Commit 60ac3df5 authored by Kevin Stover's avatar Kevin Stover

Merge branch 'release/2.8.10'

parents 9eaf59e2 bfebdbe1
......@@ -954,7 +954,7 @@ class NF_Subs_CPT {
$edit_value_function = 'nf_field_text_edit_sub_value';
}
$args['field_id'] = $field_id;
$args['user_value'] = $user_value;
$args['user_value'] = wp_kses_post( $user_value );
$args['field'] = $field;
call_user_func_array( $edit_value_function, $args );
......@@ -1094,7 +1094,7 @@ class NF_Subs_CPT {
return $sub_id;
foreach ( $_POST['fields'] as $field_id => $user_value ) {
$user_value = apply_filters( 'nf_edit_sub_user_value', $user_value, $field_id, $sub_id );
$user_value = wp_kses_post( apply_filters( 'nf_edit_sub_user_value', $user_value, $field_id, $sub_id ) );
Ninja_Forms()->sub( $sub_id )->update_field( $field_id, $user_value );
}
......
......@@ -350,7 +350,7 @@ class NF_Welcome {
<div class="col-1">
<h4><?php _e( 'Ninja Forms Widget', 'ninja-forms' );?></h4>
<p><?php printf( __( 'Ninja Forms provides a widget that you can place in any widgetized area of your site and select exactly which form you would like displayed in tat space.', 'ninja-forms' ), admin_url( 'edit.php?post_type=download&page=nf-settings&tab=misc' ) ); ?></p>
<p><?php printf( __( 'Ninja Forms provides a widget that you can place in any widgetized area of your site and select exactly which form you would like displayed in that space.', 'ninja-forms' ), admin_url( 'edit.php?post_type=download&page=nf-settings&tab=misc' ) ); ?></p>
</div>
<div class="col-2 last-feature">
......
......@@ -30,7 +30,7 @@ function ninja_forms_field_shortcode( $atts ){
} else {
$value = '';
}
return esc_html( $value );
return wp_kses_post( $value );
}
add_shortcode( 'ninja_forms_field', 'ninja_forms_field_shortcode' );
......
......@@ -120,7 +120,12 @@ jQuery(document).ready(function(jQuery) {
jQuery(".ninja-forms-form").each(function(){
var form_id = this.id.replace("ninja_forms_form_", "");
var settings = window['ninja_forms_form_' + form_id + '_settings'];
ajax = settings.ajax
if ( typeof settings != 'undefined' ) {
ajax = settings.ajax
} else {
ajax = 0;
}
if(ajax == 1){
var options = {
beforeSerialize: function($form, add_product_form_options) {
......
This diff is collapsed.
......@@ -3,7 +3,7 @@
Plugin Name: Ninja Forms
Plugin URI: http://ninjaforms.com/
Description: Ninja Forms is a webform builder with unparalleled ease of use and features.
Version: 2.8.9
Version: 2.8.10
Author: The WP Ninjas
Author URI: http://ninjaforms.com
Text Domain: ninja-forms
......@@ -263,7 +263,7 @@ class Ninja_Forms {
// Plugin version
if ( ! defined( 'NF_PLUGIN_VERSION' ) )
define( 'NF_PLUGIN_VERSION', '2.8.9' );
define( 'NF_PLUGIN_VERSION', '2.8.10' );
// Plugin Folder Path
if ( ! defined( 'NF_PLUGIN_DIR' ) )
......
......@@ -2,8 +2,8 @@
Contributors: kstover, jameslaws, wpnzach, daveshine, mordauk, bftrick, helgatheviking
Tags: form, forms, contact form, custom form, form builder, form creator, form manager, form creation, contact forms, custom forms, forms builder, forms creator, forms manager, forms creation, form administration,
Requires at least: 3.8
Tested up to: 4.0
Stable tag: 2.8.9
Tested up to: 4.0.1
Stable tag: 2.8.10
License: GPLv2 or later
Forms created with a simple drag and drop interface. Contact forms, Email collection forms, or any other form you want on your WordPress site.
......@@ -74,16 +74,16 @@ For help and video tutorials, please visit our website: [Ninja Forms Documentati
== Upgrade Notice ==
= 2.8.9 (20 November 2014 ) =
= 2.8.10 (2 December 2014) =
*Security Update:*
* This version includes a fix to a security vulnerability. Please take the time to update to this version.
* This version includes a fix for a potential security vulnerability for admin users.
*Bugs:*
* Fixed a bug with conversions from older versions of Ninja Forms.
* Fixed a bug that could cause two forms on the same page to behave improperly.
* Fixed a bug that can throw JS errors if multiple forms are on the same page.
* Fixed typos in the welcome screen.
== Requested Features ==
......@@ -91,6 +91,17 @@ If you have any feature requests, please feel free to visit [ninjaforms.com](htt
== Changelog ==
= 2.8.10 (2 December 2014) =
*Security Update:*
* This version includes a fix for a potential security vulnerability for admin users.
*Bugs:*
* Fixed a bug that can throw JS errors if multiple forms are on the same page.
* Fixed typos in the welcome screen.
= 2.8.9 (20 November 2014 ) =
*Security Update:*
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment