Changeset 2606205
- Timestamp:
- 09/28/2021 12:39:25 PM (4 years ago)
- Location:
- shapepress-dsgvo/trunk
- Files:
-
- 69 edited
-
README.txt (modified) (2 diffs)
-
admin/base.php (modified) (1 diff)
-
admin/class-sp-dsgvo-admin.php (modified) (1 diff)
-
admin/tabs/gravity-forms/page.php (modified) (2 diffs)
-
admin/tabs/integrations/page.php (modified) (1 diff)
-
admin/tabs/v3/common-settings/page.php (modified) (10 diffs)
-
admin/tabs/v3/embeddings/page.php (modified) (5 diffs)
-
admin/tabs/v3/operator/page.php (modified) (19 diffs)
-
admin/tabs/v3/page-basics/page.php (modified) (9 diffs)
-
admin/tabs/v3/popup-notice/page.php (modified) (13 diffs)
-
admin/tabs/v3/subject-access-request/page.php (modified) (8 diffs)
-
admin/tabs/v3/super-unsubscribe/page.php (modified) (15 diffs)
-
includes/class-sp-dsgvo-ajax-action.php (modified) (5 diffs)
-
includes/class-sp-dsgvo-embedding-api-base.php (modified) (1 diff)
-
includes/class-sp-dsgvo-integration-api-base.php (modified) (1 diff)
-
includes/class-sp-dsgvo-integration.php (modified) (3 diffs)
-
includes/helpers.php (modified) (6 diffs)
-
includes/integrations/embeddings/facebook-feed/page.php (modified) (1 diff)
-
includes/integrations/embeddings/gmaps/page.php (modified) (1 diff)
-
includes/integrations/embeddings/instagram/page.php (modified) (1 diff)
-
includes/integrations/embeddings/openstreetmap/page.php (modified) (1 diff)
-
includes/integrations/embeddings/soundcloud/page.php (modified) (1 diff)
-
includes/integrations/embeddings/twitter/page.php (modified) (1 diff)
-
includes/integrations/embeddings/vimeo/page.php (modified) (1 diff)
-
includes/integrations/embeddings/youtube/page.php (modified) (1 diff)
-
includes/integrations/statistics/clicky/class-sp-dsgvo-clicky-integration.php (modified) (1 diff)
-
includes/integrations/statistics/clicky/page.php (modified) (1 diff)
-
includes/integrations/statistics/etracker/class-sp-dsgvo-etracker-integration.php (modified) (1 diff)
-
includes/integrations/statistics/etracker/page.php (modified) (1 diff)
-
includes/integrations/statistics/googleanalytics/class-sp-dsgvo-google-analytics-integration.php (modified) (1 diff)
-
includes/integrations/statistics/googleanalytics/page.php (modified) (1 diff)
-
includes/integrations/statistics/hotjar/class-sp-dsgvo-hotjar-integration.php (modified) (1 diff)
-
includes/integrations/statistics/hotjar/page.php (modified) (1 diff)
-
includes/integrations/statistics/matomo/class-sp-dsgvo-matomo-integration.php (modified) (1 diff)
-
includes/integrations/statistics/matomo/page.php (modified) (1 diff)
-
includes/integrations/statistics/mautic/class-sp-dsgvo-mautic-integration.php (modified) (1 diff)
-
includes/integrations/statistics/mautic/page.php (modified) (1 diff)
-
includes/integrations/statistics/piwik/class-sp-dsgvo-piwik-integration.php (modified) (1 diff)
-
includes/integrations/statistics/piwik/page.php (modified) (1 diff)
-
includes/integrations/statistics/wpstatistics/page.php (modified) (1 diff)
-
includes/integrations/tagmanager/googletagmanager/class-sp-dsgvo-google-tagmanager-integration.php (modified) (1 diff)
-
includes/integrations/tagmanager/googletagmanager/page.php (modified) (1 diff)
-
includes/integrations/tagmanager/matomotagmanager/class-sp-dsgvo-matomo-tagmanager-integration.php (modified) (1 diff)
-
includes/integrations/tagmanager/matomotagmanager/page.php (modified) (1 diff)
-
includes/integrations/targeting/bingadsuet/class-sp-dsgvo-bing-ads-uet-integration.php (modified) (1 diff)
-
includes/integrations/targeting/bingadsuet/page.php (modified) (1 diff)
-
includes/integrations/targeting/criteo/class-sp-dsgvo-criteo-integration.php (modified) (1 diff)
-
includes/integrations/targeting/criteo/page.php (modified) (1 diff)
-
includes/integrations/targeting/fbpixel/class-sp-dsgvo-fb-pixel-integration.php (modified) (1 diff)
-
includes/integrations/targeting/fbpixel/page.php (modified) (1 diff)
-
includes/integrations/targeting/gadsense/class-sp-dsgvo-gadsense-integration.php (modified) (1 diff)
-
includes/integrations/targeting/gadsense/page.php (modified) (1 diff)
-
includes/integrations/targeting/linkedinpixel/class-sp-dsgvo-linkedin-pixel-integration.php (modified) (1 diff)
-
includes/integrations/targeting/linkedinpixel/page.php (modified) (1 diff)
-
public/class-sp-dsgvo-public.php (modified) (23 diffs)
-
public/shortcodes/subject-access-request/subject-access-request-action.php (modified) (1 diff)
-
public/shortcodes/subject-access-request/subject-access-request.php (modified) (2 diffs)
-
public/shortcodes/super-unsubscribe/unsubscribe-form.php (modified) (2 diffs)
-
sp-dsgvo.php (modified) (2 diffs)
-
templates/de_DE/emails/subject-access-request.php (modified) (2 diffs)
-
templates/de_DE/emails/super-unsubscribe.php (modified) (3 diffs)
-
templates/de_DE_formal/emails/subject-access-request.php (modified) (2 diffs)
-
templates/de_DE_formal/emails/super-unsubscribe.php (modified) (2 diffs)
-
templates/en_EN/emails/subject-access-request.php (modified) (3 diffs)
-
templates/en_EN/emails/super-unsubscribe.php (modified) (3 diffs)
-
templates/en_GB/emails/subject-access-request.php (modified) (2 diffs)
-
templates/en_GB/emails/super-unsubscribe.php (modified) (2 diffs)
-
templates/en_US/emails/subject-access-request.php (modified) (2 diffs)
-
templates/en_US/emails/super-unsubscribe.php (modified) (3 diffs)
Legend:
- Unmodified
- Added
- Removed
-
shapepress-dsgvo/trunk/README.txt
r2604113 r2606205 5 5 Requires at least: 3.0.1 6 6 Tested up to: 5.8.1 7 Stable tag: 3.1.2 37 Stable tag: 3.1.24 8 8 Requires PHP: 5.6.0 9 9 License: GPLv2 or later … … 204 204 205 205 == Changelog == 206 = 3.1.24 = 207 * improved sanitation and escaping 208 206 209 = 3.1.23 = 207 * improved sanitation and escaping208 210 * updated 3rd party libraries 209 211 * removed short tags 212 * fixed xss vulnerability 210 213 211 214 = 3.1.22 = 212 * fixed xss vulnerability215 * improved sanitation and escaping 213 216 214 217 = 3.1.21 = -
shapepress-dsgvo/trunk/admin/base.php
r2604113 r2606205 21 21 <ol class="breadcrumb"> 22 22 <li class="breadcrumb-item"><a href="#"><?php _e('WP DSGVO Tools (GDPR)', 'shapepress-dsgvo'); ?></a></li> 23 <li class="breadcrumb-item active" aria-current="page"><?php _e($tabs[$tab]->getTabTitle(),'shapepress-dsgvo');;?></li>23 <li class="breadcrumb-item active" aria-current="page"><?php esc_html_e($tabs[$tab]->getTabTitle(),'shapepress-dsgvo');;?></li> 24 24 </ol> 25 25 </nav> -
shapepress-dsgvo/trunk/admin/class-sp-dsgvo-admin.php
r2604194 r2606205 321 321 $output .= $newPluginMetadata->upgrade_notice . '</div>'; 322 322 $output = preg_replace('/[\x00-\x1F\x80-\xFF]/', '', $output); 323 echo $output;323 echo esc_html($output); 324 324 } 325 325 } -
shapepress-dsgvo/trunk/admin/tabs/gravity-forms/page.php
r2604113 r2606205 1 1 <form method="post" action="<?php echo esc_attr(admin_url('/admin-ajax.php')); ?>"> 2 2 <input type="hidden" name="action" value="admin-gravity-forms"> 3 <?php wp_nonce_field( SPDSGVOGravityFormsAction::getActionName(). '-nonce' ); ?>3 <?php wp_nonce_field( esc_attr(SPDSGVOGravityFormsAction::getActionName()). '-nonce' ); ?> 4 4 5 5 <h1><?php _e('Gravity Forms','shapepress-dsgvo')?></h1> … … 45 45 <input type="checkbox" id="" value="1" 46 46 name="gf_save_no_[<?php echo esc_attr($form['id']);?>][<?php echo esc_attr($field->id);?>]" 47 <?php echo esc_attr((isset( $gf_save_no_[$form['id']][$field->id] ) && $gf_save_no_[$form['id']][$field->id] === '1')? ' checked ' : ''); ?>> <?php echo $field->label; ?> <small><em>(<?php _e('Nicht in der Datenbank speichern.','shapepress-dsgvo'); ?>)</em></small>47 <?php echo esc_attr((isset( $gf_save_no_[$form['id']][$field->id] ) && $gf_save_no_[$form['id']][$field->id] === '1')? ' checked ' : ''); ?>> <?php echo esc_html($field->label); ?> <small><em>(<?php _e('Nicht in der Datenbank speichern.','shapepress-dsgvo'); ?>)</em></small> 48 48 49 49 <?php endforeach; ?> -
shapepress-dsgvo/trunk/admin/tabs/integrations/page.php
r2604113 r2606205 4 4 <form method="post" action="<?php echo esc_attr(SPDSGVOIntegrationsAction::formURL()); ?>"> 5 5 <input type="hidden" name="action" value="<?php echo esc_attr(SPDSGVOIntegrationsAction::getActionName()) ?>"> 6 <?php wp_nonce_field( SPDSGVOIntegrationsAction::getActionName(). '-nonce' ); ?>6 <?php wp_nonce_field( esc_attr(SPDSGVOIntegrationsAction::getActionName()). '-nonce' ); ?> 7 7 8 8 <table class="lw-form-table"> -
shapepress-dsgvo/trunk/admin/tabs/v3/common-settings/page.php
r2604113 r2606205 21 21 <form method="post" action="<?php echo esc_attr(admin_url('/admin-ajax.php')); ?>" style="display: inline"> 22 22 <input type="hidden" name="action" value="<?php echo esc_attr(SPDSGVOCommonSettingsActivateAction::getActionName()); ?>"> 23 <?php wp_nonce_field( SPDSGVOCommonSettingsActivateAction::getActionName() . '-nonce'); ?>23 <?php wp_nonce_field(esc_attr(SPDSGVOCommonSettingsActivateAction::getActionName()) . '-nonce'); ?> 24 24 25 25 <div class="form-group"> … … 55 55 <div style="font-weight:500"> 56 56 <?php if (isPremiumEdition()): ?> 57 <?php echo isValidPremiumEdition() ? _e('Premium version has been activated', 'shapepress-dsgvo') : ('<span style ="color: red;">' . __('Invalid or expired license.', 'shapepress-dsgvo') . "</span>"); ?>57 <?php echo wp_kses_post(isValidPremiumEdition() ? _e('Premium version has been activated', 'shapepress-dsgvo') : ('<span style ="color: red;">' . __('Invalid or expired license.', 'shapepress-dsgvo') . "</span>")); ?> 58 58 <?php endif; ?> 59 59 <?php if (isBlogEdition()): ?> 60 <?php echo isValidBlogEdition() ? _e('Blog version has been activated', 'shapepress-dsgvo') : _e('Invalid license.', 'shapepress-dsgvo'); ?>60 <?php echo wp_kses_post(isValidBlogEdition() ? _e('Blog version has been activated', 'shapepress-dsgvo') : _e('Invalid license.', 'shapepress-dsgvo')); ?> 61 61 <?php endif; ?> 62 62 </div> … … 98 98 <form method="post" action="<?php echo esc_attr(admin_url('/admin-ajax.php')); ?>"> 99 99 <input type="hidden" name="action" value="<?php echo SPDSGVOCommonSettingsAction::getActionName() ?>"> 100 <?php wp_nonce_field( SPDSGVOCommonSettingsAction::getActionName() . '-nonce'); ?>100 <?php wp_nonce_field(esc_attr(SPDSGVOCommonSettingsAction::getActionName()) . '-nonce'); ?> 101 101 <input type="hidden" value="<?php echo esc_attr(SPDSGVOSettings::get('dsgvo_licence')); ?>" id="dsgvo_licence_hidden" 102 102 name="dsgvo_licence_hidden"/> … … 190 190 <div class="card-body"> 191 191 <form method="post" action="<?php echo esc_attr(admin_url('/admin-ajax.php')); ?>"> 192 <input type="hidden" name="action" value="<?php echo SPDSGVOPrivacyPolicyAction::getActionName(); ?>">193 <?php wp_nonce_field( SPDSGVOPrivacyPolicyAction::getActionName() . '-nonce'); ?>192 <input type="hidden" name="action" value="<?php echo esc_attr(SPDSGVOPrivacyPolicyAction::getActionName()); ?>"> 193 <?php wp_nonce_field(esc_attr(SPDSGVOPrivacyPolicyAction::getActionName()) . '-nonce'); ?> 194 194 195 195 <div class="form-group"> … … 199 199 <option value="0"><?php _e('Select', 'shapepress-dsgvo'); ?></option> 200 200 <?php foreach (get_pages(array('number' => 0)) as $key => $page): ?> 201 <option <?php echo selected($privacyPolicyPage == $page->ID)?> value="<?php echo esc_attr($page->ID); ?>">201 <option <?php echo esc_attr(selected($privacyPolicyPage == $page->ID)); ?> value="<?php echo esc_attr($page->ID); ?>"> 202 202 <?php echo esc_html($page->post_title); ?> 203 203 </option> … … 240 240 <label for="privacy_policy_title_html_htag"><?php _e('Header stile of title', 'shapepress-dsgvo') ?></label> 241 241 <select class="form-control" name="privacy_policy_title_html_htag" id="privacy_policy_title_html_htag"> 242 <option value="h1" <?php echo selected($hTagTitle == 'h1') ?>>h1</option>243 <option value="h2" <?php echo selected($hTagTitle == 'h2') ?>>h2</option>244 <option value="h3" <?php echo selected($hTagTitle == 'h3') ?>>h3</option>245 <option value="h4" <?php echo selected($hTagTitle == 'h4') ?>>h4</option>246 <option value="h5" <?php echo selected($hTagTitle == 'h5') ?>>h5</option>247 <option value="h6" <?php echo selected($hTagTitle == 'h6') ?>>h6</option>242 <option value="h1" <?php echo esc_attr(selected($hTagTitle == 'h1')) ?>>h1</option> 243 <option value="h2" <?php echo esc_attr(selected($hTagTitle == 'h2')) ?>>h2</option> 244 <option value="h3" <?php echo esc_attr(selected($hTagTitle == 'h3')) ?>>h3</option> 245 <option value="h4" <?php echo esc_attr(selected($hTagTitle == 'h4')) ?>>h4</option> 246 <option value="h5" <?php echo esc_attr(selected($hTagTitle == 'h5')) ?>>h5</option> 247 <option value="h6" <?php echo esc_attr(selected($hTagTitle == 'h6')) ?>>h6</option> 248 248 </select> 249 249 <small class="form-text text-muted"><?php _e('Specifies the html header tag of the header of the privacy policy.', 'shapepress-dsgvo') ?></small> … … 253 253 <label for="privacy_policy_title_html_htag"><?php _e('Header stile of subtitles', 'shapepress-dsgvo') ?></label> 254 254 <select class="form-control" name="privacy_policy_subtitle_html_htag" id="privacy_policy_subtitle_html_htag"> 255 <option value="h1" <?php echo selected($hTagSubTitle == 'h1') ?>>h1</option>256 <option value="h2" <?php echo selected($hTagSubTitle == 'h2') ?>>h2</option>257 <option value="h3" <?php echo selected($hTagSubTitle == 'h3') ?>>h3</option>258 <option value="h4" <?php echo selected($hTagSubTitle == 'h4') ?>>h4</option>259 <option value="h5" <?php echo selected($hTagSubTitle == 'h5') ?>>h5</option>260 <option value="h6" <?php echo selected($hTagSubTitle == 'h6') ?>>h6</option>255 <option value="h1" <?php echo esc_attr(selected($hTagSubTitle == 'h1')) ?>>h1</option> 256 <option value="h2" <?php echo esc_attr(selected($hTagSubTitle == 'h2')) ?>>h2</option> 257 <option value="h3" <?php echo esc_attr(selected($hTagSubTitle == 'h3')) ?>>h3</option> 258 <option value="h4" <?php echo esc_attr(selected($hTagSubTitle == 'h4')) ?>>h4</option> 259 <option value="h5" <?php echo esc_attr(selected($hTagSubTitle == 'h5')) ?>>h5</option> 260 <option value="h6" <?php echo esc_attr(selected($hTagSubTitle == 'h6')) ?>>h6</option> 261 261 </select> 262 262 <small class="form-text text-muted"><?php _e('Specifies the html header tag of the subtitles of the privacy policy.', 'shapepress-dsgvo') ?></small> … … 266 266 <label for="privacy_policy_title_html_htag"><?php _e('Header stile of "subsubtitles"', 'shapepress-dsgvo') ?></label> 267 267 <select class="form-control" name="privacy_policy_subsubtitle_html_htag" id="privacy_policy_subsubtitle_html_htag"> 268 <option value="h1" <?php echo selected($hTagSubSubTitle == 'h1') ?>>h1</option>269 <option value="h2" <?php echo selected($hTagSubSubTitle == 'h2') ?>>h2</option>270 <option value="h3" <?php echo selected($hTagSubSubTitle == 'h3') ?>>h3</option>271 <option value="h4" <?php echo selected($hTagSubSubTitle == 'h4') ?>>h4</option>272 <option value="h5" <?php echo selected($hTagSubSubTitle == 'h5') ?>>h5</option>273 <option value="h6" <?php echo selected($hTagSubSubTitle == 'h6') ?>>h6</option>268 <option value="h1" <?php echo esc_attr(selected($hTagSubSubTitle == 'h1')) ?>>h1</option> 269 <option value="h2" <?php echo esc_attr(selected($hTagSubSubTitle == 'h2')) ?>>h2</option> 270 <option value="h3" <?php echo esc_attr(selected($hTagSubSubTitle == 'h3')) ?>>h3</option> 271 <option value="h4" <?php echo esc_attr(selected($hTagSubSubTitle == 'h4')) ?>>h4</option> 272 <option value="h5" <?php echo esc_attr(selected($hTagSubSubTitle == 'h5')) ?>>h5</option> 273 <option value="h6" <?php echo esc_attr(selected($hTagSubSubTitle == 'h6')) ?>>h6</option> 274 274 </select> 275 275 <small class="form-text text-muted"><?php _e('Specifies the html header tag of the "subsubtitles" of the privacy policy.', 'shapepress-dsgvo') ?></small> … … 302 302 <div class="col"> 303 303 <label for="textsVersion"><?php _e('Last update check','shapepress-dsgvo');?></label> 304 <input type="text" readonly="" class="form-control-plaintext" id="textVersion" value="<?php echo date("d.m.y H:i",SPDSGVOSettings::get('legal_web_texts_last_check'))?>">304 <input type="text" readonly="" class="form-control-plaintext" id="textVersion" value="<?php echo esc_attr(date("d.m.y H:i",SPDSGVOSettings::get('legal_web_texts_last_check')))?>"> 305 305 </div> 306 306 </div> … … 326 326 <form method="post" action="<?php echo esc_url(admin_url('/admin-ajax.php')); ?>"> 327 327 <input type="hidden" name="action" value="<?php echo esc_attr(SPDSGVOCommonSettingsAction::getActionName()); ?>"> 328 <?php wp_nonce_field( SPDSGVOCommonSettingsAction::getActionName() . '-nonce'); ?>328 <?php wp_nonce_field(esc_attr(SPDSGVOCommonSettingsAction::getActionName()) . '-nonce'); ?> 329 329 <input type="hidden" value="<?php echo esc_attr(SPDSGVOSettings::get('dsgvo_licence')); ?>" id="dsgvo_licence_hidden" 330 330 name="dsgvo_licence_hidden"/> -
shapepress-dsgvo/trunk/admin/tabs/v3/embeddings/page.php
r2604113 r2606205 20 20 <input type="hidden" name="action" value="<?php echo esc_attr(SPDSGVOEmbeddingsIntegrationAction::getActionName()); ?>"> 21 21 <input type="hidden" name="saveAction" value="save"> 22 <?php wp_nonce_field( SPDSGVOEmbeddingsIntegrationAction::getActionName() . '-nonce'); ?>22 <?php wp_nonce_field(esc_attr(SPDSGVOEmbeddingsIntegrationAction::getActionName()) . '-nonce'); ?> 23 23 24 24 <?php … … 42 42 <select class="form-control" name="embed_placeholder_border_size_button" 43 43 id="embed_placeholder_border_size_button"> 44 <option value="1px" <?php echo selected($cnButtonBorderSize == '1px') ?>>1px</option>45 <option value="2px" <?php echo selected($cnButtonBorderSize == '2px') ?>>2px</option>46 <option value="3px" <?php echo selected($cnButtonBorderSize == '3px') ?>>3px</option>47 <option value="4px" <?php echo selected($cnButtonBorderSize == '4px') ?>>4px</option>48 <option value="5px" <?php echo selected($cnButtonBorderSize == '5px') ?>>5px</option>44 <option value="1px" <?php echo esc_attr(selected($cnButtonBorderSize == '1px')) ?>>1px</option> 45 <option value="2px" <?php echo esc_attr(selected($cnButtonBorderSize == '2px')) ?>>2px</option> 46 <option value="3px" <?php echo esc_attr(selected($cnButtonBorderSize == '3px')) ?>>3px</option> 47 <option value="4px" <?php echo esc_attr(selected($cnButtonBorderSize == '4px')) ?>>4px</option> 48 <option value="5px" <?php echo esc_attr(selected($cnButtonBorderSize == '5px')) ?>>5px</option> 49 49 </select> 50 50 </div> … … 84 84 <div class="sp-dsgvo-blocked-embedding-placeholder-header"> 85 85 <img class="sp-dsgvo-blocked-embedding-placeholder-header-icon" src="<?php echo esc_url(SPDSGVO::pluginURI('admin/images/legalwebio-logo-icon-black.svg')); ?>"> 86 <?php echo sprintf(__('We need your consent to load the content of %s.','shapepress-dsgvo'), '...'); ?>86 <?php echo esc_html(sprintf(__('We need your consent to load the content of %s.','shapepress-dsgvo'), '...')); ?> 87 87 </div> 88 88 <div class="sp-dsgvo-blocked-embedding-placeholder-body"> … … 97 97 <input type="hidden" name="action" value="<?php echo esc_attr(SPDSGVOEmbeddingsIntegrationAction::getActionName()); ?>"> 98 98 <input type="hidden" name="saveAction" value="restore"> 99 <?php wp_nonce_field( SPDSGVOEmbeddingsIntegrationAction::getActionName() . '-nonce'); ?>99 <?php wp_nonce_field(esc_attr(SPDSGVOEmbeddingsIntegrationAction::getActionName()) . '-nonce'); ?> 100 100 <div class="form-group"> 101 101 <input type="submit" class="btn btn-secondary btn-block" value="<?php _e('Restore defaults', 'shapepress-dsgvo');?>"> … … 122 122 <input type="hidden" name="action" value="<?php echo esc_attr(SPDSGVOEmbeddingsIntegrationAction::getActionName()); ?>"> 123 123 <input type="hidden" name="saveAction" value="common"> 124 <?php wp_nonce_field( SPDSGVOEmbeddingsIntegrationAction::getActionName() . '-nonce'); ?>124 <?php wp_nonce_field(esc_attr(SPDSGVOEmbeddingsIntegrationAction::getActionName()) . '-nonce'); ?> 125 125 <?php 126 126 spDsgvoWriteInput('switch', '', 'embed_enable_js_blocking', SPDSGVOSettings::get('embed_enable_js_blocking'), -
shapepress-dsgvo/trunk/admin/tabs/v3/operator/page.php
r2604113 r2606205 10 10 <form method="post" action="<?php echo esc_url(admin_url('/admin-ajax.php')); ?>"> 11 11 <input type="hidden" name="action" value="<?php echo esc_attr(SPDSGVOOperatorAction::getActionName()); ?>"> 12 <?php wp_nonce_field( SPDSGVOOperatorAction::getActionName() . '-nonce'); ?>12 <?php wp_nonce_field(esc_attr(SPDSGVOOperatorAction::getActionName()) . '-nonce'); ?> 13 13 <!-- operator person details--> 14 14 <div class="card"> … … 19 19 <div class="form"> 20 20 <input type="hidden" name="action" value="<?php echo esc_attr(SPDSGVOOperatorAction::getActionName()); ?>"> 21 <?php wp_nonce_field( SPDSGVOOperatorAction::getActionName() . '-nonce'); ?>21 <?php wp_nonce_field(esc_attr(SPDSGVOOperatorAction::getActionName()) . '-nonce'); ?> 22 22 23 23 <div class="form-group"> … … 47 47 </div> 48 48 49 <div class="page-operator-type-container page-operator-type-container-corporation <?php echo $operatorType == 'corporation' ? 'spdsgvo-d-block' : 'spdsgvo-d-none';?>">49 <div class="page-operator-type-container page-operator-type-container-corporation <?php echo esc_attr($operatorType == 'corporation' ? 'spdsgvo-d-block' : 'spdsgvo-d-none');?>"> 50 50 <?php 51 51 // in case corperate … … 71 71 </div> 72 72 73 <div class="page-operator-type-container page-operator-type-container-one-man <?php echo $operatorType == 'one-man' ? 'spdsgvo-d-block' : 'spdsgvo-d-none';?>">73 <div class="page-operator-type-container page-operator-type-container-one-man <?php echo esc_attr($operatorType == 'one-man' ? 'spdsgvo-d-block' : 'spdsgvo-d-none');?>"> 74 74 <?php 75 75 // in case of one-man … … 89 89 </div> 90 90 91 <div class="page-operator-type-container page-operator-type-container-private <?php echo $operatorType == 'private' ? 'spdsgvo-d-block' : 'spdsgvo-d-none';?>">91 <div class="page-operator-type-container page-operator-type-container-private <?php echo esc_attr($operatorType == 'private' ? 'spdsgvo-d-block' : 'spdsgvo-d-none');?>"> 92 92 <?php 93 93 // in case of private … … 99 99 </div> 100 100 101 <div class="page-operator-type-container page-operator-type-container-society <?php echo $operatorType == 'society' ? 'spdsgvo-d-block' : 'spdsgvo-d-none';?>">101 <div class="page-operator-type-container page-operator-type-container-society <?php echo esc_attr($operatorType == 'society' ? 'spdsgvo-d-block' : 'spdsgvo-d-none');?>"> 102 102 <?php 103 103 … … 123 123 </div> 124 124 125 <div class="page-operator-type-container page-operator-type-container-corp-public-law <?php echo $operatorType == 'corp-public-law' || $operatorType == 'corp-private-law' ? 'spdsgvo-d-block' : 'spdsgvo-d-none';?>">125 <div class="page-operator-type-container page-operator-type-container-corp-public-law <?php echo esc_attr($operatorType == 'corp-public-law' || $operatorType == 'corp-private-law' ? 'spdsgvo-d-block' : 'spdsgvo-d-none');?>"> 126 126 127 127 <?php … … 156 156 $countryList = SPDSGVOConstants::getCountries(); 157 157 ?> 158 <div class="label-operator-type label-operator-type-private <?php echo $operatorType == 'private' ? 'spdsgvo-d-block' : 'spdsgvo-d-none'; ?>">158 <div class="label-operator-type label-operator-type-private <?php echo esc_attr($operatorType == 'private' ? 'spdsgvo-d-block' : 'spdsgvo-d-none'); ?>"> 159 159 <label for="spdsgvo_company_info_countrycode"><?php _e('Place of residence', 'shapepress-dsgvo') ?></label> 160 160 </div> 161 <div class="label-operator-type label-operator-type-one-man <?php echo $operatorType == 'one-man' ? 'spdsgvo-d-block' : 'spdsgvo-d-none'; ?>">161 <div class="label-operator-type label-operator-type-one-man <?php echo esc_attr($operatorType == 'one-man' ? 'spdsgvo-d-block' : 'spdsgvo-d-none'); ?>"> 162 162 <label for="spdsgvo_company_info_countrycode"><?php _e('Registered business address', 'shapepress-dsgvo') ?></label> 163 163 </div> 164 <div class="label-operator-type label-operator-type-society <?php echo $operatorType == 'society' ? 'spdsgvo-d-block' : 'spdsgvo-d-none'; ?>">164 <div class="label-operator-type label-operator-type-society <?php echo esc_attr($operatorType == 'society' ? 'spdsgvo-d-block' : 'spdsgvo-d-none'); ?>"> 165 165 <label for="spdsgvo_company_info_countrycode"><?php _e('Club seat', 'shapepress-dsgvo') ?></label> 166 166 </div> 167 <div class="label-operator-type label-operator-type-corporation <?php echo $operatorType == 'corporation' ? 'spdsgvo-d-block' : 'spdsgvo-d-none'; ?>">167 <div class="label-operator-type label-operator-type-corporation <?php echo esc_attr($operatorType == 'corporation' ? 'spdsgvo-d-block' : 'spdsgvo-d-none'); ?>"> 168 168 <label for="spdsgvo_company_info_countrycode"><?php _e('Registered business address', 'shapepress-dsgvo') ?></label> 169 169 </div> … … 171 171 <select name="spdsgvo_company_info_countrycode" id="spdsgvo_company_info_countrycode" class="form-control"> 172 172 <?php foreach ($countryList as $key => $name) :?> 173 <option value="<?php echo $key?>" <?php selected($selectedCountry, $key); ?>><?php echo $name; ?></option>173 <option value="<?php echo esc_attr($key)?>" <?php selected($selectedCountry, $key); ?>><?php echo esc_html($name); ?></option> 174 174 <?php endforeach; ?> 175 175 </select> … … 216 216 <!-- US privacy shield --> 217 217 218 <div class="page-operator-container-us <?php echo $selectedCountry == 'US' ? 'spdsgvo-d-block' : 'spdsgvo-d-none';?>"">218 <div class="page-operator-container-us <?php echo esc_attr($selectedCountry == 'US' ? 'spdsgvo-d-block' : 'spdsgvo-d-none');?>""> 219 219 <?php 220 220 221 spDsgvoWriteInput('switch', '', 'page_operator_privacy_shield', SPDSGVOSettings::get('page_operator_privacy_shield' , '0'),221 spDsgvoWriteInput('switch', '', 'page_operator_privacy_shield', SPDSGVOSettings::get('page_operator_privacy_shield'), 222 222 __('Privacy Shield', 'shapepress-dsgvo'), 223 223 '', … … 227 227 </div> 228 228 229 <div class="page-operator-type-container page-operator-type-container-one-man page-operator-type-container-corporation page-operator-type-container-society <?php echo $operatorType != 'private' ? 'spdsgvo-d-block' : 'spdsgvo-d-none';?>">229 <div class="page-operator-type-container page-operator-type-container-one-man page-operator-type-container-corporation page-operator-type-container-society <?php echo esc_attr($operatorType != 'private' ? 'spdsgvo-d-block' : 'spdsgvo-d-none');?>"> 230 230 <?php 231 231 spDsgvoWriteInput('text', '', 'spdsgvo_company_fn_nr', SPDSGVOSettings::get('spdsgvo_company_fn_nr'), … … 284 284 <div class="card-body"> 285 285 <div class="form"> 286 <input type="hidden" name="action" value="<?php echo SPDSGVOOperatorAction::getActionName() ?>">287 <?php wp_nonce_field( SPDSGVOOperatorAction::getActionName() . '-nonce'); ?>286 <input type="hidden" name="action" value="<?php echo esc_attr(SPDSGVOOperatorAction::getActionName()) ?>"> 287 <?php wp_nonce_field(esc_attr(SPDSGVOOperatorAction::getActionName()) . '-nonce'); ?> 288 288 289 289 <div class="form-group"> … … 314 314 </div> 315 315 316 <div id="container-pp-responsibility-internal" class="container-pp-responsibility <?php echo $operator_pp_responsibility_type == 'internal' ? 'spdsgvo-d-block' : 'spdsgvo-d-none'?>">316 <div id="container-pp-responsibility-internal" class="container-pp-responsibility <?php echo esc_attr($operator_pp_responsibility_type == 'internal' ? 'spdsgvo-d-block' : 'spdsgvo-d-none');?>"> 317 317 318 318 <label><?php _e('Internal data security officer', 'shapepress-dsgvo') ?></label> … … 342 342 343 343 <div id="container-pp-responsibility-external" 344 class="form-group container-pp-responsibility <?php echo $operator_pp_responsibility_type == 'external' ? 'spdsgvo-d-block' : 'spdsgvo-d-none'?>">344 class="form-group container-pp-responsibility <?php echo esc_attr($operator_pp_responsibility_type == 'external' ? 'spdsgvo-d-block' : 'spdsgvo-d-none');?>"> 345 345 346 346 <label><?php _e('External data security officer', 'shapepress-dsgvo') ?></label> … … 409 409 410 410 <div id="container-pp-responsibility-none" 411 class="form-group container-pp-responsibility <?php echo $operator_pp_responsibility_type == 'none' ? 'spdsgvo-d-block' : 'spdsgvo-d-none'?>">411 class="form-group container-pp-responsibility <?php echo esc_attr($operator_pp_responsibility_type == 'none' ? 'spdsgvo-d-block' : 'spdsgvo-d-none')?>"> 412 412 413 413 <?php $operator_pp_responsibility_contact = SPDSGVOSettings::get('operator_pp_responsibility_contact'); ?> … … 439 439 440 440 <div id="container-dso-contact-internal" 441 class="container-dso-contact <?php echo $operator_pp_responsibility_type == 'none' && $operator_pp_responsibility_contact == 'internal' ? 'spdsgvo-d-block' : 'spdsgvo-d-none'?>">441 class="container-dso-contact <?php echo esc_attr($operator_pp_responsibility_type == 'none' && $operator_pp_responsibility_contact == 'internal' ? 'spdsgvo-d-block' : 'spdsgvo-d-none');?>"> 442 442 443 443 <label><?php _e('Internal contact for privacy issues', 'shapepress-dsgvo') ?></label> … … 467 467 468 468 <div id="container-dso-contact-external" 469 class="container-dso-contact <?php echo $operator_pp_responsibility_type == 'none' && $operator_pp_responsibility_contact == 'external' ? 'spdsgvo-d-block' : 'spdsgvo-d-none'?>">469 class="container-dso-contact <?php echo esc_attr($operator_pp_responsibility_type == 'none' && $operator_pp_responsibility_contact == 'external' ? 'spdsgvo-d-block' : 'spdsgvo-d-none');?>"> 470 470 471 471 <label><?php _e('External contact for privacy issues', 'shapepress-dsgvo') ?></label> … … 550 550 <form method="post" action="<?php echo esc_url(admin_url('/admin-ajax.php')); ?>"> 551 551 <input type="hidden" name="action" value="<?php echo esc_attr(SPDSGVOImprintAction::getActionName()); ?>"> 552 <?php wp_nonce_field( SPDSGVOImprintAction::getActionName() . '-nonce'); ?>552 <?php wp_nonce_field(esc_attr(SPDSGVOImprintAction::getActionName()) . '-nonce'); ?> 553 553 <input type="hidden" name="subform" value="imprint-settings"> 554 554 … … 559 559 <option value="0"><?php _e('Select', 'shapepress-dsgvo'); ?></option> 560 560 <?php foreach (get_pages(array('number' => 0)) as $key => $page): ?> 561 <option <?php echo selected($imprintPage == $page->ID) ?> value="<?php echo $page->ID?>">562 <?php echo $page->post_title?>561 <option <?php echo selected($imprintPage == $page->ID) ?> value="<?php echo esc_attr($page->ID) ?>"> 562 <?php echo esc_html($page->post_title); ?> 563 563 </option> 564 564 <?php endforeach; ?> -
shapepress-dsgvo/trunk/admin/tabs/v3/page-basics/page.php
r2604113 r2606205 7 7 <form method="post" action="<?php echo esc_url(admin_url('/admin-ajax.php')); ?>"> 8 8 <input type="hidden" name="action" value="<?php echo esc_attr(SPDSGVOPageBasicsAction::getActionName()) ?>"> 9 <?php wp_nonce_field( SPDSGVOPageBasicsAction::getActionName() . '-nonce'); ?>9 <?php wp_nonce_field(esc_attr(SPDSGVOPageBasicsAction::getActionName()) . '-nonce'); ?> 10 10 11 11 <div class="card-columns"> … … 18 18 <div class="form"> 19 19 <input type="hidden" name="action" value="<?php echo esc_attr(SPDSGVOPageBasicsAction::getActionName()); ?>"> 20 <?php wp_nonce_field( SPDSGVOPageBasicsAction::getActionName() . '-nonce'); ?>20 <?php wp_nonce_field(esc_attr(SPDSGVOPageBasicsAction::getActionName()) . '-nonce'); ?> 21 21 22 22 <div class="form-group"> … … 73 73 ?> 74 74 75 <div id="container-logfiles-life" class="<?php echo $useLogFiles == 1 ? '' : 'spdsgvo-d-none';?>">75 <div id="container-logfiles-life" class="<?php echo esc_attr($useLogFiles == 1 ? '' : 'spdsgvo-d-none');?>"> 76 76 <?php 77 77 … … 109 109 ?> 110 110 111 <div class="form-group <?php echo $useCdnProvider == 1 ? 'spdsgvo-d-block' : 'spdsgvo-d-none';?>" id="container-basics-use-cdn">111 <div class="form-group <?php echo esc_attr($useCdnProvider == 1 ? 'spdsgvo-d-block' : 'spdsgvo-d-none');?>" id="container-basics-use-cdn"> 112 112 <label><?php _e('CDN Provider', 'shapepress-dsgvo') ?></label> 113 113 <?php … … 167 167 ?> 168 168 169 <div class="form-group <?php echo $usePaymentProvider == 1 ? 'spdsgvo-d-block' : 'spdsgvo-d-none';?>" id="container-basics-use-payment-provider">169 <div class="form-group <?php echo esc_attr($usePaymentProvider == 1 ? 'spdsgvo-d-block' : 'spdsgvo-d-none');?>" id="container-basics-use-payment-provider"> 170 170 <label><?php _e('Payment Provider', 'shapepress-dsgvo') ?></label> 171 171 <?php … … 221 221 ?> 222 222 </div> 223 <div id="container-block-google-fonts" class="<?php echo in_array('google-fonts', $selectedFontProvider) ? 'spdsgvo-d-block' : 'spdsgvo-d-none'?>" style="display: none !important;">223 <div id="container-block-google-fonts" class="<?php echo esc_attr(in_array('google-fonts', $selectedFontProvider) ? 'spdsgvo-d-block' : 'spdsgvo-d-none') ?>" style="display: none !important;"> 224 224 <?php 225 225 spDsgvoWriteInput('switch', ''.$key, 'page_basics_block_google_fonts', SPDSGVOSettings::get('page_basics_use_google_fonts'), … … 281 281 ?> 282 282 283 <div class="container-basics-forms_comments <?php echo checked('1', SPDSGVOSettings::get('page_basics_forms_comments')) ? 'spdsgvo-d-block' : 'spdsgvo-d-none'?>">283 <div class="container-basics-forms_comments <?php echo esc_attr(checked('1', SPDSGVOSettings::get('page_basics_forms_comments')) ? 'spdsgvo-d-block' : 'spdsgvo-d-none'); ?>"> 284 284 285 285 <div class="form-group"> … … 382 382 ?> 383 383 384 <div id="container-basics-use-newsletter" <div class="<?php echo $useNewsletterProvider == 1 ? 'spdsgvo-d-block' : 'spdsgvo-d-none';?>">384 <div id="container-basics-use-newsletter" <div class="<?php echo esc_attr($useNewsletterProvider == 1 ? 'spdsgvo-d-block' : 'spdsgvo-d-none');?>"> 385 385 <div class="form-group"> 386 386 <?php … … 399 399 </div> 400 400 401 <div id="container-other-newsletter" class="lw-form-table <?php echo checked(in_array('other', $selectedNewsletter)) ? 'spdsgvo-d-block' : 'spdsgvo-d-none'?>">401 <div id="container-other-newsletter" class="lw-form-table <?php echo esc_attr(checked(in_array('other', $selectedNewsletter)) ? 'spdsgvo-d-block' : 'spdsgvo-d-none'); ?>"> 402 402 403 403 <div class="form-group"> -
shapepress-dsgvo/trunk/admin/tabs/v3/popup-notice/page.php
r2604113 r2606205 9 9 <form method="post" action="<?php echo esc_url(admin_url('/admin-ajax.php')); ?>"> 10 10 <input type="hidden" name="action" value="<?php echo esc_attr(SPDSGVOCookieNoticeAction::getActionName());?>"> 11 <?php wp_nonce_field( SPDSGVOCookieNoticeAction::getActionName() . '-nonce'); ?>11 <?php wp_nonce_field(esc_attr(SPDSGVOCookieNoticeAction::getActionName()) . '-nonce'); ?> 12 12 <!-- notice/popup general --> 13 13 <div class="card"> … … 63 63 <label for="cn_cookie_validity"><?php _e('Cookie lifetime if accepted', 'shapepress-dsgvo') ?></label> 64 64 <select class="form-control" name="cn_cookie_validity" id="cn_cookie_validity"> 65 <option value="86400" <?php echo selected($cnCookieValidity == 86400) ?>>165 <option value="86400" <?php echo esc_attr(selected($cnCookieValidity == 86400)) ?>>1 66 66 <?php _e('Day', 'shapepress-dsgvo') ?></option> 67 <option value="604800" <?php echo selected($cnCookieValidity == 604800) ?>>167 <option value="604800" <?php echo esc_attr(selected($cnCookieValidity == 604800)) ?>>1 68 68 <?php _e('Week', 'shapepress-dsgvo') ?></option> 69 69 <option value="2592000" 70 <?php echo selected($cnCookieValidity == 2592000) ?>>1 <?php _e('Month',70 <?php echo esc_attr(selected($cnCookieValidity == 2592000)) ?>>1 <?php _e('Month', 71 71 'shapepress-dsgvo') ?></option> 72 72 <option value="7862400" 73 <?php echo selected($cnCookieValidity == 7862400) ?>>2 <?php _e('Month',73 <?php echo esc_attr(selected($cnCookieValidity == 7862400)) ?>>2 <?php _e('Month', 74 74 'shapepress-dsgvo') ?></option> 75 75 <option value="15811200" 76 <?php echo selected($cnCookieValidity == 15811200) ?>>6 <?php _e('Month',76 <?php echo esc_attr(selected($cnCookieValidity == 15811200)) ?>>6 <?php _e('Month', 77 77 'shapepress-dsgvo') ?></option> 78 78 <option value="31536000" 79 <?php echo selected($cnCookieValidity == 31536000) ?>>1 <?php _e('Year',79 <?php echo esc_attr(selected($cnCookieValidity == 31536000)) ?>>1 <?php _e('Year', 80 80 'shapepress-dsgvo') ?></option> 81 81 </select> … … 86 86 <label for="cn_cookie_validity"><?php _e('Cookie lifetime if dismissed', 'shapepress-dsgvo') ?></label> 87 87 <select class="form-control" name="cn_cookie_validity_dismiss" id="cn_cookie_validity_dismiss"> 88 <option value="86400" <?php echo selected($cnCookieValidity == 86400) ?>>188 <option value="86400" <?php echo esc_attr(selected($cnCookieValidity == 86400)) ?>>1 89 89 <?php _e('Day', 'shapepress-dsgvo') ?></option> 90 <option value="604800" <?php echo selected($cnCookieValidity == 604800) ?>>190 <option value="604800" <?php echo esc_attr(selected($cnCookieValidity == 604800)) ?>>1 91 91 <?php _e('Week', 'shapepress-dsgvo') ?></option> 92 92 <option value="2592000" 93 <?php echo selected($cnCookieValidity == 2592000) ?>>1 <?php _e('Month',93 <?php echo esc_attr(selected($cnCookieValidity == 2592000)) ?>>1 <?php _e('Month', 94 94 'shapepress-dsgvo') ?></option> 95 95 <option value="7862400" 96 <?php echo selected($cnCookieValidity == 7862400) ?>>2 <?php _e('Month',96 <?php echo esc_attr(selected($cnCookieValidity == 7862400)) ?>>2 <?php _e('Month', 97 97 'shapepress-dsgvo') ?></option> 98 98 <option value="15811200" 99 <?php echo selected($cnCookieValidity == 15811200) ?>>6 <?php _e('Month',99 <?php echo esc_attr(selected($cnCookieValidity == 15811200)) ?>>6 <?php _e('Month', 100 100 'shapepress-dsgvo') ?></option> 101 101 <option value="31536000" 102 <?php echo selected($cnCookieValidity == 31536000) ?>>1 <?php _e('Year',102 <?php echo esc_attr(selected($cnCookieValidity == 31536000)) ?>>1 <?php _e('Year', 103 103 'shapepress-dsgvo') ?></option> 104 104 </select> … … 162 162 <small class="form-text text-muted"><?php _e('We recommend to use a square image.', 'shapepress-dsgvo') ?></small> 163 163 <div class="image-preview-wrapper d-flex justify-content-center pb-2" > 164 <img id='logo_image-preview' class="image-preview mb-3" src='<?php echo $src; ?>'164 <img id='logo_image-preview' class="image-preview mb-3" src='<?php echo esc_url($src); ?>' 165 165 style="height: 50px"> 166 166 </div> … … 198 198 <?php $cnCookieStyle = SPDSGVOSettings::get('cookie_style'); ?> 199 199 <select class="form-control" id="cookie_style" name="cookie_style" 200 <?php echo $hasValidLicense == false ? 'disabled' : ''; ?>> 201 <option value="00" <?php echo selected($cnCookieStyle == '00') ?>><?php _e('Default', 'shapepress-dsgvo') ?></option> 202 <option value="01" <?php echo selected($cnCookieStyle == '01') ?>>1</option> 203 <option value="02" <?php echo selected($cnCookieStyle == '02') ?>>2</option> 204 <option value="03" <?php echo selected($cnCookieStyle == '03') ?>>3</option> 205 <option value="04" <?php echo selected($cnCookieStyle == '04') ?>>4</option> 206 <option value="05" <?php echo selected($cnCookieStyle == '05') ?>>5</option> 207 <option value="06" <?php echo selected($cnCookieStyle == '06') ?>>6</option> 208 <option value="07" <?php echo selected($cnCookieStyle == '07') ?>>7</option> 209 <option value="08" <?php echo selected($cnCookieStyle == '08') ?>>8</option> 210 <option value="09" <?php echo selected($cnCookieStyle == '09') ?>>9</option> 211 <option value="10" <?php echo selected($cnCookieStyle == '10') ?>>10</option> 212 <option value="11" <?php echo selected($cnCookieStyle == '11') ?>>11</option> 213 <option value="12" <?php echo selected($cnCookieStyle == '12') ?>>12</option> 214 <!-- 215 <option value="13" <?php echo selected($cnCookieStyle == '13') ?>>13</option> 216 <option value="14" <?php echo selected($cnCookieStyle == '14') ?>>14</option> 217 --> 200 <?php echo esc_attr($hasValidLicense == false ? 'disabled' : ''); ?>> 201 <option value="00" <?php echo esc_attr(selected($cnCookieStyle == '00')) ?>><?php _e('Default', 'shapepress-dsgvo') ?></option> 202 <option value="01" <?php echo esc_attr(selected($cnCookieStyle == '01')) ?>>1</option> 203 <option value="02" <?php echo esc_attr(selected($cnCookieStyle == '02')) ?>>2</option> 204 <option value="03" <?php echo esc_attr(selected($cnCookieStyle == '03')) ?>>3</option> 205 <option value="04" <?php echo esc_attr(selected($cnCookieStyle == '04')) ?>>4</option> 206 <option value="05" <?php echo esc_attr(selected($cnCookieStyle == '05')) ?>>5</option> 207 <option value="06" <?php echo esc_attr(selected($cnCookieStyle == '06')) ?>>6</option> 208 <option value="07" <?php echo esc_attr(selected($cnCookieStyle == '07')) ?>>7</option> 209 <option value="08" <?php echo esc_attr(selected($cnCookieStyle == '08')) ?>>8</option> 210 <option value="09" <?php echo esc_attr(selected($cnCookieStyle == '09')) ?>>9</option> 211 <option value="10" <?php echo esc_attr(selected($cnCookieStyle == '10')) ?>>10</option> 212 <option value="11" <?php echo esc_attr(selected($cnCookieStyle == '11')) ?>>11</option> 213 <option value="12" <?php echo esc_attr(selected($cnCookieStyle == '12')) ?>>12</option> 218 214 </select> 219 215 <small class="form-text text-muted"><?php _e('Choose one of our cookie notice style templates.', 'shapepress-dsgvo') ?></small> … … 222 218 223 219 <div class="form-group"> 224 <img src="<?php echo SPDSGVO::pluginURI('admin\images\cookies\Cookie1.png') ?>"220 <img src="<?php echo esc_url(SPDSGVO::pluginURI('admin\images\cookies\Cookie1.png')) ?>" 225 221 class="cookie-style-admin-show--01"> 226 <img src="<?php echo SPDSGVO::pluginURI('admin\images\cookies\Cookie2.png') ?>"222 <img src="<?php echo esc_url(SPDSGVO::pluginURI('admin\images\cookies\Cookie2.png')) ?>" 227 223 class="cookie-style-admin-show--02"> 228 <img src="<?php echo SPDSGVO::pluginURI('admin\images\cookies\Cookie3.png') ?>"224 <img src="<?php echo esc_url(SPDSGVO::pluginURI('admin\images\cookies\Cookie3.png')) ?>" 229 225 class="cookie-style-admin-show--03"> 230 <img src="<?php echo SPDSGVO::pluginURI('admin\images\cookies\Cookie4.png') ?>"226 <img src="<?php echo esc_url(SPDSGVO::pluginURI('admin\images\cookies\Cookie4.png')) ?>" 231 227 class="cookie-style-admin-show--04"> 232 <img src="<?php echo SPDSGVO::pluginURI('admin\images\cookies\Cookie5.png') ?>"228 <img src="<?php echo esc_url(SPDSGVO::pluginURI('admin\images\cookies\Cookie5.png')) ?>" 233 229 class="cookie-style-admin-show--05"> 234 <img src="<?php echo SPDSGVO::pluginURI('admin\images\cookies\Cookie6.png') ?>"230 <img src="<?php echo esc_url(SPDSGVO::pluginURI('admin\images\cookies\Cookie6.png')) ?>" 235 231 class="cookie-style-admin-show--06"> 236 <img src="<?php echo SPDSGVO::pluginURI('admin\images\cookies\Cookie7.png') ?>"232 <img src="<?php echo esc_url(SPDSGVO::pluginURI('admin\images\cookies\Cookie7.png')) ?>" 237 233 class="cookie-style-admin-show--07"> 238 <img src="<?php echo SPDSGVO::pluginURI('admin\images\cookies\Cookie8.png') ?>"234 <img src="<?php echo esc_url(SPDSGVO::pluginURI('admin\images\cookies\Cookie8.png')) ?>" 239 235 class="cookie-style-admin-show--08"> 240 <img src="<?php echo SPDSGVO::pluginURI('admin\images\cookies\Cookie9.png') ?>"236 <img src="<?php echo esc_url(SPDSGVO::pluginURI('admin\images\cookies\Cookie9.png')) ?>" 241 237 class="cookie-style-admin-show--09"> 242 <img src="<?php echo SPDSGVO::pluginURI('admin\images\cookies\Cookie10.png') ?>"238 <img src="<?php echo esc_url(SPDSGVO::pluginURI('admin\images\cookies\Cookie10.png')) ?>" 243 239 class="cookie-style-admin-show--10"> 244 <img src="<?php echo SPDSGVO::pluginURI('admin\images\cookies\Cookie11.png') ?>"240 <img src="<?php echo esc_url(SPDSGVO::pluginURI('admin\images\cookies\Cookie11.png')) ?>" 245 241 class="cookie-style-admin-show--11"> 246 <img src="<?php echo SPDSGVO::pluginURI('admin\images\cookies\Cookie12.png') ?>"242 <img src="<?php echo esc_url(SPDSGVO::pluginURI('admin\images\cookies\Cookie12.png')) ?>" 247 243 class="cookie-style-admin-show--12"> 248 <img src="<?php echo SPDSGVO::pluginURI('admin\images\cookies\Cookie13.png') ?>"244 <img src="<?php echo esc_url(SPDSGVO::pluginURI('admin\images\cookies\Cookie13.png')) ?>" 249 245 class="cookie-style-admin-show--13"> 250 <img src="<?php echo SPDSGVO::pluginURI('admin\images\cookies\Cookie14.png') ?>"246 <img src="<?php echo esc_url(SPDSGVO::pluginURI('admin\images\cookies\Cookie14.png')) ?>" 251 247 class="cookie-style-admin-show--14"> 252 248 </div> … … 267 263 <label for="cn_position"><?php _e('Position:', 'shapepress-dsgvo') ?></label> 268 264 <select class="form-control" name="cn_position" id="cn_position"> 269 <option value="top" <?php echo selected($cnNoticePosition == 'top') ?>><?php _e('On top',265 <option value="top" <?php echo esc_attr(selected($cnNoticePosition == 'top')) ?>><?php _e('On top', 270 266 'shapepress-dsgvo') ?></option> 271 267 <option value="bottom" 272 <?php echo selected($cnNoticePosition == 'bottom') ?>><?php _e('Bottom',268 <?php echo esc_attr(selected($cnNoticePosition == 'bottom')) ?>><?php _e('Bottom', 273 269 'shapepress-dsgvo') ?></option> 274 270 </select> … … 280 276 <label for="cn_animation"><?php _e('Animation', 'shapepress-dsgvo') ?></label> 281 277 <select class="form-control" name="cn_animation" id="cn_animation"> 282 <option value="none" <?php echo selected($cnNoticeAnimation == 'none') ?>><?php _e('None',278 <option value="none" <?php echo esc_attr(selected($cnNoticeAnimation == 'none')) ?>><?php _e('None', 283 279 'shapepress-dsgvo') ?></option> 284 280 <option value="fade" 285 <?php echo selected($cnNoticeAnimation == 'fade') ?>><?php _e('fade',281 <?php echo esc_attr(selected($cnNoticeAnimation == 'fade')) ?>><?php _e('fade', 286 282 'shapepress-dsgvo') ?></option> 287 283 <option value="hide" 288 <?php echo selected($cnNoticeAnimation == 'hide') ?>><?php _e('hide',284 <?php echo esc_attr(selected($cnNoticeAnimation == 'hide')) ?>><?php _e('hide', 289 285 'shapepress-dsgvo') ?></option> 290 286 </select> … … 298 294 <select class="form-control" name="cn_size_text" 299 295 id="cn_size_text"> 300 <option value="inherit" <?php echo selected($cnSizeText == 'inherit') ?>><?php _e('Default',296 <option value="inherit" <?php echo esc_attr(selected($cnSizeText == 'inherit')) ?>><?php _e('Default', 301 297 'shapepress-dsgvo') ?></option> 302 <option value="11px" <?php echo selected($cnSizeText == '11px') ?>>11px</option>303 <option value="12px" <?php echo selected($cnSizeText == '12px') ?>>12px</option>304 <option value="13px" <?php echo selected($cnSizeText == '13px') ?>>13px</option>305 <option value="14px" <?php echo selected($cnSizeText == '14px') ?>>14px</option>306 <option value="15px" <?php echo selected($cnSizeText == '15px') ?>>15px</option>307 <option value="16px" <?php echo selected($cnSizeText == '16px') ?>>16px</option>308 <option value="17px" <?php echo selected($cnSizeText == '17px') ?>>17px</option>309 <option value="18px" <?php echo selected($cnSizeText == '18px') ?>>18px</option>310 <option value="19px" <?php echo selected($cnSizeText == '19px') ?>>19px</option>311 <option value="20px" <?php echo selected($cnSizeText == '20px') ?>>20px</option>298 <option value="11px" <?php echo esc_attr(selected($cnSizeText == '11px')) ?>>11px</option> 299 <option value="12px" <?php echo esc_attr(selected($cnSizeText == '12px')) ?>>12px</option> 300 <option value="13px" <?php echo esc_attr(selected($cnSizeText == '13px')) ?>>13px</option> 301 <option value="14px" <?php echo esc_attr(selected($cnSizeText == '14px')) ?>>14px</option> 302 <option value="15px" <?php echo esc_attr(selected($cnSizeText == '15px')) ?>>15px</option> 303 <option value="16px" <?php echo esc_attr(selected($cnSizeText == '16px')) ?>>16px</option> 304 <option value="17px" <?php echo esc_attr(selected($cnSizeText == '17px')) ?>>17px</option> 305 <option value="18px" <?php echo esc_attr(selected($cnSizeText == '18px')) ?>>18px</option> 306 <option value="19px" <?php echo esc_attr(selected($cnSizeText == '19px')) ?>>19px</option> 307 <option value="20px" <?php echo esc_attr(selected($cnSizeText == '20px')) ?>>20px</option> 312 308 </select> 313 309 </div> … … 315 311 316 312 317 <div class="cn-customize-standard-notice-container <?php echo $cnCookieStyle == '00' ? 'spdsgvo-d-block': 'spdsgvo-d-none'?>">313 <div class="cn-customize-standard-notice-container <?php echo esc_attr($cnCookieStyle == '00' ? 'spdsgvo-d-block': 'spdsgvo-d-none');?>"> 318 314 319 315 … … 352 348 <select class="form-control" name="cn_border_size_button" 353 349 id="cn_border_size_button"> 354 <option value="1px" <?php echo selected($cnButtonBorderSize == '1px') ?>>1px</option>355 <option value="2px" <?php echo selected($cnButtonBorderSize == '2px') ?>>2px</option>356 <option value="3px" <?php echo selected($cnButtonBorderSize == '3px') ?>>3px</option>357 <option value="4px" <?php echo selected($cnButtonBorderSize == '4px') ?>>4px</option>358 <option value="5px" <?php echo selected($cnButtonBorderSize == '5px') ?>>5px</option>350 <option value="1px" <?php echo esc_attr(selected($cnButtonBorderSize == '1px')) ?>>1px</option> 351 <option value="2px" <?php echo esc_attr(selected($cnButtonBorderSize == '2px')) ?>>2px</option> 352 <option value="3px" <?php echo esc_attr(selected($cnButtonBorderSize == '3px')) ?>>3px</option> 353 <option value="4px" <?php echo esc_attr(selected($cnButtonBorderSize == '4px')) ?>>4px</option> 354 <option value="5px" <?php echo esc_attr(selected($cnButtonBorderSize == '5px')) ?>>5px</option> 359 355 </select> 360 356 </div> … … 396 392 <select class="form-control" name="cn_height_container" 397 393 id="cn_height_container"> 398 <option value="auto" <?php echo selected($cnHeightContainer == 'auto') ?>><?php _e('Default',394 <option value="auto" <?php echo esc_attr(selected($cnHeightContainer == 'auto')) ?>><?php _e('Default', 399 395 'shapepress-dsgvo') ?></option> 400 <option value="40px" <?php echo selected($cnHeightContainer == '40px') ?>>40px</option>401 <option value="45px" <?php echo selected($cnHeightContainer == '45px') ?>>45px</option>402 <option value="50px" <?php echo selected($cnHeightContainer == '50px') ?>>50px</option>403 <option value="55px" <?php echo selected($cnHeightContainer == '55px') ?>>55px</option>404 <option value="60px" <?php echo selected($cnHeightContainer == '60px') ?>>60px</option>405 <option value="65px" <?php echo selected($cnHeightContainer == '65px') ?>>65px</option>406 <option value="70px" <?php echo selected($cnHeightContainer == '70px') ?>>70px</option>407 <option value="75px" <?php echo selected($cnHeightContainer == '75px') ?>>75px</option>408 <option value="80px" <?php echo selected($cnHeightContainer == '80px') ?>>80px</option>396 <option value="40px" <?php echo esc_attr(selected($cnHeightContainer == '40px')) ?>>40px</option> 397 <option value="45px" <?php echo esc_attr(selected($cnHeightContainer == '45px')) ?>>45px</option> 398 <option value="50px" <?php echo esc_attr(selected($cnHeightContainer == '50px')) ?>>50px</option> 399 <option value="55px" <?php echo esc_attr(selected($cnHeightContainer == '55px')) ?>>55px</option> 400 <option value="60px" <?php echo esc_attr(selected($cnHeightContainer == '60px')) ?>>60px</option> 401 <option value="65px" <?php echo esc_attr(selected($cnHeightContainer == '65px')) ?>>65px</option> 402 <option value="70px" <?php echo esc_attr(selected($cnHeightContainer == '70px')) ?>>70px</option> 403 <option value="75px" <?php echo esc_attr(selected($cnHeightContainer == '75px')) ?>>75px</option> 404 <option value="80px" <?php echo esc_attr(selected($cnHeightContainer == '80px')) ?>>80px</option> 409 405 </select> 410 406 </div> … … 414 410 415 411 416 <div class="form-group cn-customize-standard-notice-container <?php echo $cnCookieStyle == '00' ? 'spdsgvo-d-block': 'spdsgvo-d-none'?>">412 <div class="form-group cn-customize-standard-notice-container <?php echo esc_attr($cnCookieStyle == '00' ? 'spdsgvo-d-block': 'spdsgvo-d-none');?>"> 417 413 <?php 418 414 spDsgvoWriteInput('toggle', '', 'cn_show_dsgvo_icon', SPDSGVOSettings::get('cn_show_dsgvo_icon'), -
shapepress-dsgvo/trunk/admin/tabs/v3/subject-access-request/page.php
r2604113 r2606205 17 17 <input type="hidden" name="action" value="<?php echo esc_attr(SPDSGVOAdminSubjectAccessRequestAction::getActionName()); ?>"> 18 18 <input type="hidden" name="subform" value="common-settings" /> 19 <?php wp_nonce_field( SPDSGVOAdminSubjectAccessRequestAction::getActionName() . '-nonce'); ?>19 <?php wp_nonce_field(esc_attr(SPDSGVOAdminSubjectAccessRequestAction::getActionName()) . '-nonce'); ?> 20 20 21 21 <div class="form-group"> … … 23 23 <?php $sarCron = SPDSGVOSettings::get('sar_cron'); ?> 24 24 <select class="form-control" name="sar_cron" id="sar_cron"> 25 <option value="0" <?php echo selected($sarCron === '0') ?>><?php _e('none', 'shapepress-dsgvo') ?></option>26 <option value="1" <?php echo selected($sarCron === '1') ?>>25 <option value="0" <?php echo esc_attr(selected($sarCron === '0')) ?>><?php _e('none', 'shapepress-dsgvo') ?></option> 26 <option value="1" <?php echo esc_attr(selected($sarCron === '1')) ?>> 27 27 1 <?php _e('day', 'shapepress-dsgvo') ?></option> 28 <option value="2" <?php echo selected($sarCron === '2') ?>>28 <option value="2" <?php echo esc_attr(selected($sarCron === '2')) ?>> 29 29 2 <?php _e('days', 'shapepress-dsgvo') ?></option> 30 <option value="3" <?php echo selected($sarCron === '3') ?>>30 <option value="3" <?php echo esc_attr(selected($sarCron === '3')) ?>> 31 31 3 <?php _e('days', 'shapepress-dsgvo') ?></option> 32 <option value="7" <?php echo selected($sarCron === '4') ?>>32 <option value="7" <?php echo esc_attr(selected($sarCron === '4')) ?>> 33 33 1 <?php _e('weeks', 'shapepress-dsgvo') ?></option> 34 34 </select> … … 50 50 <option value="0"><?php _e('Select', 'shapepress-dsgvo'); ?></option> 51 51 <?php foreach (get_pages(array('number' => 0)) as $key => $page): ?> 52 <option <?php echo selected($sarPage == $page->ID) ?> value="<?php echo $page->ID?>">52 <option <?php echo esc_attr(selected($sarPage == $page->ID)) ?> value="<?php echo esc_attr($page->ID); ?>"> 53 53 <?php echo esc_html($page->post_title); ?> 54 54 </option> … … 94 94 value="<?php echo esc_attr(SPDSGVOAdminSubjectAccessRequestAction::getActionName()); ?>"> 95 95 <input type="hidden" name="subform" value="notification-settings" /> 96 <?php wp_nonce_field( SPDSGVOAdminSubjectAccessRequestAction::getActionName() . '-nonce'); ?>96 <?php wp_nonce_field(esc_attr(SPDSGVOAdminSubjectAccessRequestAction::getActionName()) . '-nonce'); ?> 97 97 98 98 <div class="position-relative"> … … 173 173 <?php foreach ($pending as $key => $pendingRequest): ?> 174 174 175 <tr class="<?php echo ($key % 2 == 0) ? 'alternate' : ''?>">175 <tr class="<?php echo esc_attr(($key % 2 == 0) ? 'alternate' : ''); ?>"> 176 176 <td class="column-request-id"> 177 <?php echo $pendingRequest->ID?>177 <?php echo esc_html($pendingRequest->ID); ?> 178 178 </td> 179 179 <td class="column-email"><strong><?php echo esc_html($pendingRequest->email); ?></strong> … … 186 186 </td> 187 187 <td class="column-auto-deleting-on"> 188 <?php echo $pendingRequest->dsgvo_accepted === '1' ? __('Yes', 'shapepress-dsgvo') : __('No', 'shapepress-dsgvo')?>188 <?php echo esc_html($pendingRequest->dsgvo_accepted === '1' ? __('Yes', 'shapepress-dsgvo') : __('No', 'shapepress-dsgvo')); ?> 189 189 </td> 190 190 <td class="column-unsubscribe-user"><a class="btn btn-outline-primary" … … 249 249 value="<?php echo esc_attr(SPDSGVOSubjectAccessRequestAction::getActionName()); ?>"> <input 250 250 type="hidden" name="is_admin" value="1"> <br> 251 <?php wp_nonce_field( SPDSGVOSubjectAccessRequestAction::getActionName() . '-nonce'); ?>251 <?php wp_nonce_field(esc_attr(SPDSGVOSubjectAccessRequestAction::getActionName()) . '-nonce'); ?> 252 252 253 253 <?php … … 292 292 ?> 293 293 <div class="form-group"> 294 <input type="submit" class="btn btn-primary btn-block" value="<?php echo _e('Add entry', 'shapepress-dsgvo');?>">294 <input type="submit" class="btn btn-primary btn-block" value="<?php echo esc_attr_e('Add entry', 'shapepress-dsgvo');?>"> 295 295 </div> 296 296 </form> -
shapepress-dsgvo/trunk/admin/tabs/v3/super-unsubscribe/page.php
r2604113 r2606205 15 15 <form method="post" action="<?php echo esc_url(admin_url('/admin-ajax.php')); ?>"> 16 16 <input type="hidden" name="action" value="<?php echo esc_attr(SPDSGVOSuperUnsubscribeAction::getActionName()); ?>"> <input 17 type="hidden" name="CSRF" value="<?php echo sp_dsgvo_CSRF_TOKEN() ?>">17 type="hidden" name="CSRF" value="<?php echo esc_attr(sp_dsgvo_CSRF_TOKEN()) ?>"> 18 18 <input type="hidden" name="subform" value="common-settings" /> 19 <?php wp_nonce_field( SPDSGVOSuperUnsubscribeAction::getActionName() . '-nonce'); ?>19 <?php wp_nonce_field(esc_attr(SPDSGVOSuperUnsubscribeAction::getActionName()) . '-nonce'); ?> 20 20 21 21 <?php … … 30 30 <?php $suAutoDelTime = SPDSGVOSettings::get('su_auto_del_time'); ?> 31 31 <select class="form-control" name="su_auto_del_time" id="su_auto_del_time"> 32 <option value="0" <?php echo selected($suAutoDelTime === '0') ?>><?php _e('none', 'shapepress-dsgvo') ?></option>33 <option value="1m" <?php echo selected($suAutoDelTime === '1m') ?>>32 <option value="0" <?php echo esc_attr(selected($suAutoDelTime === '0')) ?>><?php _e('none', 'shapepress-dsgvo') ?></option> 33 <option value="1m" <?php echo esc_attr(selected($suAutoDelTime === '1m')) ?>> 34 34 1 <?php _e('month', 'shapepress-dsgvo') ?></option> 35 <option value="3m" <?php echo selected($suAutoDelTime === '3m') ?>>35 <option value="3m" <?php echo esc_attr(selected($suAutoDelTime === '3m')) ?>> 36 36 3 <?php _e('months', 'shapepress-dsgvo') ?></option> 37 <option value="6m" <?php echo selected($suAutoDelTime === '6m') ?>>37 <option value="6m" <?php echo esc_attr(selected($suAutoDelTime === '6m')) ?>> 38 38 6 <?php _e('months', 'shapepress-dsgvo') ?></option> 39 <option value="1y" <?php echo selected($suAutoDelTime === '1y') ?>>39 <option value="1y" <?php echo esc_attr(selected($suAutoDelTime === '1y')) ?>> 40 40 1 <?php _e('year', 'shapepress-dsgvo') ?></option> 41 <option value="6y" <?php echo selected($suAutoDelTime === '6y') ?>>41 <option value="6y" <?php echo esc_attr(selected($suAutoDelTime === '6y')) ?>> 42 42 6 <?php _e('years', 'shapepress-dsgvo') ?></option> 43 <option value="7y" <?php echo selected($suAutoDelTime === '7y') ?>>43 <option value="7y" <?php echo esc_attr(selected($suAutoDelTime === '7y')) ?>> 44 44 7 <?php _e('years', 'shapepress-dsgvo') ?></option> 45 45 </select> … … 63 63 <option value="0"><?php _e('Select', 'shapepress-dsgvo'); ?></option> 64 64 <?php foreach (get_pages(array('number' => 0)) as $key => $page): ?> 65 <option <?php echo selected($suPage == $page->ID) ?> value="<?php echo esc_attr($page->ID); ?>">65 <option <?php echo esc_attr(selected($suPage == $page->ID)) ?> value="<?php echo esc_attr($page->ID); ?>"> 66 66 <?php echo esc_html($page->post_title); ?> 67 67 </option> … … 105 105 value="<?php echo esc_attr(SPDSGVOSuperUnsubscribeAction::getActionName()); ?>"> 106 106 <input type="hidden" name="subform" value="integration-settings" /> 107 <?php wp_nonce_field( SPDSGVOSuperUnsubscribeAction::getActionName() . '-nonce'); ?>107 <?php wp_nonce_field(esc_attr(SPDSGVOSuperUnsubscribeAction::getActionName()) . '-nonce'); ?> 108 108 109 109 <div class="position-relative"> … … 114 114 <?php $wooDataAction = SPDSGVOSettings::get('su_woo_data_action'); ?> 115 115 <select class="form-control" name="su_woo_data_action" id="su_woo_data_action"> 116 <option value="ignore" <?php echo selected($wooDataAction === 'ignore') ?>><?php _e('No action', 'shapepress-dsgvo') ?></option>117 <option value="pseudo" <?php echo selected($wooDataAction === 'pseudo') ?>><?php _e('Pseudonymise', 'shapepress-dsgvo') ?></option>118 <option value="del" <?php echo selected($wooDataAction === 'del') ?>><?php _e('Delete', 'shapepress-dsgvo') ?></option>116 <option value="ignore" <?php echo esc_attr(selected($wooDataAction === 'ignore')) ?>><?php _e('No action', 'shapepress-dsgvo') ?></option> 117 <option value="pseudo" <?php echo esc_attr(selected($wooDataAction === 'pseudo')) ?>><?php _e('Pseudonymise', 'shapepress-dsgvo') ?></option> 118 <option value="del" <?php echo esc_attr(selected($wooDataAction === 'del')) ?>><?php _e('Delete', 'shapepress-dsgvo') ?></option> 119 119 </select> 120 120 <small class="form-text text-muted"><?php _e('Specifies what should happen to personal data of orders.', 'shapepress-dsgvo') ?></small> … … 125 125 <?php $bbPDataAction = SPDSGVOSettings::get('su_bbpress_data_action'); ?> 126 126 <select class="form-control" name="su_bbpress_data_action" id="su_bbpress_data_action"> 127 <option value="ignore" <?php echo selected($bbPDataAction === 'ignore') ?>><?php _e('No action', 'shapepress-dsgvo') ?></option>128 <option value="pseudo" <?php echo selected($bbPDataAction === 'pseudo') ?>><?php _e('Pseudonymise', 'shapepress-dsgvo') ?></option>129 <option value="del" <?php echo selected($bbPDataAction === 'del') ?>><?php _e('Delete', 'shapepress-dsgvo') ?></option>127 <option value="ignore" <?php echo esc_attr(selected($bbPDataAction === 'ignore')) ?>><?php _e('No action', 'shapepress-dsgvo') ?></option> 128 <option value="pseudo" <?php echo esc_attr(selected($bbPDataAction === 'pseudo')) ?>><?php _e('Pseudonymise', 'shapepress-dsgvo') ?></option> 129 <option value="del" <?php echo esc_attr(selected($bbPDataAction === 'del')) ?>><?php _e('Delete', 'shapepress-dsgvo') ?></option> 130 130 </select> 131 131 <small class="form-text text-muted"><?php _e('Specifies what should happen with forum entries.', 'shapepress-dsgvo') ?></small> … … 136 136 <?php $buddyPressDataAction = SPDSGVOSettings::get('su_buddypress_data_action'); ?> 137 137 <select class="form-control" name="su_buddypress_data_action" id="su_buddypress_data_action"> 138 <option value="ignore" <?php echo selected($buddyPressDataAction === 'ignore') ?>><?php _e('No action', 'shapepress-dsgvo') ?></option>139 <option value="pseudo" <?php echo selected($buddyPressDataAction === 'pseudo') ?>><?php _e('Pseudonymise', 'shapepress-dsgvo') ?></option>140 <option value="del" <?php echo selected($buddyPressDataAction === 'del') ?>><?php _e('Delete', 'shapepress-dsgvo') ?></option>138 <option value="ignore" <?php echo esc_attr(selected($buddyPressDataAction === 'ignore')) ?>><?php _e('No action', 'shapepress-dsgvo') ?></option> 139 <option value="pseudo" <?php echo esc_attr(selected($buddyPressDataAction === 'pseudo')) ?>><?php _e('Pseudonymise', 'shapepress-dsgvo') ?></option> 140 <option value="del" <?php echo esc_attr(selected($buddyPressDataAction === 'del')) ?>><?php _e('Delete', 'shapepress-dsgvo') ?></option> 141 141 </select> 142 142 <small class="form-text text-muted"><?php _e('Specifies what should happen with forum entries.', 'shapepress-dsgvo') ?></small> … … 147 147 <?php $cf7DataAction = SPDSGVOSettings::get('su_cf7_data_action'); ?> 148 148 <select class="form-control" name="su_cf7_data_action" id="su_cf7_data_action"> 149 <option value="ignore" <?php echo selected($cf7DataAction === 'ignore') ?>><?php _e('No action', 'shapepress-dsgvo') ?></option>150 <option value="pseudo" <?php echo selected($cf7DataAction === 'pseudo') ?>><?php _e('Pseudonymise', 'shapepress-dsgvo') ?></option>151 <option value="del" <?php echo selected($cf7DataAction === 'del') ?>><?php _e('Delete', 'shapepress-dsgvo') ?></option>149 <option value="ignore" <?php echo esc_attr(selected($cf7DataAction === 'ignore')) ?>><?php _e('No action', 'shapepress-dsgvo') ?></option> 150 <option value="pseudo" <?php echo esc_attr(selected($cf7DataAction === 'pseudo')) ?>><?php _e('Pseudonymise', 'shapepress-dsgvo') ?></option> 151 <option value="del" <?php echo esc_attr(selected($cf7DataAction === 'del')) ?>><?php _e('Delete', 'shapepress-dsgvo') ?></option> 152 152 </select> 153 153 <small class="form-text text-muted"><?php _e('Specifies what to do with contact entries and messages.', 'shapepress-dsgvo') ?></small> … … 172 172 value="<?php echo esc_attr(SPDSGVOSuperUnsubscribeAction::getActionName()); ?>"> 173 173 <input type="hidden" name="subform" value="notification-settings" /> 174 <?php wp_nonce_field( SPDSGVOSuperUnsubscribeAction::getActionName() . '-nonce'); ?>174 <?php wp_nonce_field(esc_attr(SPDSGVOSuperUnsubscribeAction::getActionName()) . '-nonce'); ?> 175 175 176 176 <div class="position-relative"> … … 239 239 <a 240 240 href="<?php echo esc_url(SPDSGVO::adminURL(array('tab' => 'super-unsubscribe', 'status' => 'pending'))) ?>" 241 class="<?php echo ($status === 'pending') ? 'current' : ''; ?>" aria-current="page">241 class="<?php echo esc_attr(($status === 'pending') ? 'current' : ''); ?>" aria-current="page"> 242 242 <?php _e('Pending', 'shapepress-dsgvo') ?> 243 243 </a> … … 246 246 <a 247 247 href="<?php echo esc_url(SPDSGVO::adminURL(array('tab' => 'super-unsubscribe', 'status' => 'done'))) ?>" 248 class="<?php echo ($status === 'done') ? 'current' : ''; ?>" aria-current="page">248 class="<?php echo esc_attr(($status === 'done') ? 'current' : ''); ?>" aria-current="page"> 249 249 <?php _e('Done', 'shapepress-dsgvo') ?> 250 250 </a> … … 280 280 <?php foreach ($confirmed as $key => $confirmedRequest): ?> 281 281 282 <tr class="<?php echo ($key % 2 == 0) ? 'alternate' : ''?>">282 <tr class="<?php echo esc_attr(($key % 2 == 0) ? 'alternate' : '') ?>"> 283 283 <td class="column-request-id"> 284 284 <span class="wpk-services-table-name"><?php _e('ID', 'shapepress-dsgvo') ?></span> … … 299 299 <td class="column-auto-deleting-on"> 300 300 <span class="wpk-services-table-name"><?php _e('GDPR approval', 'shapepress-dsgvo') ?></span> 301 <?php echo $confirmedRequest->dsgvo_accepted === '1' ? _e('Yes', 'shapepress-dsgvo') : _e('No', 'shapepress-dsgvo')?>301 <?php echo esc_html($confirmedRequest->dsgvo_accepted === '1' ? _e('Yes', 'shapepress-dsgvo') : _e('No', 'shapepress-dsgvo')); ?> 302 302 </td> 303 303 <td class="column-auto-deleting-on"> … … 383 383 value="<?php echo esc_attr(SPDSGVOSuperUnsubscribeFormAction::getActionName()); ?>"> <input 384 384 type="hidden" name="is_admin" value="1"> <br> 385 <?php wp_nonce_field( SPDSGVOSuperUnsubscribeFormAction::getActionName() . '-nonce'); ?>385 <?php wp_nonce_field(esc_attr(SPDSGVOSuperUnsubscribeFormAction::getActionName()) . '-nonce'); ?> 386 386 387 387 <?php … … 426 426 ?> 427 427 <div class="form-group"> 428 <input type="submit" class="btn btn-primary btn-block" value="<?php echo _e('Add entry', 'shapepress-dsgvo');?>">428 <input type="submit" class="btn btn-primary btn-block" value="<?php echo esc_attr_e('Add entry', 'shapepress-dsgvo');?>"> 429 429 </div> 430 430 </form> -
shapepress-dsgvo/trunk/includes/class-sp-dsgvo-ajax-action.php
r2604113 r2606205 31 31 32 32 protected $action; 33 public $request;34 33 public $user; 35 34 … … 37 36 38 37 public function __construct(){ 39 $this->request = $_REQUEST; // we dont sanitize here, because we sanitize in the get(...) method40 38 if($this->isLoggedIn()){ 41 39 $this->user = wp_get_current_user(); … … 106 104 107 105 $actionName = self::getActionName().'-nonce'; 108 $submittedNonce = $_REQUEST['_wpnonce'];106 $submittedNonce = sanitize_text_field( $_REQUEST['_wpnonce']); 109 107 110 108 if ( wp_verify_nonce( $submittedNonce, $actionName ) ) { … … 161 159 162 160 public function has($key){ 163 if(isset($ this->request[$key])){161 if(isset($_REQUEST[$key])){ 164 162 return TRUE; 165 163 } … … 177 175 if($this->has($key)){ 178 176 179 $result = $this->request[$key];180 181 if(is_array($ this->request[$key])){182 return $ this->request[$key];177 $result = null; 178 179 if(is_array($_REQUEST[$key])){ 180 return $_REQUEST[$key]; 183 181 } 184 if(isset($sanitizeMethod) && function_exists($sanitizeMethod)){ 185 $result = call_user_func($sanitizeMethod, $result); 182 183 if ($sanitizeMethod != 'wp_kses_scripts') { 184 if(isset($sanitizeMethod) && function_exists($sanitizeMethod)){ 185 $result = call_user_func($sanitizeMethod, $_REQUEST[$key]); 186 } 187 } else if ($sanitizeMethod == 'wp_kses_scripts'){ 188 $result = wp_kses($_REQUEST[$key], $this->getAllowedHtmlForScriptsForKses()); 189 } else { 190 return null; 186 191 } 187 192 188 if($stripslashes ){193 if($stripslashes && isset($result)){ 189 194 $result = stripslashes($result); 190 195 } 191 196 192 197 return $result; 198 193 199 } 194 200 return $default; 201 } 202 203 function getAllowedHtmlForScriptsForKses() { 204 return array_merge( 205 wp_kses_allowed_html( 'post' ), 206 array( 207 'script' => array( 208 'type' => array(), 209 'src' => array(), 210 'charset' => array(), 211 'async' => array() 212 ), 213 'noscript' => array(), 214 'style' => array( 215 'type' => array() 216 ), 217 'iframe' => array( 218 'src' => array(), 219 'height' => array(), 220 'width' => array(), 221 'frameborder' => array(), 222 'allowfullscreen' => array() 223 ) 224 ) 225 ); 226 195 227 } 196 228 -
shapepress-dsgvo/trunk/includes/class-sp-dsgvo-embedding-api-base.php
r2604177 r2606205 148 148 public final function checkIfIntegrationIsAllowed($integrationSlug) 149 149 { 150 150 151 // first check if the visitor interacted with our notice/plugin 151 152 $cookieDecisionMade = isset($_COOKIE[SPDSGVOConstants::CCOKIE_NAME]); 152 153 if ($cookieDecisionMade == false) return false; 153 154 154 // the settings are stored in an array like "integration-slug" => '0' 155 $integrationSettings = json_decode(htmlentities(stripslashes($_COOKIE[SPDSGVOConstants::CCOKIE_NAME]), ENT_QUOTES | ENT_HTML5, 'UTF-8')); 156 if (isset($integrationSettings->integrations) == false) return false; 157 158 return in_array($integrationSlug, $integrationSettings->integrations); 155 // the settings are stored in an array like "integration-slug" => '0' 156 $integrationSettings = json_decode(sanitize_text_field(stripslashes($_COOKIE[SPDSGVOConstants::CCOKIE_NAME]))); 157 // check if it is a class and has the property 158 if ($integrationSettings instanceof stdClass == false || !property_exists($integrationSettings, 'integrations')) return false; 159 160 $enabledIntegrations = filter_var_array($integrationSettings->integrations,FILTER_SANITIZE_ENCODED); 161 $integrationSettings = null; // we only need here the array of enabled integrations, which we sanitze and filter in the above lines. the rest gets nulled 162 if ($enabledIntegrations == false || isset($enabledIntegrations) == false) return false; 163 164 return in_array($integrationSlug, $enabledIntegrations); 159 165 160 166 -
shapepress-dsgvo/trunk/includes/class-sp-dsgvo-integration-api-base.php
r2605301 r2606205 223 223 224 224 // the settings are stored in an array like "integration-slug" => '0' 225 $integrationSettings = json_decode(htmlentities(stripslashes($_COOKIE[SPDSGVOConstants::CCOKIE_NAME]), ENT_QUOTES | ENT_HTML5, 'UTF-8')); 226 if (isset($integrationSettings->integrations) == false) return false; 227 228 return in_array($integrationSlug, $integrationSettings->integrations); 225 $integrationSettings = json_decode(sanitize_text_field(stripslashes($_COOKIE[SPDSGVOConstants::CCOKIE_NAME]))); 226 // check if it is a class and has the property 227 if ($integrationSettings instanceof stdClass == false || !property_exists($integrationSettings, 'integrations')) return false; 228 229 $enabledIntegrations = filter_var_array($integrationSettings->integrations,FILTER_SANITIZE_ENCODED); 230 $integrationSettings = null; // we only need here the array of enabled integrations, which we sanitze and filter in the above lines. the rest gets nulled 231 if ($enabledIntegrations == false || isset($enabledIntegrations) == false) return false; 232 233 return in_array($integrationSlug, $enabledIntegrations); 229 234 230 235 -
shapepress-dsgvo/trunk/includes/class-sp-dsgvo-integration.php
r2604235 r2606205 89 89 if($this->has($key)){ 90 90 91 $result = $_REQUEST[$key];91 $result = null; 92 92 93 if(isset($sanitizeMethod) && function_exists($sanitizeMethod)){ 94 $result = call_user_func($sanitizeMethod, $result); 93 if ($sanitizeMethod != 'wp_kses_scripts') { 94 if(isset($sanitizeMethod) && function_exists($sanitizeMethod)){ 95 $result = call_user_func($sanitizeMethod, $_REQUEST[$key]); 96 } 97 } else if ($sanitizeMethod == 'wp_kses_scripts'){ 98 $result = wp_kses($_REQUEST[$key], $this->getAllowedHtmlForScriptsForKses()); 99 } else { 100 return null; 95 101 } 96 102 97 if($stripslashes ){103 if($stripslashes && isset($result)){ 98 104 $result = stripslashes($result); 99 105 } … … 102 108 } 103 109 return $default; 110 } 111 112 function getAllowedHtmlForScriptsForKses() { 113 return array_merge( 114 wp_kses_allowed_html( 'post' ), 115 array( 116 'script' => array( 117 'type' => array(), 118 'src' => array(), 119 'charset' => array(), 120 'async' => array() 121 ), 122 'noscript' => array(), 123 'style' => array( 124 'type' => array() 125 ), 126 'iframe' => array( 127 'src' => array(), 128 'height' => array(), 129 'width' => array(), 130 'frameborder' => array(), 131 'allowfullscreen' => array() 132 ) 133 ) 134 ); 135 104 136 } 105 137 … … 120 152 121 153 $actionName = self::action().'-nonce'; 122 $submittedNonce = $_REQUEST['_wpnonce'];154 $submittedNonce = sanitize_text_field($_REQUEST['_wpnonce']); 123 155 124 156 if ( wp_verify_nonce( $submittedNonce, $actionName ) ) { -
shapepress-dsgvo/trunk/includes/helpers.php
r2604113 r2606205 256 256 function spDsgvoWriteInput($type, $id, $settingsKey, $initalValue, $label, $placeholder, $infoText, $addFormGroup = true, $class = '', $cbValue = '1', $enabled = true, $visible = true ) 257 257 { 258 if ($addFormGroup) echo '<div class="form-group '. ($visible ? '' : 'spdsgvo-d-none') .'">';258 if ($addFormGroup) echo wp_kses_post('<div class="form-group '. ($visible ? '' : 'spdsgvo-d-none') .'">'); 259 259 260 260 … … 273 273 <div class="custom-control custom-<?php echo esc_attr($type);?>"> 274 274 <input type="<?php echo esc_attr($inputType); ?>"" class="custom-control-input <?php echo esc_attr($class);?>" id="<?php echo esc_attr($id);?>" name="<?php echo esc_attr($settingsKey);?>" 275 value="<?php echo esc_attr($cbValue);?>" <?php echo checked($initalValue, $cbValue); ?>276 <?php echo $enabled == false ? 'disabled' : ''?>>275 value="<?php echo esc_attr($cbValue);?>" <?php echo esc_attr(checked($initalValue, $cbValue)); ?> 276 <?php echo esc_attr($enabled == false ? 'disabled' : '');?>> 277 277 278 278 <?php if(empty($label) == false): ?> … … 292 292 <label for="<?php echo esc_attr($id);?>"><?php echo wp_kses_post($label); ?></label> 293 293 <?php endif; ?> 294 <input type="<?php echo $type?>" class="form-control <?php echo esc_attr($class)?>" id="<?php echo esc_attr($id)?>" name="<?php echo esc_attr($settingsKey)?>" placeholder="<?php echo esc_attr($placeholder);?>"295 value="<?php echo esc_attr($initalValue); ?>" <?php echo $enabled == false ? 'readonly' : ''?>>294 <input type="<?php echo esc_attr($type)?>" class="form-control <?php echo esc_attr($class)?>" id="<?php echo esc_attr($id)?>" name="<?php echo esc_attr($settingsKey)?>" placeholder="<?php echo esc_attr($placeholder);?>" 295 value="<?php echo esc_attr($initalValue); ?>" <?php echo esc_attr($enabled == false ? 'readonly' : '');?>> 296 296 <?php if(empty($infoText) == false): ?> 297 297 <small class="form-text text-muted"><?php echo wp_kses_post($infoText) ?></small> … … 307 307 <label for="<?php echo esc_attr($id)?>"><?php echo wp_kses_post($label); ?></label> 308 308 <?php endif; ?> 309 <textarea rows="5" class="form-control <?php echo esc_attr($class);?>" id="<?php echo esc_attr($id);?>" name="<?php echo esc_attr($settingsKey)?>" placeholder="<?php echo esc_attr($placeholder);?>" <?php echo $enabled == false ? 'disabled' : ''?>><?php echo esc_textarea($initalValue); ?></textarea>309 <textarea rows="5" class="form-control <?php echo esc_attr($class);?>" id="<?php echo esc_attr($id);?>" name="<?php echo esc_attr($settingsKey)?>" placeholder="<?php echo esc_attr($placeholder);?>" <?php echo esc_attr($enabled == false ? 'disabled' : '');?>><?php echo esc_textarea($initalValue); ?></textarea> 310 310 <?php if(empty($infoText) == false): ?> 311 311 <small class="form-text text-muted"><?php echo wp_kses_post($infoText) ?></small> … … 328 328 ?> 329 329 330 <label for="<?php echo $id?>"><?php echo esc_html($label); ?></label>330 <label for="<?php echo esc_attr($id);?>"><?php echo esc_html($label); ?></label> 331 331 <select class="form-control <?php echo esc_attr($class);?>" id="<?php echo esc_attr($id);?>" name="<?php echo esc_attr($settingsKey)?>"> 332 332 … … 337 337 <?php foreach ($elements as $id => $element) :?> 338 338 339 <option value="<?php echo esc_attr($id); ?>" <?php echo selected($id == $initalValue) ?>><?php echo esc_html($element); ?></option>339 <option value="<?php echo esc_attr($id); ?>" <?php echo esc_attr(selected($id == $initalValue)) ?>><?php echo esc_html($element); ?></option> 340 340 341 341 <?php endforeach; ?> -
shapepress-dsgvo/trunk/includes/integrations/embeddings/facebook-feed/page.php
r2604177 r2606205 17 17 <form method="post" action="<?php echo esc_url(SPDSGVOFacebookFeedIntegration::formURL()) ?>"> 18 18 <input type="hidden" name="action" value="<?php echo esc_attr(SPDSGVOFacebookFeedIntegration::action()); ?>"> 19 <?php wp_nonce_field( SPDSGVOFacebookFeedIntegration::action() . '-nonce'); ?>19 <?php wp_nonce_field(esc_attr(SPDSGVOFacebookFeedIntegration::action()) . '-nonce'); ?> 20 20 21 21 <?php -
shapepress-dsgvo/trunk/includes/integrations/embeddings/gmaps/page.php
r2604177 r2606205 17 17 <form method="post" action="<?php echo esc_url(SPDSGVOGmapsIntegration::formURL()); ?>"> 18 18 <input type="hidden" name="action" value="<?php echo esc_attr(SPDSGVOGmapsIntegration::action()) ?>"> 19 <?php wp_nonce_field( SPDSGVOGmapsIntegration::action() . '-nonce'); ?>19 <?php wp_nonce_field(esc_attr(SPDSGVOGmapsIntegration::action()) . '-nonce'); ?> 20 20 21 21 <?php -
shapepress-dsgvo/trunk/includes/integrations/embeddings/instagram/page.php
r2604177 r2606205 17 17 <form method="post" action="<?php echo esc_url(SPDSGVOInstagramIntegration::formURL()); ?>"> 18 18 <input type="hidden" name="action" value="<?php echo esc_attr(SPDSGVOInstagramIntegration::action()) ?>"> 19 <?php wp_nonce_field( SPDSGVOInstagramIntegration::action() . '-nonce'); ?>19 <?php wp_nonce_field(esc_attr(SPDSGVOInstagramIntegration::action()) . '-nonce'); ?> 20 20 21 21 <?php -
shapepress-dsgvo/trunk/includes/integrations/embeddings/openstreetmap/page.php
r2604177 r2606205 17 17 <form method="post" action="<?php echo esc_url(SPDSGVOOpenstreetmapIntegration::formURL()) ?>"> 18 18 <input type="hidden" name="action" value="<?php echo esc_attr(SPDSGVOOpenstreetmapIntegration::action()) ?>"> 19 <?php wp_nonce_field( SPDSGVOOpenstreetmapIntegration::action() . '-nonce'); ?>19 <?php wp_nonce_field(esc_attr(SPDSGVOOpenstreetmapIntegration::action()) . '-nonce'); ?> 20 20 21 21 <?php -
shapepress-dsgvo/trunk/includes/integrations/embeddings/soundcloud/page.php
r2604177 r2606205 17 17 <form method="post" action="<?php echo esc_url(SPDSGVOSoundcloudIntegration::formURL()) ?>"> 18 18 <input type="hidden" name="action" value="<?php echo esc_attr(SPDSGVOSoundcloudIntegration::action()) ?>"> 19 <?php wp_nonce_field( SPDSGVOSoundcloudIntegration::action() . '-nonce'); ?>19 <?php wp_nonce_field(esc_attr(SPDSGVOSoundcloudIntegration::action()) . '-nonce'); ?> 20 20 21 21 <?php -
shapepress-dsgvo/trunk/includes/integrations/embeddings/twitter/page.php
r2604177 r2606205 17 17 <form method="post" action="<?php echo esc_url(SPDSGVOTwitterIntegration::formURL()); ?>"> 18 18 <input type="hidden" name="action" value="<?php echo esc_attr(SPDSGVOTwitterIntegration::action()) ?>"> 19 <?php wp_nonce_field( SPDSGVOTwitterIntegration::action() . '-nonce'); ?>19 <?php wp_nonce_field(esc_attr(SPDSGVOTwitterIntegration::action()) . '-nonce'); ?> 20 20 21 21 <?php -
shapepress-dsgvo/trunk/includes/integrations/embeddings/vimeo/page.php
r2604177 r2606205 17 17 <form method="post" action="<?php echo esc_url(SPDSGVOVimeoIntegration::formURL()) ?>"> 18 18 <input type="hidden" name="action" value="<?php echo esc_attr(SPDSGVOVimeoIntegration::action()) ?>"> 19 <?php wp_nonce_field( SPDSGVOVimeoIntegration::action() . '-nonce'); ?>19 <?php wp_nonce_field(esc_attr(SPDSGVOVimeoIntegration::action()) . '-nonce'); ?> 20 20 21 21 <?php -
shapepress-dsgvo/trunk/includes/integrations/embeddings/youtube/page.php
r2604177 r2606205 17 17 <form method="post" action="<?php echo esc_url(SPDSGVOYoutubeIntegration::formURL()) ?>"> 18 18 <input type="hidden" name="action" value="<?php echo esc_attr(SPDSGVOYoutubeIntegration::action()) ?>"> 19 <?php wp_nonce_field( SPDSGVOYoutubeIntegration::action() . '-nonce'); ?>19 <?php wp_nonce_field(esc_attr(SPDSGVOYoutubeIntegration::action()) . '-nonce'); ?> 20 20 21 21 <?php -
shapepress-dsgvo/trunk/includes/integrations/statistics/clicky/class-sp-dsgvo-clicky-integration.php
r2604177 r2606205 42 42 if ($settings['useOwnCode'] == '1') 43 43 { 44 $settings['jsCode'] = $this->get($this->slug.'_code', SPDSGVOClickyApi::getInstance()->getDefaultJsCode($settings['propertyId']), NULL);44 $settings['jsCode'] = $this->get($this->slug.'_code', SPDSGVOClickyApi::getInstance()->getDefaultJsCode($settings['propertyId']), 'wp_kses_scripts'); 45 45 } else 46 46 { -
shapepress-dsgvo/trunk/includes/integrations/statistics/clicky/page.php
r2604177 r2606205 16 16 <form method="post" action="<?php echo esc_url(SPDSGVOClickyIntegration::formURL()) ?>"> 17 17 <input type="hidden" name="action" value="<?php echo esc_attr(SPDSGVOClickyIntegration::action()) ?>"> 18 <?php wp_nonce_field( SPDSGVOClickyIntegration::action() . '-nonce'); ?>18 <?php wp_nonce_field(esc_attr(SPDSGVOClickyIntegration::action()) . '-nonce'); ?> 19 19 20 20 <?php -
shapepress-dsgvo/trunk/includes/integrations/statistics/etracker/class-sp-dsgvo-etracker-integration.php
r2604177 r2606205 42 42 if ($settings['useOwnCode'] == '1') 43 43 { 44 $settings['jsCode'] = $this->get($this->slug.'_code', SPDSGVOEtrackerApi::getInstance()->getDefaultJsCode($settings['propertyId']), NULL);44 $settings['jsCode'] = $this->get($this->slug.'_code', SPDSGVOEtrackerApi::getInstance()->getDefaultJsCode($settings['propertyId']), 'wp_kses_scripts'); 45 45 } else 46 46 { -
shapepress-dsgvo/trunk/includes/integrations/statistics/etracker/page.php
r2604177 r2606205 18 18 <form method="post" action="<?php echo esc_url(SPDSGVOEtrackerIntegration::formURL()) ?>"> 19 19 <input type="hidden" name="action" value="<?php echo esc_attr(SPDSGVOEtrackerIntegration::action()) ?>"> 20 <?php wp_nonce_field( SPDSGVOEtrackerIntegration::action() . '-nonce'); ?>20 <?php wp_nonce_field(esc_attr(SPDSGVOEtrackerIntegration::action()) . '-nonce'); ?> 21 21 22 22 <?php -
shapepress-dsgvo/trunk/includes/integrations/statistics/googleanalytics/class-sp-dsgvo-google-analytics-integration.php
r2604177 r2606205 36 36 if ($settings['useOwnCode'] == '1') 37 37 { 38 $settings['jsCode'] = $this->get('ga_code', SPDSGVOGoogleAnalyticsApi::getInstance()->getDefaultJsCode($settings['propertyId']), NULL);38 $settings['jsCode'] = $this->get('ga_code', SPDSGVOGoogleAnalyticsApi::getInstance()->getDefaultJsCode($settings['propertyId']), 'wp_kses_scripts'); 39 39 } else 40 40 { -
shapepress-dsgvo/trunk/includes/integrations/statistics/googleanalytics/page.php
r2604177 r2606205 15 15 <form method="post" action="<?php echo esc_url(SPDSGVOGoogleAnalyticsIntegration::formURL()) ?>"> 16 16 <input type="hidden" name="action" value="<?php echo esc_attr(SPDSGVOGoogleAnalyticsIntegration::action()) ?>"> 17 <?php wp_nonce_field( SPDSGVOGoogleAnalyticsIntegration::action() . '-nonce'); ?>17 <?php wp_nonce_field(esc_attr(SPDSGVOGoogleAnalyticsIntegration::action()) . '-nonce'); ?> 18 18 19 19 <?php -
shapepress-dsgvo/trunk/includes/integrations/statistics/hotjar/class-sp-dsgvo-hotjar-integration.php
r2604177 r2606205 44 44 if ($settings['useOwnCode'] == '1') 45 45 { 46 $settings['jsCode'] = $this->get($this->slug.'_code', SPDSGVOHotjarApi::getInstance()->getDefaultJsCode($settings['propertyId']), NULL);46 $settings['jsCode'] = $this->get($this->slug.'_code', SPDSGVOHotjarApi::getInstance()->getDefaultJsCode($settings['propertyId']), 'wp_kses_scripts'); 47 47 } else 48 48 { -
shapepress-dsgvo/trunk/includes/integrations/statistics/hotjar/page.php
r2604177 r2606205 20 20 <form method="post" action="<?php echo esc_url(SPDSGVOHotjarIntegration::formURL()) ?>"> 21 21 <input type="hidden" name="action" value="<?php echo esc_attr(SPDSGVOHotjarIntegration::action()) ?>"> 22 <?php wp_nonce_field( SPDSGVOHotjarIntegration::action() . '-nonce'); ?>22 <?php wp_nonce_field(esc_attr(SPDSGVOHotjarIntegration::action()) . '-nonce'); ?> 23 23 24 24 <?php -
shapepress-dsgvo/trunk/includes/integrations/statistics/matomo/class-sp-dsgvo-matomo-integration.php
r2604177 r2606205 39 39 if ($settings['useOwnCode'] == '1') 40 40 { 41 $settings['jsCode'] = $this->get($this->slug.'_code', SPDSGVOMatomoApi::getInstance()->getDefaultJsCode($settings['propertyId']), NULL);41 $settings['jsCode'] = $this->get($this->slug.'_code', SPDSGVOMatomoApi::getInstance()->getDefaultJsCode($settings['propertyId']), 'wp_kses_scripts'); 42 42 } else 43 43 { -
shapepress-dsgvo/trunk/includes/integrations/statistics/matomo/page.php
r2604177 r2606205 17 17 <form method="post" action="<?php echo esc_url(SPDSGVOMatomoIntegration::formURL()) ?>"> 18 18 <input type="hidden" name="action" value="<?php echo esc_attr(SPDSGVOMatomoIntegration::action()) ?>"> 19 <?php wp_nonce_field( SPDSGVOMatomoIntegration::action() . '-nonce'); ?>19 <?php wp_nonce_field(esc_attr(SPDSGVOMatomoIntegration::action()) . '-nonce'); ?> 20 20 21 21 <?php -
shapepress-dsgvo/trunk/includes/integrations/statistics/mautic/class-sp-dsgvo-mautic-integration.php
r2604177 r2606205 39 39 if ($settings['useOwnCode'] == '1') 40 40 { 41 $settings['jsCode'] = $this->get($this->slug.'_code', SPDSGVOMauticApi::getInstance()->getDefaultJsCode($settings['propertyId']), NULL);41 $settings['jsCode'] = $this->get($this->slug.'_code', SPDSGVOMauticApi::getInstance()->getDefaultJsCode($settings['propertyId']), 'wp_kses_scripts'); 42 42 } else 43 43 { -
shapepress-dsgvo/trunk/includes/integrations/statistics/mautic/page.php
r2604177 r2606205 17 17 <form method="post" action="<?php echo esc_url(SPDSGVOMauticIntegration::formURL()) ?>"> 18 18 <input type="hidden" name="action" value="<?php echo esc_attr(SPDSGVOMauticIntegration::action()) ?>"> 19 <?php wp_nonce_field( SPDSGVOMauticIntegration::action() . '-nonce'); ?>19 <?php wp_nonce_field(esc_attr(SPDSGVOMauticIntegration::action()) . '-nonce'); ?> 20 20 21 21 <?php -
shapepress-dsgvo/trunk/includes/integrations/statistics/piwik/class-sp-dsgvo-piwik-integration.php
r2604177 r2606205 45 45 if ($settings['useOwnCode'] == '1') 46 46 { 47 $settings['jsCode'] = $this->get($this->slug.'_code', SPDSGVOPiwikApi::getInstance()->getDefaultJsCode($settings['propertyId']), NULL);47 $settings['jsCode'] = $this->get($this->slug.'_code', SPDSGVOPiwikApi::getInstance()->getDefaultJsCode($settings['propertyId']), 'wp_kses_scripts'); 48 48 } else 49 49 { -
shapepress-dsgvo/trunk/includes/integrations/statistics/piwik/page.php
r2604177 r2606205 18 18 <form method="post" action="<?php echo esc_url(SPDSGVOPiwikIntegration::formURL()) ?>"> 19 19 <input type="hidden" name="action" value="<?php echo esc_attr(SPDSGVOPiwikIntegration::action()) ?>"> 20 <?php wp_nonce_field( SPDSGVOPiwikIntegration::action() . '-nonce'); ?>20 <?php wp_nonce_field(esc_attr(SPDSGVOPiwikIntegration::action()) . '-nonce'); ?> 21 21 22 22 <?php -
shapepress-dsgvo/trunk/includes/integrations/statistics/wpstatistics/page.php
r2604177 r2606205 18 18 <form method="post" action="<?php echo esc_url(SPDSGVOWpStatisticsIntegration::formURL()) ?>"> 19 19 <input type="hidden" name="action" value="<?php echo esc_attr(SPDSGVOWpStatisticsIntegration::action()) ?>"> 20 <?php wp_nonce_field( SPDSGVOWpStatisticsIntegration::action() . '-nonce'); ?>20 <?php wp_nonce_field(esc_attr(SPDSGVOWpStatisticsIntegration::action()) . '-nonce'); ?> 21 21 22 22 <?php -
shapepress-dsgvo/trunk/includes/integrations/tagmanager/googletagmanager/class-sp-dsgvo-google-tagmanager-integration.php
r2604177 r2606205 43 43 if ($settings['useOwnCode'] == '1') 44 44 { 45 $settings['jsCode'] = $this->get('gtag_code', SPDSGVOGoogleTagmanagerApi::getInstance()->getDefaultJsCode($settings['propertyId']), NULL);45 $settings['jsCode'] = $this->get('gtag_code', SPDSGVOGoogleTagmanagerApi::getInstance()->getDefaultJsCode($settings['propertyId']), 'wp_kses_scripts'); 46 46 } else 47 47 { -
shapepress-dsgvo/trunk/includes/integrations/tagmanager/googletagmanager/page.php
r2604177 r2606205 15 15 <div class="position-relative"> 16 16 <?php spDsgvoWritePremiumOverlayIfInvalid($hasValidLicense); ?> 17 <form method="post" action="<?php echo SPDSGVOGoogleTagmanagerIntegration::formURL() ?>">18 <input type="hidden" name="action" value="<?php echo SPDSGVOGoogleTagmanagerIntegration::action() ?>">19 <?php wp_nonce_field(SPDSGVOGoogleTagmanagerIntegration::action() . '-nonce'); ?>17 <form method="post" action="<?php echo esc_url(SPDSGVOGoogleTagmanagerIntegration::formURL()) ?>"> 18 <input type="hidden" name="action" value="<?php echo esc_attr(SPDSGVOGoogleTagmanagerIntegration::action()) ?>"> 19 <?php esc_attr(wp_nonce_field(SPDSGVOGoogleTagmanagerIntegration::action()) . '-nonce'); ?> 20 20 21 21 <?php -
shapepress-dsgvo/trunk/includes/integrations/tagmanager/matomotagmanager/class-sp-dsgvo-matomo-tagmanager-integration.php
r2604177 r2606205 43 43 if ($settings['useOwnCode'] == '1') 44 44 { 45 $settings['jsCode'] = $this->get($this->slug.'_code', SPDSGVOMatomoTagmanagerApi::getInstance()->getDefaultJsCode($settings['propertyId']), NULL);45 $settings['jsCode'] = $this->get($this->slug.'_code', SPDSGVOMatomoTagmanagerApi::getInstance()->getDefaultJsCode($settings['propertyId']), 'wp_kses_scripts'); 46 46 } else 47 47 { -
shapepress-dsgvo/trunk/includes/integrations/tagmanager/matomotagmanager/page.php
r2604177 r2606205 18 18 <form method="post" action="<?php echo esc_url(SPDSGVOMatomoTagmanagerIntegration::formURL()) ?>"> 19 19 <input type="hidden" name="action" value="<?php echo esc_attr(SPDSGVOMatomoTagmanagerIntegration::action()) ?>"> 20 <?php wp_nonce_field( SPDSGVOMatomoTagmanagerIntegration::action() . '-nonce'); ?>20 <?php wp_nonce_field(esc_attr(SPDSGVOMatomoTagmanagerIntegration::action()) . '-nonce'); ?> 21 21 22 22 <?php -
shapepress-dsgvo/trunk/includes/integrations/targeting/bingadsuet/class-sp-dsgvo-bing-ads-uet-integration.php
r2604177 r2606205 45 45 if ($settings['useOwnCode'] == '1') 46 46 { 47 $settings['jsCode'] = $this->get($this->slug.'_code', SPDSGVOBingAdsUetApi::getInstance()->getDefaultJsCode($settings['propertyId']), NULL);47 $settings['jsCode'] = $this->get($this->slug.'_code', SPDSGVOBingAdsUetApi::getInstance()->getDefaultJsCode($settings['propertyId']), 'wp_kses_scripts'); 48 48 } else 49 49 { -
shapepress-dsgvo/trunk/includes/integrations/targeting/bingadsuet/page.php
r2604177 r2606205 20 20 <form method="post" action="<?php echo esc_url(SPDSGVOBingAdsUetIntegration::formURL()) ?>"> 21 21 <input type="hidden" name="action" value="<?php echo esc_attr(SPDSGVOBingAdsUetIntegration::action()) ?>"> 22 <?php wp_nonce_field( SPDSGVOBingAdsUetIntegration::action() . '-nonce'); ?>22 <?php wp_nonce_field(esc_attr(SPDSGVOBingAdsUetIntegration::action()) . '-nonce'); ?> 23 23 24 24 <?php -
shapepress-dsgvo/trunk/includes/integrations/targeting/criteo/class-sp-dsgvo-criteo-integration.php
r2604177 r2606205 43 43 if ($settings['useOwnCode'] == '1') 44 44 { 45 $settings['jsCode'] = $this->get($this->slug.'_code', SPDSGVOCriteoApi::getInstance()->getDefaultJsCode($settings['propertyId']), NULL);45 $settings['jsCode'] = $this->get($this->slug.'_code', SPDSGVOCriteoApi::getInstance()->getDefaultJsCode($settings['propertyId']), 'wp_kses_scripts'); 46 46 } else 47 47 { -
shapepress-dsgvo/trunk/includes/integrations/targeting/criteo/page.php
r2604177 r2606205 20 20 <form method="post" action="<?php echo esc_url(SPDSGVOCriteoIntegration::formURL()) ?>"> 21 21 <input type="hidden" name="action" value="<?php echo esc_attr(SPDSGVOCriteoIntegration::action()) ?>"> 22 <?php wp_nonce_field( SPDSGVOCriteoIntegration::action() . '-nonce'); ?>22 <?php wp_nonce_field(esc_attr(SPDSGVOCriteoIntegration::action()) . '-nonce'); ?> 23 23 24 24 <?php -
shapepress-dsgvo/trunk/includes/integrations/targeting/fbpixel/class-sp-dsgvo-fb-pixel-integration.php
r2604177 r2606205 44 44 if ($settings['useOwnCode'] == '1') 45 45 { 46 $settings['jsCode'] = $this->get('fbpixel_code', SPDSGVOFbPixelApi::getInstance()->getDefaultJsCode($settings['propertyId']), NULL);46 $settings['jsCode'] = $this->get('fbpixel_code', SPDSGVOFbPixelApi::getInstance()->getDefaultJsCode($settings['propertyId']), 'wp_kses_scripts'); 47 47 } else 48 48 { -
shapepress-dsgvo/trunk/includes/integrations/targeting/fbpixel/page.php
r2604177 r2606205 18 18 <form method="post" action="<?php echo esc_url(SPDSGVOFbPixelIntegration::formURL()) ?>"> 19 19 <input type="hidden" name="action" value="<?php echo esc_attr(SPDSGVOFbPixelIntegration::action()) ?>"> 20 <?php wp_nonce_field( SPDSGVOFbPixelIntegration::action() . '-nonce'); ?>20 <?php wp_nonce_field(esc_attr(SPDSGVOFbPixelIntegration::action()) . '-nonce'); ?> 21 21 22 22 -
shapepress-dsgvo/trunk/includes/integrations/targeting/gadsense/class-sp-dsgvo-gadsense-integration.php
r2604177 r2606205 44 44 if ($settings['useOwnCode'] == '1') 45 45 { 46 $settings['jsCode'] = $this->get($this->slug.'_code', SPDSGVOGadsenseApi::getInstance()->getDefaultJsCode($settings['propertyId']), NULL);46 $settings['jsCode'] = $this->get($this->slug.'_code', SPDSGVOGadsenseApi::getInstance()->getDefaultJsCode($settings['propertyId']), 'wp_kses_scripts'); 47 47 } else 48 48 { -
shapepress-dsgvo/trunk/includes/integrations/targeting/gadsense/page.php
r2604177 r2606205 16 16 <form method="post" action="<?php echo esc_url(SPDSGVOGadsenseIntegration::formURL()) ?>"> 17 17 <input type="hidden" name="action" value="<?php echo esc_attr(SPDSGVOGadsenseIntegration::action()) ?>"> 18 <?php wp_nonce_field( SPDSGVOGadsenseIntegration::action() . '-nonce'); ?>18 <?php wp_nonce_field(esc_attr(SPDSGVOGadsenseIntegration::action()) . '-nonce'); ?> 19 19 20 20 -
shapepress-dsgvo/trunk/includes/integrations/targeting/linkedinpixel/class-sp-dsgvo-linkedin-pixel-integration.php
r2604177 r2606205 44 44 if ($settings['useOwnCode'] == '1') 45 45 { 46 $settings['jsCode'] = $this->get($this->slug.'_code', SPDSGVOLinkedInPixelApi::getInstance()->getDefaultJsCode($settings['propertyId']), NULL);46 $settings['jsCode'] = $this->get($this->slug.'_code', SPDSGVOLinkedInPixelApi::getInstance()->getDefaultJsCode($settings['propertyId']), 'wp_kses_scripts'); 47 47 } else 48 48 { -
shapepress-dsgvo/trunk/includes/integrations/targeting/linkedinpixel/page.php
r2604177 r2606205 20 20 <form method="post" action="<?php echo esc_url(SPDSGVOLinkedInPixelIntegration::formURL()) ?>"> 21 21 <input type="hidden" name="action" value="<?php echo esc_attr(SPDSGVOLinkedInPixelIntegration::action()) ?>"> 22 <?php wp_nonce_field( SPDSGVOLinkedInPixelIntegration::action() . '-nonce'); ?>22 <?php wp_nonce_field(esc_attr(SPDSGVOLinkedInPixelIntegration::action()) . '-nonce'); ?> 23 23 24 24 <?php -
shapepress-dsgvo/trunk/public/class-sp-dsgvo-public.php
r2604113 r2606205 97 97 } 98 98 99 /**100 * Checks if cookie is setted101 *102 * @return bool103 */104 public function cookies_set()105 {106 return apply_filters('cn_is_cookie_set', isset($_COOKIE[self::$cookie['name']]));107 }108 109 /**110 * Checks if third party non functional cookies are accepted111 *112 * @return bool113 */114 public static function cookies_accepted()115 {116 117 $noticeAccepted = isset($_COOKIE[self::$cookie['name']]) && strtoupper($_COOKIE[self::$cookie['name']]) === self::$cookie['value'];118 $popupAccepted = isset($_COOKIE[self::$cookiePopup['name']]) && strtoupper($_COOKIE[self::$cookiePopup['name']]) === self::$cookiePopup['value'];119 120 return apply_filters('cn_is_cookie_accepted', $noticeAccepted || $popupAccepted);121 }122 123 99 public function cookieNotice() 124 100 { … … 144 120 <!--noptimize--> 145 121 <div id="cookie-notice" role="banner" 146 class="sp-dsgvo lwb-d-flex cn-<?php echo esc_attr($settings['cn_position']) ?> cookie-style-<?php echo esc_attr($settings['cookie_style']);?> <?php echo $settings['cn_custom_css_container'] !== '' ? esc_attr($settings['cn_custom_css_container']):'' ?> <?php echo $noticeStyle != '00' ? 'cn-shadow-top' : ''?>"122 class="sp-dsgvo lwb-d-flex cn-<?php echo esc_attr($settings['cn_position']) ?> cookie-style-<?php echo esc_attr($settings['cookie_style']);?> <?php echo esc_attr($settings['cn_custom_css_container'] !== '' ? ($settings['cn_custom_css_container']):''); ?> <?php echo esc_attr($noticeStyle != '00' ? 'cn-shadow-top' : '');?>" 147 123 style="background-color: <?php echo esc_attr($settings['cn_background_color']) ?>; 148 124 color: <?php echo esc_attr($settings['cn_text_color']) ?>; 149 125 height: <?php echo esc_attr($settings['cn_height_container']) ?>;"> 150 <div class="cookie-notice-container container-fluid lwb-d-md-flex <?php echo $noticeStyle == '00' ? 'justify-content-md-center align-items-md-center' : 'justify-content-around'?>">126 <div class="cookie-notice-container container-fluid lwb-d-md-flex <?php echo esc_attr($noticeStyle == '00' ? 'justify-content-md-center align-items-md-center' : 'justify-content-around'); ?>"> 151 127 152 128 <?php … … 197 173 ?> 198 174 199 <span id="cn-notice-text" class="<?php echo $settings['cn_custom_css_text'] !== '' ? esc_attr($settings['cn_custom_css_text']):''?>"175 <span id="cn-notice-text" class="<?php echo esc_attr($settings['cn_custom_css_text'] !== '' ? ($settings['cn_custom_css_text']):''); ?>" 200 176 style="font-size:<?php echo esc_attr($settings['cn_size_text']) ?>"><?php echo convDeChars($cookieNoticeCustomText); ?> 201 177 </span> … … 210 186 211 187 <a href="#" id="cn-btn-settings" 212 class="cn-set-cookie button button-default <?php echo $settings['cn_custom_css_buttons'] !== '' ? esc_attr($settings['cn_custom_css_buttons']):''?>"188 class="cn-set-cookie button button-default <?php echo esc_attr($settings['cn_custom_css_buttons'] !== '' ? ($settings['cn_custom_css_buttons']):''); ?>" 213 189 style="background-color: <?php echo esc_attr($settings['cn_background_color_button']) ?>; 214 190 color: <?php echo esc_attr($settings['cn_text_color_button']) ?>; … … 420 396 } 421 397 422 $introductionText = esc_html(str_replace('{OWNER-TEXT}', $ownerText, $introductionText));398 $introductionText = (str_replace('{OWNER-TEXT}', $ownerText, $introductionText)); 423 399 //$introductionText = convDeChars($introductionText); // let it uncommented until the first ticket about this gets opened 424 400 ?> … … 508 484 <a href="<?php echo esc_url($lang['url']); ?>"> 509 485 <img src="<?php echo esc_url($lang['country_flag_url']); ?>" alt="<?php _e('Country flag', 'shapepress-dsgvo');?>" /> 510 <span><?php echo $lang['native_name']; ?></span>486 <span><?php echo esc_html($lang['native_name']); ?></span> 511 487 </a> 512 488 <?php endforeach; ?> … … 568 544 569 545 <div class="sp-dsgvo-header-description-text lwb-row lwb-col-12 m-0 p-0"> 570 <?php echo $introductionText; ?>546 <?php echo esc_html($introductionText); ?> 571 547 </div> 572 548 </div> <!--header wrapper xs--> … … 599 575 </div> 600 576 <div class="sp-dsgvo-link-wrapper lwb-col-md-5 px-0"> 601 <a href="<?php echo $imprintUrl; ?>" target="_blank"><?php _e('Imprint', 'shapepress-dsgvo');?></a>577 <a href="<?php echo esc_url($imprintUrl); ?>" target="_blank"><?php _e('Imprint', 'shapepress-dsgvo');?></a> 602 578 <span>|</span> 603 <a href="<?php echo $privacyPolicyUrl; ?>" target="_blank"><?php echo esc_html(SPDSGVOSettings::get('privacy_policy_custom_header'));?></a>579 <a href="<?php echo esc_url($privacyPolicyUrl); ?>" target="_blank"><?php echo esc_html(SPDSGVOSettings::get('privacy_policy_custom_header'));?></a> 604 580 </div> <!-- .link-wrapper --> 605 581 … … 708 684 </div><!-- line1 wrapper --> 709 685 <div class="sp-dsgvo-header-description-text lwb-row lwb-col-12 m-0 p-0"> 710 <?php echo $introductionText; ?>686 <?php echo esc_html($introductionText); ?> 711 687 </div> 712 688 … … 837 813 <div class="sp-dsgvo-category-name lwb-row no-gutters"> 838 814 <div class="lwb-col-12"> 839 <?php _e($categoryData['title'], 'shapepress-dsgvo');?> <small>(<?php echo sprintf(_n('%s '.__('Service','shapepress-dsgvo'), '%s '.__('Services','shapepress-dsgvo'), $enabledIntegrationCount, 'shapepress-dsgvo'), $enabledIntegrationCount);?>)</small>815 <?php esc_html_e($categoryData['title'], 'shapepress-dsgvo');?> <small>(<?php echo esc_html(sprintf(_n('%s '.__('Service','shapepress-dsgvo'), '%s '.__('Services','shapepress-dsgvo'), $enabledIntegrationCount, 'shapepress-dsgvo'), $enabledIntegrationCount));?>)</small> 840 816 </div> 841 817 </div> 842 818 <div class="lwb-row no-gutters"> 843 <div class="sp-dsgvo-category-description lwb-col-9"><?php _e($categoryData['description'], 'shapepress-dsgvo');?></div>819 <div class="sp-dsgvo-category-description lwb-col-9"><?php esc_html_e($categoryData['description'], 'shapepress-dsgvo');?></div> 844 820 <div class="sp-dsgvo-category-toggle lwb-col-3"> 845 821 846 822 <label class="switch switch-green float-right"> 847 <input type="checkbox" class="switch-input" value="1" name="sp-dsgvo-switch-category" <?php echo $isReadonly ? 'checked disabled' : '' ?> data-slug="<?php echo $categorySlug?>" id="sp-dsgvo-switch-category-<?php echo $categorySlug?>">823 <input type="checkbox" class="switch-input" value="1" name="sp-dsgvo-switch-category" <?php echo esc_attr($isReadonly ? 'checked disabled' : ''); ?> data-slug="<?php echo esc_attr($categorySlug);?>" id="sp-dsgvo-switch-category-<?php echo esc_attr($categorySlug);?>"> 848 824 <span class="switch-label" data-on="<?php _e('Yes', 'shapepress-dsgvo');?>" data-off="<?php _e('No', 'shapepress-dsgvo');?>"></span> 849 825 <span class="switch-handle"></span> … … 868 844 <div class="lwb-col-9 lwb-col-md-6"> 869 845 <div class="sp-dsgvo-category-item-name"> 870 <?php echo $integration->getName();?>846 <?php echo esc_html($integration->getName());?> 871 847 <?php if($withTagmanager) :?> 872 848 <small><?php _e('via', 'shapepress-dsgvo').' '. SPDSGVOConstants::getTagManager()[$usedTagmanager];?></small> … … 876 852 <div class="sp-dsgvo-category-item-company"><?php _e('Local installation', 'shapepress-dsgvo');?></div> 877 853 <?php else: ?> 878 <div class="sp-dsgvo-category-item-company"><?php echo $integration->getCompany();?>, <?php echo $integration->getCountry();?></div>854 <div class="sp-dsgvo-category-item-company"><?php echo esc_html($integration->getCompany());?>, <?php echo esc_html($integration->getCountry());?></div> 879 855 <?php endif; ?> 880 856 881 857 <div class="sp-dsgvo-category-item-description-url d-block d-sm-none"> 882 <a href="#" class="sp-dsgvo-more-information-link" data-slug="<?php echo $integrationSlug;?>" data-title="<?php echo $integration->getName();?>">ⓘ <?php _e('All Details', 'shapepress-dsgvo');?></a>858 <a href="#" class="sp-dsgvo-more-information-link" data-slug="<?php echo esc_attr($integrationSlug);?>" data-title="<?php echo esc_attr($integration->getName());?>">ⓘ <?php _e('All Details', 'shapepress-dsgvo');?></a> 883 859 </div> 884 860 </div> 885 861 <div class="lwb-col-3 lwb-col-md-6 lwb-row no-gutters"> 886 862 <div class="sp-dsgvo-category-item-description-url d-none d-sm-block lwb-col px-0 mx-0"> 887 <a href="#" class="sp-dsgvo-more-information-link" data-slug="<?php echo $integrationSlug;?>" data-title="<?php echo $integration->getName();?>">ⓘ <?php _e('All Details', 'shapepress-dsgvo');?></a>863 <a href="#" class="sp-dsgvo-more-information-link" data-slug="<?php echo esc_attr($integrationSlug);?>" data-title="<?php echo esc_attr($integration->getName());?>">ⓘ <?php _e('All Details', 'shapepress-dsgvo');?></a> 888 864 </div> 889 865 <div class="sp-dsgvo-category-item-toggle lwb-col px-0 mx-0"> 890 866 <label class="switch switch-green float-right"> 891 <input type="checkbox" class="switch-input sp-dsgvo-switch-integration" <?php echo $isReadonly == true ? 'checked disabled' : '' ?> value="1" name="sp-dsgvo-switch-integration" data-slug="<?php echo $integrationSlug?>" data-category="<?php echo $categorySlug?>" id="sp-dsgvo-switch-integration-<?php echo $integrationSlug?>">867 <input type="checkbox" class="switch-input sp-dsgvo-switch-integration" <?php echo esc_attr($isReadonly == true ? 'checked disabled' : '') ?> value="1" name="sp-dsgvo-switch-integration" data-slug="<?php echo esc_attr($integrationSlug);?>" data-category="<?php echo esc_attr($categorySlug)?>" id="sp-dsgvo-switch-integration-<?php echo esc_attr($integrationSlug)?>"> 892 868 <span class="switch-label" data-on="<?php _e('Yes', 'shapepress-dsgvo');?>" data-off="<?php _e('No', 'shapepress-dsgvo');?>"></span> 893 869 <span class="switch-handle"></span> … … 924 900 src: local('Roboto Light Italic'), 925 901 local('Roboto-LightItalic'), 926 url(<?php echo sp_dsgvo_URL; ?>public/css/fonts/roboto/Roboto-LightItalic-webfont.woff) format('woff');902 url(<?php echo esc_url(sp_dsgvo_URL); ?>public/css/fonts/roboto/Roboto-LightItalic-webfont.woff) format('woff'); 927 903 font-display: swap; 928 904 … … 936 912 src: local('Roboto Italic'), 937 913 local('Roboto-Italic'), 938 url(<?php echo sp_dsgvo_URL; ?>public/css/fonts/roboto/Roboto-Italic-webfont.woff) format('woff');914 url(<?php echo esc_url(sp_dsgvo_URL);; ?>public/css/fonts/roboto/Roboto-Italic-webfont.woff) format('woff'); 939 915 font-display: swap; 940 916 } … … 947 923 src: local('Roboto Bold Italic'), 948 924 local('Roboto-BoldItalic'), 949 url(<?php echo sp_dsgvo_URL; ?>public/css/fonts/roboto/Roboto-BoldItalic-webfont.woff) format('woff');925 url(<?php echo esc_url(sp_dsgvo_URL);; ?>public/css/fonts/roboto/Roboto-BoldItalic-webfont.woff) format('woff'); 950 926 font-display: swap; 951 927 } … … 958 934 src: local('Roboto Black Italic'), 959 935 local('Roboto-BlackItalic'), 960 url(<?php echo sp_dsgvo_URL; ?>public/css/fonts/roboto/Roboto-BlackItalic-webfont.woff) format('woff');936 url(<?php echo esc_url(sp_dsgvo_URL);; ?>public/css/fonts/roboto/Roboto-BlackItalic-webfont.woff) format('woff'); 961 937 font-display: swap; 962 938 } … … 969 945 src: local('Roboto Light'), 970 946 local('Roboto-Light'), 971 url(<?php echo sp_dsgvo_URL; ?>public/css/fonts/roboto/Roboto-Light-webfont.woff) format('woff');947 url(<?php echo esc_url(sp_dsgvo_URL);; ?>public/css/fonts/roboto/Roboto-Light-webfont.woff) format('woff'); 972 948 font-display: swap; 973 949 } … … 980 956 src: local('Roboto Regular'), 981 957 local('Roboto-Regular'), 982 url(<?php echo sp_dsgvo_URL; ?>public/css/fonts/roboto/Roboto-Regular-webfont.woff) format('woff');958 url(<?php echo esc_url(sp_dsgvo_URL);; ?>public/css/fonts/roboto/Roboto-Regular-webfont.woff) format('woff'); 983 959 font-display: swap; 984 960 } … … 991 967 src: local('Roboto Bold'), 992 968 local('Roboto-Bold'), 993 url(<?php echo sp_dsgvo_URL; ?>public/css/fonts/roboto/Roboto-Bold-webfont.woff) format('woff');969 url(<?php echo esc_url(sp_dsgvo_URL);; ?>public/css/fonts/roboto/Roboto-Bold-webfont.woff) format('woff'); 994 970 font-display: swap; 995 971 } … … 1002 978 src: local('Roboto Black'), 1003 979 local('Roboto-Black'), 1004 url(<?php echo sp_dsgvo_URL; ?>public/css/fonts/roboto/Roboto-Black-webfont.woff) format('woff');980 url(<?php echo esc_url(sp_dsgvo_URL);; ?>public/css/fonts/roboto/Roboto-Black-webfont.woff) format('woff'); 1005 981 font-display: swap; 1006 982 } … … 1010 986 $html = ob_get_contents(); 1011 987 ob_end_clean(); 1012 echo $html;988 echo wp_kses($html, array('style' => array())); 1013 989 } 1014 990 … … 1078 1054 } 1079 1055 1080 echo $content;1056 echo wp_kses_post($content); 1081 1057 } 1082 1058 … … 1229 1205 } 1230 1206 1231 /** 1232 * Checks if third party non functional cookies are accepted/rejected or returns default 1233 * Thanks to Felix :) 1234 * @return bool 1235 */ 1236 public static function cookies_accepted_default() 1237 { 1238 $userHadDecision = isset($_COOKIE[self::$cookie['name']]) || isset($_COOKIE[self::$cookiePopup['name']]); 1239 if($userHadDecision){ 1240 $noticeAccepted = FALSE; 1241 $popupAccepted = FALSE; 1242 1243 try { 1244 $noticeAccepted = strtoupper($_COOKIE[self::$cookie['name']]) === self::$cookie['value']; 1245 } catch (Exception $e) 1246 { 1247 $noticeAccepted = FALSE; 1248 } 1249 1250 try { 1251 $popupAccepted = strtoupper($_COOKIE[self::$cookiePopup['name']]) === self::$cookiePopup['value']; 1252 } catch (Exception $e) 1253 { 1254 $popupAccepted = FALSE; 1255 } 1256 1257 return apply_filters('cn_is_cookie_accepted', $noticeAccepted || $popupAccepted); 1258 }else{ 1259 $defaults = SPDSGVOSettings::get('services'); 1260 if (isset($defaults['cookies'])) { 1261 return @$defaults['cookies']['default'] === '1'; 1262 } 1263 } 1264 //error_log('hasUserGivenPermissionFor: ' . $slug . ': ' . 'FALSE'); 1265 return FALSE; 1266 } 1207 1267 1208 1268 1209 } 1269 1210 1270 /** 1271 * Get the cookie notice status 1272 * 1273 * @return boolean 1274 */ 1275 function sp_dsgvo_cn_cookies_accepted() 1276 { 1277 return (bool) SPDSGVOPublic::cookies_accepted(); 1278 } 1279 1280 1211 -
