Changeset 3167874

Timestamp:

10/13/2024 07:19:47 AM (18 months ago)

Author:

Tkama

Message:

Update to version 1.8.3 from GitHub

Location:

kama-spamblock

Files:

• tags/1.8.3 (copied) (copied from kama-spamblock/trunk)
• tags/1.8.3/Kama_Spamblock.php (modified) (11 diffs)
• tags/1.8.3/Kama_Spamblock_Options.php (modified) (5 diffs)
• tags/1.8.3/kama-spamblock.php (modified) (2 diffs)
• tags/1.8.3/readme.txt (modified) (5 diffs)
• trunk/Kama_Spamblock.php (modified) (11 diffs)
• trunk/Kama_Spamblock_Options.php (modified) (5 diffs)
• trunk/kama-spamblock.php (modified) (2 diffs)
• trunk/readme.txt (modified) (5 diffs)

kama-spamblock/tags/1.8.3/Kama_Spamblock.php

@@ -22 +22 @@
     private $process_comment_types = [ '', 'comment' ];
 
-    /**
-     * @param string $plug_file
-     */
-    public function __construct( $plug_file ) {
-
-        $this->opt = new Kama_Spamblock_Options();
+    public function __construct( string $plug_file, Kama_Spamblock_Options $opt ) {
+        $this->opt = $opt;
 
         $this->plug_file = $plug_file;
-        $this->plug_dir = dirname( $plug_file );
+        $this->plug_dir  = dirname( $plug_file );
 
         $this->process_comment_types = apply_filters( 'kama_spamblock__process_comment_types', $this->process_comment_types );
@@ -36 +32 @@
 
     public function init_plugin() {
-
         if( ! defined( 'DOING_AJAX' ) ){
             load_plugin_textdomain( 'kama-spamblock', false, basename( $this->plug_dir ) . '/languages' );
@@ -57 +52 @@
 
         if( ! wp_doing_ajax() && ! is_admin() ){
-            add_action( 'wp_footer', [ $this, 'main_js' ], 99 );
+            add_action( 'wp_footer', [ $this, 'main_js' ], 0 );
         }
 
-        $this->nonce = self::make_nonce( date( 'jn' ) . $this->opt->unique_code );
+        $this->nonce = self::make_hash( date( 'jn' ) . $this->opt->unique_code );
 
         add_filter( 'preprocess_comment', [ $this, 'block_spam' ], 0 );
@@ -67 +62 @@
     /**
      * Check and block comment if needed.
-     *
-     * @param array $commentdata
-     *
-     * @return array
      */
-    public function block_spam( $commentdata ) {
+    public function block_spam( array $commentdata ): array {
 
         $this->block_pings_trackbacks( $commentdata );
@@ -102 +93 @@
         }
 
-        $ksbn_code = isset( $_POST['ksbn_code'] ) ? trim( $_POST['ksbn_code'] ) : '';
+        $ksbn_code = trim( $_POST['ksbn_code'] ?? '' );
 
-        if( self::make_nonce( $ksbn_code ) !== $this->nonce ){
+        if( self::make_hash( $ksbn_code ) !== $this->nonce ){
             /** @noinspection ForgottenDebugOutputInspection */
             wp_die( $this->block_form() );
@@ -111 +102 @@
 
     /**
-     * @param string $key
-     *
-     * @return string
+     * Creates hash from specified key if it's not hashed yet.
      */
-    private static function make_nonce( $key ) {
-        // maybe already md5
+    private static function make_hash( string $key ): string {
         return preg_match( '/^[a-f0-9]{32}$/', $key ) ? $key : md5( $key );
     }
@@ -127 +115 @@
 
         // note: is_singular() may work incorrectly
-        if( ! empty( $post ) && ( 'open' !== $post->comment_status ) && is_singular() ){
+        if( $post && ( 'open' !== $post->comment_status ) && is_singular() ){
             return;
         }
         ?>
         <script id="kama_spamblock">
-            (function(){
+            window.addEventListener( 'DOMContentLoaded', function() {
+                document.addEventListener( 'mousedown', handleSubmit );
+                document.addEventListener( 'touchstart', handleSubmit );
+                document.addEventListener( 'keypress', handleSubmit );
 
-                const catch_submit = function( ev ){
-
-                    let sbmt = ev.target.closest( '#<?= esc_html( $this->opt->sibmit_button_id ) ?>' );
-
+                function handleSubmit( ev ){
+                    let sbmt = ev.target.closest( '#<?= esc_html( sanitize_html_class( $this->opt->sibmit_button_id ) ) ?>' );
                     if( ! sbmt ){
                         return;
@@ -145 +134 @@
                     let date = new Date();
 
