Skip to content

Security Patch: v1.1
Compare
Choose a tag to compare
@wikiwyrhead wikiwyrhead released this 23 Apr 16:32
· 8 commits to main since this release
v1.1.1
c68ebec

Release v1.1.1 - Security Patch

This release addresses a security vulnerability in the TRDS Website Visitor Counter plugin by implementing proper input escaping in the settings page. The vulnerability could potentially lead to cross-site scripting (XSS) attacks due to the use of undefined variables. By sanitizing user input and properly escaping output, this update ensures enhanced security and prevents any malicious exploitation.

Changes in this release:

Security fix:

  • Implemented input escaping for user input fields in the settings page to prevent XSS vulnerabilities.
  • Resolved the issue of undefined variables, specifically $input_alignment, to improve code stability and security.

Enhanced Customization Options:

  • Expanded customization options for the TRDS Website Visitor Counter.
  • Added settings for title color, title alignment, and label alignment.
  • Introduced settings for label text customization.

This security patch enhances the overall robustness of the plugin and ensures a safer experience for users. We highly recommend all users to update to this latest version (v1.1.1) to mitigate any potential security risks.

Full Changelog: pre-release...v1.1.1

Assets 3
Loading