Skip to content
Permalink
Browse files Browse the repository at this point in the history
Security improvements, preventing XSS, full path disclosure, and unpr…
…ivileged manipulation.

git-svn-id: https://plugins.svn.wordpress.org/exit-strategy/trunk@719477 b8457f37-d9ea-0310-8a92-e5e31aec5664
  • Loading branch information
angrybyte committed May 28, 2013
1 parent f9659db commit d964b8e
Showing 1 changed file with 8 additions and 5 deletions.
13 changes: 8 additions & 5 deletions exitpage.php
Expand Up @@ -3,18 +3,21 @@
/**
* @package Wordpress Exit Strategy
* @author Bouzid Nazim Zitouni
* @version 1.55
* @version 1.59
*/
/*
Plugin Name: Wordpress Exit Strategy
Plugin URI: http://angrybyte.com/wordpress-plugins/wordpress-exit-strategy/
Description: Exit Strategy will pass all outgoing links from your site through a nofollow link to an exit page before finally being redirected to the external link. You may place anything in your exit page: Ads, Subscribtion buttons, etc. Using Wordpress Exit Strategy you improve your SEO score by not linking directly to external pages, you get more subscribers & more revenues if you use Ads.
Author: Bouzid Nazim Zitouni
Version: 1.55
Version: 1.59
Author URI: http://angrybyte.com
*/


if(!function_exists('add_action')){
echo ""; // someone is trying to run the plugin directly, added to avoid full path disclosure.
die;
}
add_option("exitpagecontents",
'Thank you for your visit, You`ll be redirected in %n% seconds <br> <a href="%link%">Click here if you are not redirected automatically</a>',
'Contents of the Exit page', 'yes');
Expand All @@ -35,7 +38,7 @@ function exitpageadmin()
function exit_page_admin()
{

if ($_POST['xx'])
if (($_POST["xx"])&& (is_admin())&& check_admin_referer( 'exit_strategy_save', 'exit_strategy_nonce' ))
{
update_option('exitpagecontents', $_POST['xx']);
update_option('redirecttoparent', $_POST['redirectpar']);
Expand Down Expand Up @@ -83,7 +86,7 @@ function exit_page_admin()
{
echo "<textarea name='xx' cols='150' rows='20'>$oldtemp</textarea>";
}

wp_nonce_field( 'exit_strategy_save','exit_strategy_nonce' );
echo <<< EOFT
<br/>
Expand Down

0 comments on commit d964b8e

Please sign in to comment.