-                    input.value = ''+ date.getUTCDate() + (date.getUTCMonth() + 1) + '<?= esc_html( $this->opt->unique_code ) ?>';
+                    input.value = ''+ date.getUTCDate() + (date.getUTCMonth() + 1) + '<?= esc_html( Kama_Spamblock_Options::sanitize_uniue_code( $this->opt->unique_code ) ) ?>';
                     input.name = 'ksbn_code';
                     input.type = 'hidden';
@@ -151 +140 @@
                     sbmt.parentNode.insertBefore( input, sbmt );
                 }
-
-                document.addEventListener( 'mousedown', catch_submit );
-                document.addEventListener( 'keypress', catch_submit );
-            })()
+            } );
         </script>
         <?php
@@ -160 +146 @@
 
     /**
-     * Output form when comment has been blocked.
-     *
-     * @return string
+     * Gets Form HTML for blocked comment.
      */
-    private function block_form() {
+    private function block_form(): string {
         ob_start();
         ?>
         <h1><?= __( 'Antispam block your comment!', 'kama-spamblock' ) ?></h1>
 
-        <form method="post" action="<?= site_url( '/wp-comments-post.php' ) ?>">
+        <form method="POST" action="<?= site_url( '/wp-comments-post.php' ) ?>">
             <p>
                 <?= sprintf(
                    __( 'Copy %1$s to the field %2$s and press button', 'kama-spamblock' ),
-                   '<code style="background:rgba(255,255,255,.2);">' . $this->nonce . '</code>',
+                   '<code style="background:rgba(255,255,255,.2);">' . esc_html( $this->nonce ) . '</code>',
                    '<input type="text" name="ksbn_code" value="" style="width:150px; border:1px solid #ccc; border-radius:3px; padding:.3em;" />'
                ) ?>
@@ -181 +165 @@
 
             <?php
-            unset( $_POST['ksbn_code'] );
+            foreach( $_POST as $key => $val ){
+                if( $key === 'ksbn_code' ){
+                    continue;
+                }
 
-            foreach( $_POST as $key => $val ){
-                echo sprintf( '<textarea style="display:none;" name="%s">%s</textarea>', $key, esc_textarea( stripslashes( $val ) ) );
+                echo sprintf( '<textarea style="display:none;" name="%s">%s</textarea>',
+                    esc_attr( $key ),
+                    esc_textarea( stripslashes( $val ) )
+                );
             }
             ?>

kama-spamblock/tags/1.8.3/Kama_Spamblock_Options.php

@@ -13 +13 @@
     public function __construct() {
         $opt = array_merge( $this->default_options(), get_option( self::OPT_NAME, [] ) );
+        $this->check_empty_unique_code( $opt['unique_code'] );
+
         $opt = apply_filters( 'kama_spamblock__options', $opt );
-        $opt = (object) $opt;
 
-        $this->unique_code = $opt->unique_code;
-        $this->sibmit_button_id = $opt->sibmit_button_id;
+        $this->unique_code      = $opt['unique_code'];
+        $this->sibmit_button_id = $opt['sibmit_button_id'];
     }
 
     /**
-     * @return string[]
+     * @return void
      */
-    public function default_options(){
+    private function check_empty_unique_code( string $code ) {
+        if( ! $code ){
+            $opt = get_option( self::OPT_NAME, [] );
+            $opt['unique_code'] = wp_generate_password( 10, false );
+            update_option( self::OPT_NAME, $opt );
+        }
+    }
 
+    public function default_options(): array {
         return [
             'sibmit_button_id' => 'submit',
-            'unique_code'      => 'uniq9065',
+            'unique_code'      => '', // default value will be auto-generated
         ];
     }
@@ -37 +45 @@
             self::OPT_NAME . '_field',
             __( 'Kama Spamblock settings', 'kama-spamblock' ),
-            [ $this, 'options_field', ],
+            [ $this, 'options_fields', ],
             'discussion',
             'kama_spamblock'
@@ -52 +60 @@
             }
             elseif( 'unique_code' === $key ){
-                $val = preg_replace( '~[^A-Za-z0-9*%$#@!_-]~', '', $val );
+                $val = self::sanitize_uniue_code( $val );
+                $val || $val = wp_generate_password( 10, false );
             }
             else{
@@ -62 +71 @@
     }
 
-    public function options_field() {
+    public static function sanitize_uniue_code( string $code ) {
+        return preg_replace( '~[^A-Za-z0-9*%$#@!_-]~', '', $code );
+    }
+
+    public function options_fields() {
         ?>
         <p>
@@ -76 +89 @@
 
     public static function settings_link( $links ) {
-
         $links[] = sprintf( '<a href="%s">%s</a>', admin_url( '/options-discussion.php#wpfooter' ), __( 'Settings', 'kama-spamblock' ) );
 

kama-spamblock/tags/1.8.3/kama-spamblock.php

@@ -12 +12 @@
  * Plugin URI: https://wp-kama.ru/95
  *
- * Requires PHP: 5.6
- * Requires at least: 2.7
+ * Requires PHP: 7.0
+ * Requires at least: 5.7
  *
- * Version: 1.8.2
+ * Version: 1.8.3
  */
 
@@ -23 +23 @@
 add_action( 'init', 'kama_spamblock_init', 11 );
 
-
 function kama_spamblock_init() {
     return kama_spamblock()->init_plugin();
 }
 
-/**
- * @return Kama_Spamblock
- */
-function kama_spamblock() {
+function kama_spamblock(): Kama_Spamblock {
     static $inst;
 
-    $inst || $inst = new Kama_Spamblock( __FILE__ );
+    $inst || $inst = new Kama_Spamblock( __FILE__, new Kama_Spamblock_Options() );
 
     return $inst;

kama-spamblock/tags/1.8.3/readme.txt

@@ -2 +2 @@
 Stable tag: trunk
 Contributors: Tkama
-Tested up to: 6.4.1
+Tested up to: 6.6.2
 License: GPLv2 or later
 License URI: http://www.gnu.org/licenses/gpl-2.0.html
 Tags: spam, spammer, autospam, spamblock, antispam, anti-spam, protect, comments, ping, trackback, bot, robot, human, captcha, invisible
 
-A lightweight and discreet solution to prevent automatic spam when a spam comment is posted. Additionally, it conducts checks on pings and trackbacks to verify genuine backlinks.
+Light and invisible method to block auto-spam when a spam comment is posted. Pings and trackbacks check for real backlinks.
 
 
@@ -21 +21 @@
 == Screenshots ==
 
-1. Plugin settings on standart WordPress <code>Settings > Discussion</code> page.
+1. Plugin settings on standard WordPress <code>Settings > Discussion</code> page.
 
-2. Spam alert, when spam comment detected or if user have javascript disabled in his browser. This alert allows send comment once again, when it was blocked in any nonstandard cases.
+2. Spam alert, when spam comment is detected or if the user has JavaScript disabled in their browser. This alert allows sending the comment once again when it was blocked in any nonstandard cases.
 
 
@@ -35 +35 @@
 
 
+== Changelog ==
 
-== Changelog ==
+= 1.8.3 =
+* FIX: XSS vulnerability fixed. Thanks to [Wordfence](https://www.wordfence.com/) for the report.
+* IMP: Other minor improvements.
 
 = 1.8.2 =
@@ -49 +52 @@
 
 = 1.7.5 =
-* FIX: bug with uniq code comparation
-* minor code fixes
-
+* FIX: bug with unique code comparison.
+* Minor code fixes.
 
 = 1.7.4 =
-* CHG: change sanitize-options-on-save function - sanitize_key() to sanitize_html_class() - it's not so hard but hard enough...
-* CHG: 'sanitize_setting' function call. Seems it hasn't have back-compat for wordpress versions less then 4.7
+* CHG: changed sanitize-options-on-save function - sanitize_key() to sanitize_html_class() - it's not so hard but hard enough...
+* CHG: 'sanitize_setting' function call. Seems it doesn't have back-compat for WordPress versions less than 4.7.
 
 = 1.7.3 =
-* FIX: options fix of 1.7.2
+* FIX: options fix of 1.7.2.
 
 = 1.7.2 =
-* CHG: move translation to translation.wordpress.org
+* CHG: moved translation to translation.wordpress.org.
 * ADD: new 'unique code' option.
 * IMP: some code improvements.
@@ -69 +71 @@
 
 = 1.6.0 =
-* CHG: check logic is little change in order to correctly work with page cache plugins
+* CHG: check logic is slightly changed in order to work correctly with page cache plugins.
 
 = 1.5.2 =
-* ADD: delete is_singular check for themes where this check work wrong. Now plugin JS showen in all pages
+* ADD: deleted is_singular check for themes where this check works incorrectly. Now plugin JS is shown on all pages.
 
 = 1.5.1 =
-* ADD: js include from numbers of hooks. If there is no "wp_footer" hook in theme
+* ADD: JS included from a number of hooks if there is no "wp_footer" hook in the theme.
 
