e('Use this option for clean your database from all entries of this plugin. When you deactivate the plugin, the deinstall of the plugin <strong>clean not</strong> all entries in the database.', FB_ADMINIMIZE_TEXTDOMAIN ); ?></p> 
    19                     <form name="deinstall_options" method="post" id="_mw_adminimize_options_deinstall" action="?page=<?php echo $_GET['page'];?>"> 
     19                    <form name="deinstall_options" method="post" id="_mw_adminimize_options_deinstall" action="?page=<?php echo esc_attr( $_GET['page'] );?>"> 
    2020                        <?php wp_nonce_field('mw_adminimize_nonce'); ?> 
    2121                        <p id="submitbutton"> 
  • adminimize/trunk/inc-options/im_export_options.php

    r466900 r467338  
    2727                     
    2828                    <h4><?php _e('Import', FB_ADMINIMIZE_TEXTDOMAIN ) ?></h4> 
    29                     <form name="import_options" enctype="multipart/form-data" method="post" action="?page=<?php echo $_GET['page'];?>"> 
     29                    <form name="import_options" enctype="multipart/form-data" method="post" action="?page=<?php echo esc_attr( $_GET['page'] ); ?>"> 
    3030                        <?php wp_nonce_field('mw_adminimize_nonce'); ?>  
    3131                        <p><?php _e('Choose a Adminimize (<em>.seq</em>) file to upload, then click <em>Upload file and import</em>.', FB_ADMINIMIZE_TEXTDOMAIN ) ?></p> 
  • adminimize/trunk/inc-options/theme_options.php

    r466900 r467338  
    1818                     
    1919                    <?php if ( ! isset($_POST['_mw_adminimize_action']) || !($_POST['_mw_adminimize_action'] == '_mw_adminimize_load_theme') ) { ?> 
    20                     <form name="set_theme" method="post" id="_mw_adminimize_set_theme" action="?page=<?php echo $_GET['page'];?>" > 
     20                    <form name="set_theme" method="post" id="_mw_adminimize_set_theme" action="?page=<?php echo esc_attr( $_GET['page'] ); ?>" > 
    2121                            <?php wp_nonce_field('mw_adminimize_nonce'); ?> 
    2222                            <p><?php _e('For better peformance with many users on your blog; load only userlist, when you will change the theme options for users.', FB_ADMINIMIZE_TEXTDOMAIN ); ?></p> 
     
    2828                    <?php } 
    2929                    if (  isset($_POST['_mw_adminimize_action']) && ($_POST['_mw_adminimize_action'] == '_mw_adminimize_load_theme') ) { ?> 
    30                         <form name="set_theme" method="post" id="_mw_adminimize_set_theme" action="?page=<?php echo $_GET['page'];?>" > 
     30                        <form name="set_theme" method="post" id="_mw_adminimize_set_theme" action="?page=<?php echo esc_attr( $_GET['page'] ); ?>" > 
    3131                            <?php wp_nonce_field('mw_adminimize_nonce'); ?> 
    3232                            <table class="widefat"> 
  • adminimize/trunk/readme.txt

    r466900 r467338  
    44Tags: color, scheme, theme, admin, dashboard, color scheme, plugin, interface, ui, metabox, hide, editor, minimal, menu, customization, interface, administration, lite, light, usability, lightweight, layout, zen 
    55Requires at least: 2.5 
    6 Tested up to: 3.3-beta2 
    7 Stable tag: 1.7.21 
     6Tested up to: 3.3-beta4 
     7Stable tag: 1.7.22 
    88 
    99Adminimize is a WordPress plugin that lets you hide 'unnecessary' items from the WordPress backend and many many more ... 
     
    114114 
    115115== Changelog == 
     116= v1.7.22 = 
     117* Security fix for $_GET on the admin-settings-page 
     118 
    116119= v1.7.21 = 
    117120* SORRY: i had an svn bug; here the cimplete version 
Note: See TracChangeset for help on using the changeset viewer.