Get WordPress

Plugin Directory

Changeset 3098232

Timestamp:
06/05/2024 10:41:38 PM (2 months ago)
Author:
dglingren
Message:

Fix SQL Injection risk in shortcodes, update IPTC document links in Documentation.

Location:
media-library-assistant/trunk
Files:
5 edited

Legend:

Unmodified
Added
Removed

  • media-library-assistant/trunk/includes/class-mla-core.php

    r3095922 r3098232  
    3131     * @var string
    3232     */
    33     const MLA_DEVELOPMENT_VERSION = '20240531';
     33    const MLA_DEVELOPMENT_VERSION = '20240';
    3434
    3535    /**

  • media-library-assistant/trunk/includes/class-mla-shortcode-support.php

    r3085353 r3098232  
    27862786        $results = array ();
    27872787        $order = isset( $query_parameters['order'] ) ? ' ' . trim( strtoupper( $query_parameters['order'] ) ) : '';
     2788
     2789
     2790
     2791
    27882792        $orderby = isset( $query_parameters['orderby'] ) ? $query_parameters['orderby'] : '';
    27892793        $meta_key = isset( $query_parameters['meta_key'] ) ? $query_parameters['meta_key'] : '';
     
    28762880                        } // switch $matches[1]
    28772881
    2878                         $results[] = isset( $matches[2] ) ? $matches[1] . $matches[2] : $matches[1] . $order;
     2882                        $results[] = isset( $matches[2] ) ? $matches[1] . $matches[2] : $matches[1] . $order;
    28792883                    } // not 'rand'
    28802884                } // allowed key
     
    28982902     */
    28992903    private static $mla_get_shortcode_attachments_parameters = array(
    2900             'order' => 'ASC', // or 'DESC' or 'RAND'
     2904            'order' => 'ASC', // or 'DESC'
    29012905            'orderby' => 'menu_order,ID',
    29022906            'id' => NULL,

  • media-library-assistant/trunk/index.php

    r3095922 r3098232  
    1616Plugin Name: Media Library Assistant
    1717Plugin URI: http://davidlingren.com/#two
    18 Description: 20240531 Enhances the Media Library; powerful [mla_gallery] [mla_tag_cloud] [mla_term_list], taxonomy support, IPTC/EXIF/XMP/PDF processing, bulk/quick edit.
     18Description: 20240 Enhances the Media Library; powerful [mla_gallery] [mla_tag_cloud] [mla_term_list], taxonomy support, IPTC/EXIF/XMP/PDF processing, bulk/quick edit.
    1919Version: 3.16
    2020Requires at least: 4.1

  • media-library-assistant/trunk/readme.txt

    r3095922 r3098232  
    44Tags: categories, images, media, media library, tags
    55Requires at least: 4.1
    6 Tested up to: 6.5.3
     6Tested up to: 6.5.
    77Stable tag: 3.16
    88Requires PHP: 5.3
     
    189189
    190190= 3.17 =
     191
    191192* Fix: **IMPORTANT: A Reflected Cross-Site Scripting security risk in the Media/Assistant page has been mitigated.**
     193
    192194* Fix: When the "Real Media Library" plugin (Pro version) is active, `orderby=rml` is propegated to the Media/Assistant pagination controls.
    193195* Fix: For the `[mla_gallery]` shortcode, handling of brace-delimited array values in the `,str_replace(s,r)` format code has been corrected.
    194196* Fix: For the Media Manager Modal (popup) Window, the Enter key now triggers the MLA Enhanced Search Media function.
    195197* Fix: When the Elementor page editor is active, buttons on the "Insert Media" popup window are now sized correctly.
     198
    196199
    197200= 3.16 =

  • media-library-assistant/trunk/tpls/documentation-settings-tab.tpl

    r3053883 r3098232  
    58915891        The IPTC (International Press Telecommunications Council) metadata, if any, embedded in the image file. For this category, you can code any of the IPTC DataSet tag and field identifiers, e.g., "2#025" for the Keywords field. You can also use the "friendly name" MLA defines for most of the IPTC fields; see the <a href="#mla_iptc_identifiers">table of identifiers and friendly names</a> below.<br />
    58925892        &nbsp;<br />
    5893         You can find more IPTC information in the <a href="http://www.iptc.org/std/IIM/4.1/specification/IIMV4.1.pdf" title="IPTC-NAA Information Interchange Model Version No. 4.1 specification (PDF)" target="_blank">IPTC-NAA Information Interchange Model Version No. 4.1 specification (PDF document)</a>.
     5893        You can find more IPTC information in the <a href="http specification (PDF document)</a>.
    58945894        <br />&nbsp;<br />
    58955895        A special iptc "pseudo-value" is available; <strong>ALL_IPTC</strong> (<code>[+iptc:ALL_IPTC+]</code>). It returns a string representation of all IPTC data. You can use the pseudo-value to examine the metadata in an image, find field names and see what values are embedded in the image.
     
    64596459<h4>Field-level IPTC Identifiers and Friendly Names</h4>
    64606460<p>
    6461 IPTC Photo Metadata provides data about photographs and the values can be processed by software. Each individual metadata entity is called a property and they are grouped into Administrative, Descriptive and Rights-related properties. IPTC Photo Metadata properties have photo specific definitions that are widely supported by imaging software. You can find complete documentation of IPTC properites at the <a href="https://www.iptc.org/std/photometadata/specification/IPTC-PhotoMetadata" title="IPTC Photo Metadata Standard 2019.1" target="_blank">IPTC Photo Metadata Standard 2019.1 web site.</a>
     6461IPTC Photo Metadata provides data about photographs and the values can be processed by software. Each individual metadata entity is called a property and they are grouped into Administrative, Descriptive and Rights-related properties. IPTC Photo Metadata properties have photo specific definitions that are widely supported by imaging software. You can find complete documentation of IPTC properites at the <a href="https://www.iptc.org/std/photometadata/specification/IPTC-PhotoMetadata" title="IPTC Photo Metadata Standard 20 web site.</a>
    64626462</p>
    64636463<p>
     
    86258625</dd>
    86268626<dt>IPTC Value</dt>
    8627 <dd>The IPTC (International Press Telecommunications Council) metadata, if any, embedded in the image file. For this category, you can select any of the IPTC DataSet tag and field identifiers, e.g., "2#025" for the Keywords field. The dropdown list has the identifier and the "friendly name" MLA defines for most of the IPTC fields; see the table of identifiers and friendly names in the table below. You can find more information in the <a href="http://www.iptc.org/std/IIM/4.1/specification/IIMV4.1.pdf" title="IPTC-NAA Information Interchange Model Version No. 4.1 specification" target="_blank">IPTC-NAA Information Interchange Model Version No. 4.1 specification</a>.
     8627<dd>The IPTC (International Press Telecommunications Council) metadata, if any, embedded in the image file. For this category, you can select any of the IPTC DataSet tag and field identifiers, e.g., "2#025" for the Keywords field. The dropdown list has the identifier and the "friendly name" MLA defines for most of the IPTC fields; see the table of identifiers and friendly names in the table below. You can find more information in the <a href="http</a>.
    86288628</dd>
    86298629<dt>EXIF/Template Value</dt>
Note: See TracChangeset for help on using the changeset viewer.