Security fix + translations

Security fix (XSS vulnerability) + several updated translations: Portuguese (Brazil), Italian, Albanian
braekling · Oct 12, 2015 · 5110bfd · 5110bfd
1 parent c892133
commit 5110bfd
Show file tree

Hide file tree

Showing 44 changed files with 5,150 additions and 5,585 deletions.
diff --git a/classes/WP_Piwik.php b/classes/WP_Piwik.php
@@ -12,7 +12,7 @@ class WP_Piwik {
 	 *
 	 * @var Runtime environment variables
 	 */
-	private static $revisionId = 2015092001, $version = '1.0.4', $blog_id, $pluginBasename = NULL, $logger, $settings, $request;
+	private static $revisionId = 2015101201, $version = '1.0.5', $blog_id, $pluginBasename = NULL, $logger, $settings, $request;
 
 	/**
 	 * Constructor class to configure and register all WP-Piwik components

diff --git a/classes/WP_Piwik/Admin/Settings.php b/classes/WP_Piwik/Admin/Settings.php
@@ -538,11 +538,9 @@ public function extendAdminHeader() {
 	 */
 	public function showCredits() {
 		?>
-		<p><strong><?php _e('Thank you very much for your donation', 'wp-piwik'); ?>:</strong> Marco L., Rolf W., Tobias U., Lars K., Donna F., Kevin D., Ramos S., Thomas M., John C., Andreas G., Ben M., Myra R. I., Carlos U. R.-S., Oleg I., M. N., Daniel K., James L., Jochen K., Cyril P., Thomas K., Patrik K., <?php _e('the Piwik team itself','wp-piwik');?><?php _e(', and all people flattering this','wp-piwik'); ?>!</p>
+		<p><strong><?php _e('Thank you very much for your donation', 'wp-piwik'); ?>:</strong> Marco L., Rolf W., Tobias U., Lars K., Donna F., Kevin D., Ramos S., Thomas M., John C., Andreas G., Ben M., Myra R. I., Carlos U. R.-S., Oleg I., M. N., Daniel K., James L., Jochen K., Cyril P., Thomas K., Patrik K., Zach, Sebastian W., Peakkom, Patrik K., <?php _e('the Piwik team itself','wp-piwik');?><?php _e(', and all people flattering this','wp-piwik'); ?>!</p>
 		<p><?php _e('Graphs powered by <a href="http://www.jqplot.com/">jqPlot</a> (License: GPL 2.0 and MIT) and <a href="http://omnipotent.net/jquery.sparkline/">jQuery Sparklines</a> (License: New BSD License).','wp-piwik'); ?></p>
-		<p><?php _e('Metabox support inspired by', 'wp-piwik'); echo ' <a href="http://www.code-styling.de/english/how-to-use-wordpress-metaboxes-at-own-plugins">Heiko Rabe\'s metabox demo plugin</a>.';?></p>
-		<p><?php _e('Tabbed settings page suggested by the', 'wp-piwik'); echo' <a href="http://wp.smashingmagazine.com/2011/10/20/create-tabs-wordpress-settings-pages/">Smashing Magazine</a>.';?></p>
-		<p><?php _e('Thank you very much','wp-piwik'); ?>, Besnik Bleta, FatCow, Rene, Fab, EzBizNiz, Gormer, Natalya, AggelioPolis, Web Hosting Geeks, Web Hosting Rating, Nata Strazda (Web Hosting Hub), Hossein (LibreOffice localization team), Ste &amp; Chris <?php _e('for your translation work','wp-piwik'); ?>!</p>
+		<p><?php _e('Thank you very much','wp-piwik'); ?> <a href="https://www.transifex.com/projects/p/wp-piwik/">Transifex Translation Community</a> <?php _e('for your translation work','wp-piwik'); ?>!</p>
 		<p><?php _e('Thank you very much, all users who send me mails containing criticism, commendation, feature requests and bug reports! You help me to make WP-Piwik much better.','wp-piwik'); ?></p>
 		<p><?php _e('Thank <strong>you</strong> for using my plugin. It is the best commendation if my piece of code is really used!','wp-piwik'); ?></p>
 		<?php

diff --git a/classes/WP_Piwik/Widget/Search.php b/classes/WP_Piwik/Widget/Search.php
@@ -27,11 +27,11 @@ public function show() {
 				$count = 0;
 				foreach ($response as $row) {
 					$count++;
-					$tableBody[] = array($row['label'], $row['nb_visits'], $row['bounce_rate']);
+					$tableBody[] = array(htmlentities($row['label']), $row['nb_visits'], $row['bounce_rate']);
 					if ($count == 10) break;
 				}
 				$this->table($tableHead, $tableBody, null);
 			}
 		}
 
-	}
+	}
diff --git a/languages/wp-piwik-az_AZ.mo b/languages/wp-piwik-az_AZ.mo