shapepress-dsgvo/trunk/public/shortcodes/subject-access-request/subject-access-request-action.php
r2602888 r2606205 46 46 47 47 if($this->has('is_ajax')){ 48 echo json_encode(array(48 echo wp_json_encode(array( 49 49 'success' => '1', 50 50 'zip_link' => SPDSGVODownloadSubjectAccessRequestAction::url(array( -
shapepress-dsgvo/trunk/public/shortcodes/subject-access-request/subject-access-request.php
r2604113 r2606205 14 14 ob_start(); 15 15 ?> 16 <?php if(isset($_REQUEST['result']) && $_REQUEST['result']=== 'success'): ?>16 <?php if(isset($_REQUEST['result']) && santize_text_field($_REQUEST['result']) === 'success'): ?> 17 17 18 18 <p class="sp-dsgvo sar-success-message"><?php _e('Your request has been created','shapepress-dsgvo')?> <br> <?php _e('You will receive an email from us with a current extract of your data stored with us.','shapepress-dsgvo')?></p> … … 21 21 <div class="sp-dsgvo sp-sar-form"> 22 22 <form method="post" action="<?php echo esc_url(SPDSGVOSubjectAccessRequestAction::url()); ?>" class="sp-dsgvo-framework"> 23 <?php wp_nonce_field( SPDSGVOSubjectAccessRequestAction::getActionName(). '-nonce' ); ?>23 <?php wp_nonce_field( esc_attr(SPDSGVOSubjectAccessRequestAction::getActionName()). '-nonce' ); ?> 24 24 <fieldset> 25 25 -
shapepress-dsgvo/trunk/public/shortcodes/super-unsubscribe/unsubscribe-form.php
r2604113 r2606205 15 15 ob_start(); 16 16 ?> 17 <?php if(isset($_REQUEST['result']) && $_REQUEST['result']=== 'success'): ?>17 <?php if(isset($_REQUEST['result']) && santize_text_field($_REQUEST['result']) === 'success'): ?> 18 18 19 19 <p class="sp-dsgvo us-success-message"><?php _e('Request sent successfully. You will receive an email in a few minutes.','shapepress-dsgvo')?></p> 20 20 21 <?php elseif(isset($_REQUEST['result']) && $_REQUEST['result']=== 'confirmed'): ?>21 <?php elseif(isset($_REQUEST['result']) && santize_text_field($_REQUEST['result']) === 'confirmed'): ?> 22 22 23 23 <p class="sp-dsgvo us-success-message"><?php _e('Request successfully completed. Your data has been completely deleted.','shapepress-dsgvo')?></p> … … 26 26 <div class="sp-dsgvo sp-unsubsribe-form"> 27 27 <form method="post" action="<?php echo esc_url(SPDSGVOSuperUnsubscribeFormAction::url()) ?>" > 28 <?php wp_nonce_field( SPDSGVOSuperUnsubscribeFormAction::getActionName(). '-nonce' ); ?>28 <?php wp_nonce_field( esc_attr(SPDSGVOSuperUnsubscribeFormAction::getActionName()). '-nonce' ); ?> 29 29 <fieldset> 30 30 <div class="lwb-row"> -
shapepress-dsgvo/trunk/sp-dsgvo.php
r2602888 r2606205 17 17 * Plugin URI: https://legalweb.io 18 18 * Description: WP DSGVO Tools (GDPR) help you to fulfill the GDPR (DGSVO) compliance guidance (<a target="_blank" href="https://ico.org.uk/for-organisations/data-protection-reform/overview-of-the-gdpr/">GDPR</a>) 19 * Version: 3.1.2 319 * Version: 3.1.24 20 20 * Author: legalweb 21 21 * Author URI: https://www.legalweb.io … … 29 29 } 30 30 31 define('sp_dsgvo_VERSION', '3.1.2 3');31 define('sp_dsgvo_VERSION', '3.1.24'); 32 32 define('sp_dsgvo_NAME', 'sp-dsgvo'); 33 33 define('sp_dsgvo_PLUGIN_NAME', 'shapepress-dsgvo'); -
shapepress-dsgvo/trunk/templates/de_DE/emails/subject-access-request.php
r2604113 r2606205 19 19 <a target='_blank' href="[CLIENTS.WEBSITE]" 20 20 style='color: #202020'>{{website}}</a><br> 21 <?php echo isset($variables['title']) ? $variables['title'] : __('Subject access request','shapepress-dsgvo'); ?>21 <?php echo esc_html(isset($variables['title']) ? $variables['title'] : __('Subject access request','shapepress-dsgvo')); ?> 22 22 </h1> 23 23 </td> … … 45 45 style="color: #4d4c53; font-family: & quot; Helvetica Neue&quot; , Helvetica , Roboto, Arial, sans-serif; font-size: 14px; line-height: 150%; text-align: left;"> 46 46 47 <?php if( !empty( $variables['content'] ) ) : echo $variables['content']; else : ?>47 <?php if( !empty( $variables['content'] ) ) : echo esc_html($variables['content']); else : ?> 48 48 <p style="margin: 0 0 16px;"><?php _e('We have received your subject access request. A PDF document containing all the data we have stored about you is attached. 49 49 Amount of personal data found:', 'shapepress-dsgvo'); ?> {{count}}</p> -
shapepress-dsgvo/trunk/templates/de_DE/emails/super-unsubscribe.php
r2604113 r2606205 18 18 style="color: #202020; font-family: & quot; Helvetica Neue&quot; , Helvetica , Roboto, Arial, sans-serif; font-size: 30px; font-weight: 300; line-height: 150%; margin: 0; text-align: left; text-shadow: 0 1px 0 #202020;"> 19 19 <a target='_blank' href="[CLIENTS.WEBSITE]" 20 style='color: #202020'>{{website}}</a><br> <?php echo isset($variables['title']) ? $variables['title'] : __('Delete request','shapepress-dsgvo'); ?>20 style='color: #202020'>{{website}}</a><br> <?php echo esc_html(isset($variables['title']) ? $variables['title'] : __('Delete request','shapepress-dsgvo')); ?> 21 21 </h1> 22 22 </td> … … 44 44 style="color: #4d4c53; font-family: & quot; Helvetica Neue&quot; , Helvetica , Roboto, Arial, sans-serif; font-size: 14px; line-height: 150%; text-align: left;"> 45 45 46 <?php if( !empty( $variables['content'] ) ) : echo $variables['content']; else : ?>46 <?php if( !empty( $variables['content'] ) ) : echo esc_html($variables['content']); else : ?> 47 47 <p style="margin: 0 0 16px;"><?php _e('We have received your delete request.', 'shapepress-dsgvo'); ?></p> 48 48 <p style="margin: 0 0 16px;"><?php _e('If you confirm the following link, all your data stored at … … 50 50 <h2 51 51 style="color: #202020; display: block; font-family: & quot; Helvetica Neue&quot; , Helvetica , Roboto, Arial, sans-serif; font-size: 18px; font-weight: bold; line-height: 130%; margin: 0 0 18px; text-align: center;"> 52 <a color: #ffc600target='_blank'52 <a style="color: #ffc600" target='_blank' 53 53 href="{{confirm_link}}"><?php _e('Confirm Delete', 'shapepress-dsgvo'); ?></a> 54 54 </h2> -
shapepress-dsgvo/trunk/templates/de_DE_formal/emails/subject-access-request.php
r2604113 r2606205 19 19 <a target='_blank' href="[CLIENTS.WEBSITE]" 20 20 style='color: #202020'>{{website}}</a><br> 21 <?php echo $title; // p912419 ?>21 <?php echo esc_html($title); // p912419 ?> 22 22 </h1> 23 23 </td> … … 45 45 style="color: #4d4c53; font-family: & quot; Helvetica Neue&quot; , Helvetica , Roboto, Arial, sans-serif; font-size: 14px; line-height: 150%; text-align: left;"> 46 46 47 <?php if( !empty( $content ) ) : echo $content; else : ?>47 <?php if( !empty( $content ) ) : echo esc_html($content); else : ?> 48 48 <p style="margin: 0 0 16px;"><?php _e('We have received your subject access request. A PDF document containing all the data we have stored about you is attached. 49 49 Amount of personal data found:', 'shapepress-dsgvo'); ?> {{count}}</p> -
shapepress-dsgvo/trunk/templates/de_DE_formal/emails/super-unsubscribe.php
r2604113 r2606205 18 18 style="color: #202020; font-family: & quot; Helvetica Neue&quot; , Helvetica , Roboto, Arial, sans-serif; font-size: 30px; font-weight: 300; line-height: 150%; margin: 0; text-align: left; text-shadow: 0 1px 0 #202020;"> 19 19 <a target='_blank' href="[CLIENTS.WEBSITE]" 20 style='color: #202020'>{{website}}</a><br><?php echo $title; ?>20 style='color: #202020'>{{website}}</a><br><?php echo esc_html($title); ?> 21 21 </h1> 22 22 </td> … … 44 44 style="color: #4d4c53; font-family: & quot; Helvetica Neue&quot; , Helvetica , Roboto, Arial, sans-serif; font-size: 14px; line-height: 150%; text-align: left;"> 45 45 46 <?php if( !empty( $content ) ) : echo $content; else : ?>46 <?php if( !empty( $content ) ) : echo esc_html($content); else : ?> 47 47 <p style="margin: 0 0 16px;"><?php _e('We have received your delete request.', 'shapepress-dsgvo'); ?></p> 48 48 <p style="margin: 0 0 16px;"><?php _e('If you confirm the following link, all your data stored at -
shapepress-dsgvo/trunk/templates/en_EN/emails/subject-access-request.php
r2604113 r2606205 19 19 <a target='_blank' href="[CLIENTS.WEBSITE]" 20 20 style='color: #202020'>{{website}}</a><br> 21 <?php echo isset($title) ? $title : __('Subject access request','shapepress-dsgvo'); ?>21 <?php echo esc_html(isset($title) ? $title : __('Subject access request','shapepress-dsgvo')); ?> 22 22 </h1> 23 23 </td> … … 45 45 style="color: #4d4c53; font-family: & quot; Helvetica Neue&quot; , Helvetica , Roboto, Arial, sans-serif; font-size: 14px; line-height: 150%; text-align: left;"> 46 46 47 <?php if( !empty( $content ) ) : echo $content; else : ?>47 <?php if( !empty( $content ) ) : echo esc_html($content); else : ?> 48 48 <p style="margin: 0 0 16px;"><?php _e('We have received your subject access request. A PDF document containing all the data we have stored about you is attached. 49 49 Amount of personal data found:', 'shapepress-dsgvo'); ?> {{count}}</p> … … 60 60 <h2 61 61 style="color: #202020; display: block; font-family: & quot; Helvetica Neue&quot; , Helvetica , Roboto, Arial, sans-serif; font-size: 18px; font-weight: bold; line-height: 130%; margin: 0 0 18px; text-align: center;"> 62 <a color: #202020target='_blank'62 <a style"color: #202020" target='_blank' 63 63 href="{{confirm_link}}"></a> 64 64 </h2> -
shapepress-dsgvo/trunk/templates/en_EN/emails/super-unsubscribe.php
r2604113 r2606205 18 18 style="color: #202020; font-family: & quot; Helvetica Neue&quot; , Helvetica , Roboto, Arial, sans-serif; font-size: 30px; font-weight: 300; line-height: 150%; margin: 0; text-align: left; text-shadow: 0 1px 0 #202020;"> 19 19 <a target='_blank' href="[CLIENTS.WEBSITE]" 20 style='color: #202020'>{{website}}</a><br> <?php echo isset($title) ? $title : __('Delete request','shapepress-dsgvo'); ?>20 style='color: #202020'>{{website}}</a><br> <?php echo esc_html(isset($title) ? $title : __('Delete request','shapepress-dsgvo')); ?> 21 21 </h1> 22 22 </td> … … 44 44 style="color: #4d4c53; font-family: & quot; Helvetica Neue&quot; , Helvetica , Roboto, Arial, sans-serif; font-size: 14px; line-height: 150%; text-align: left;"> 45 45 46 <?php if( !empty( $content ) ) : echo $content; else : ?>46 <?php if( !empty( $content ) ) : echo esc_html($content); else : ?> 47 47 <p style="margin: 0 0 16px;"><?php _e('We have received your delete request.', 'shapepress-dsgvo'); ?></p> 48 48 <p style="margin: 0 0 16px;"><?php _e('If you confirm the following link, all your data stored at … … 50 50 <h2 51 51 style="color: #202020; display: block; font-family: & quot; Helvetica Neue&quot; , Helvetica , Roboto, Arial, sans-serif; font-size: 18px; font-weight: bold; line-height: 130%; margin: 0 0 18px; text-align: center;"> 52 <a color: #ffc600target='_blank'52 <a style="color: #ffc600" target='_blank' 53 53 href="{{confirm_link}}"><?php _e('Confirm Delete', 'shapepress-dsgvo'); ?></a> 54 54 </h2> -
shapepress-dsgvo/trunk/templates/en_GB/emails/subject-access-request.php
r2604113 r2606205 19 19 <a target='_blank' href="[CLIENTS.WEBSITE]" 20 20 style='color: #202020'>{{website}}</a><br> 21 <?php echo $title; // p912419 ?>21 <?php echo esc_html($title); // p912419 ?> 22 22 </h1> 23 23 </td> … … 45 45 style="color: #4d4c53; font-family: & quot; Helvetica Neue&quot; , Helvetica , Roboto, Arial, sans-serif; font-size: 14px; line-height: 150%; text-align: left;"> 46 46 47 <?php if( !empty( $content ) ) : echo $content; else : ?>47 <?php if( !empty( $content ) ) : echo esc_html($content); else : ?> 48 48 <p style="margin: 0 0 16px;"><?php _e('We have received your subject access request. A PDF document containing all the data we have stored about you is attached. 49 49 Amount of personal data found:', 'shapepress-dsgvo'); ?> {{count}}</p> -
shapepress-dsgvo/trunk/templates/en_GB/emails/super-unsubscribe.php
r2604113 r2606205 18 18 style="color: #202020; font-family: & quot; Helvetica Neue&quot; , Helvetica , Roboto, Arial, sans-serif; font-size: 30px; font-weight: 300; line-height: 150%; margin: 0; text-align: left; text-shadow: 0 1px 0 #202020;"> 19 19 <a target='_blank' href="[CLIENTS.WEBSITE]" 20 style='color: #202020'>{{website}}</a><br><?php echo $title; ?>20 style='color: #202020'>{{website}}</a><br><?php echo esc_html($title); ?> 21 21 </h1> 22 22 </td> … … 44 44 style="color: #4d4c53; font-family: & quot; Helvetica Neue&quot; , Helvetica , Roboto, Arial, sans-serif; font-size: 14px; line-height: 150%; text-align: left;"> 45 45 46 <?php if( !empty( $content ) ) : echo $content; else : ?>46 <?php if( !empty( $content ) ) : echo esc_html($content); else : ?> 47 47 <p style="margin: 0 0 16px;"><?php _e('We have received your delete request.', 'shapepress-dsgvo'); ?></p> 48 48 <p style="margin: 0 0 16px;"><?php _e('If you confirm the following link, all your data stored at -
shapepress-dsgvo/trunk/templates/en_US/emails/subject-access-request.php
r2604113 r2606205 19 19 <a target='_blank' href="[CLIENTS.WEBSITE]" 20 20 style='color: #202020'>{{website}}</a><br> 21 <?php echo $title; // p912419 ?>21 <?php echo esc_html($title); // p912419 ?> 22 22 </h1> 23 23 </td> … … 45 45 style="color: #4d4c53; font-family: & quot; Helvetica Neue&quot; , Helvetica , Roboto, Arial, sans-serif; font-size: 14px; line-height: 150%; text-align: left;"> 46 46 47 <?php if( !empty( $content ) ) : echo $content; else : ?>47 <?php if( !empty( $content ) ) : echo esc_html($content); else : ?> 48 48 <p style="margin: 0 0 16px;"><?php _e('We have received your subject access request. A PDF document containing all the data we have stored about you is attached. 49 49 Amount of personal data found:', 'shapepress-dsgvo'); ?> {{count}}</p> -
shapepress-dsgvo/trunk/templates/en_US/emails/super-unsubscribe.php
r2604113 r2606205 18 18 style="color: #202020; font-family: & quot; Helvetica Neue&quot; , Helvetica , Roboto, Arial, sans-serif; font-size: 30px; font-weight: 300; line-height: 150%; margin: 0; text-align: left; text-shadow: 0 1px 0 #202020;"> 19 19 <a target='_blank' href="[CLIENTS.WEBSITE]" 20 style='color: #202020'>{{website}}</a><br><?php echo $title; ?>20 style='color: #202020'>{{website}}</a><br><?php echo esc_html($title); ?> 21 21 </h1> 22 22 </td> … … 44 44 style="color: #4d4c53; font-family: & quot; Helvetica Neue&quot; , Helvetica , Roboto, Arial, sans-serif; font-size: 14px; line-height: 150%; text-align: left;"> 45 45 46 <?php if( !empty( $content ) ) : echo $content; else : ?>46 <?php if( !empty( $content ) ) : echo esc_html($content); else : ?> 47 47 <p style="margin: 0 0 16px;"><?php _e('We have received your delete request.', 'shapepress-dsgvo'); ?></p> 48 48 <p style="margin: 0 0 16px;"><?php _e('If you confirm the following link, all your data stored at … … 50 50 <h2 51 51 style="color: #202020; display: block; font-family: & quot; Helvetica Neue&quot; , Helvetica , Roboto, Arial, sans-serif; font-size: 18px; font-weight: bold; line-height: 130%; margin: 0 0 18px; text-align: center;"> 52 <a color: #ffc600 target='_blank'52 <a style="color: #ffc600" target="_blank" 53 53 href="{{confirm_link}}"><?php _e('Confirm Delete', 'shapepress-dsgvo'); ?></a> 54 54 </h2>
Note: See TracChangeset
for help on using the changeset viewer.