 = 1.5.0 =
-* ADD: Russian localization
-
+* ADD: Russian localization.

kama-spamblock/trunk/Kama_Spamblock.php

@@ -22 +22 @@
     private $process_comment_types = [ '', 'comment' ];
 
-    /**
-     * @param string $plug_file
-     */
-    public function __construct( $plug_file ) {
-
-        $this->opt = new Kama_Spamblock_Options();
+    public function __construct( string $plug_file, Kama_Spamblock_Options $opt ) {
+        $this->opt = $opt;
 
         $this->plug_file = $plug_file;
-        $this->plug_dir = dirname( $plug_file );
+        $this->plug_dir  = dirname( $plug_file );
 
         $this->process_comment_types = apply_filters( 'kama_spamblock__process_comment_types', $this->process_comment_types );
@@ -36 +32 @@
 
     public function init_plugin() {
-
         if( ! defined( 'DOING_AJAX' ) ){
             load_plugin_textdomain( 'kama-spamblock', false, basename( $this->plug_dir ) . '/languages' );
@@ -57 +52 @@
 
         if( ! wp_doing_ajax() && ! is_admin() ){
-            add_action( 'wp_footer', [ $this, 'main_js' ], 99 );
+            add_action( 'wp_footer', [ $this, 'main_js' ], 0 );
         }
 
-        $this->nonce = self::make_nonce( date( 'jn' ) . $this->opt->unique_code );
+        $this->nonce = self::make_hash( date( 'jn' ) . $this->opt->unique_code );
 
         add_filter( 'preprocess_comment', [ $this, 'block_spam' ], 0 );
@@ -67 +62 @@
     /**
      * Check and block comment if needed.
-     *
-     * @param array $commentdata
-     *
-     * @return array
      */
-    public function block_spam( $commentdata ) {
+    public function block_spam( array $commentdata ): array {
 
         $this->block_pings_trackbacks( $commentdata );
@@ -102 +93 @@
         }
 
-        $ksbn_code = isset( $_POST['ksbn_code'] ) ? trim( $_POST['ksbn_code'] ) : '';
+        $ksbn_code = trim( $_POST['ksbn_code'] ?? '' );
 
-        if( self::make_nonce( $ksbn_code ) !== $this->nonce ){
+        if( self::make_hash( $ksbn_code ) !== $this->nonce ){
             /** @noinspection ForgottenDebugOutputInspection */
             wp_die( $this->block_form() );
@@ -111 +102 @@
 
     /**
-     * @param string $key
-     *
-     * @return string
+     * Creates hash from specified key if it's not hashed yet.
      */
-    private static function make_nonce( $key ) {
-        // maybe already md5
+    private static function make_hash( string $key ): string {
         return preg_match( '/^[a-f0-9]{32}$/', $key ) ? $key : md5( $key );
     }
@@ -127 +115 @@
 
         // note: is_singular() may work incorrectly
-        if( ! empty( $post ) && ( 'open' !== $post->comment_status ) && is_singular() ){
+        if( $post && ( 'open' !== $post->comment_status ) && is_singular() ){
             return;
         }
         ?>
         <script id="kama_spamblock">
-            (function(){
+            window.addEventListener( 'DOMContentLoaded', function() {
+                document.addEventListener( 'mousedown', handleSubmit );
+                document.addEventListener( 'touchstart', handleSubmit );
+                document.addEventListener( 'keypress', handleSubmit );
 
-                const catch_submit = function( ev ){
-
-                    let sbmt = ev.target.closest( '#<?= esc_html( $this->opt->sibmit_button_id ) ?>' );
-
+                function handleSubmit( ev ){
+                    let sbmt = ev.target.closest( '#<?= esc_html( sanitize_html_class( $this->opt->sibmit_button_id ) ) ?>' );
                     if( ! sbmt ){
                         return;
@@ -145 +134 @@
                     let date = new Date();
 
-                    input.value = ''+ date.getUTCDate() + (date.getUTCMonth() + 1) + '<?= esc_html( $this->opt->unique_code ) ?>';
+                    input.value = ''+ date.getUTCDate() + (date.getUTCMonth() + 1) + '<?= esc_html( Kama_Spamblock_Options::sanitize_uniue_code( $this->opt->unique_code ) ) ?>';
                     input.name = 'ksbn_code';
                     input.type = 'hidden';
@@ -151 +140 @@
                     sbmt.parentNode.insertBefore( input, sbmt );
                 }
-
-                document.addEventListener( 'mousedown', catch_submit );
-                document.addEventListener( 'keypress', catch_submit );
-            })()
+            } );
         </script>
         <?php
@@ -160 +146 @@
 
     /**
-     * Output form when comment has been blocked.
-     *
-     * @return string
+     * Gets Form HTML for blocked comment.
      */
-    private function block_form() {
+    private function block_form(): string {
         ob_start();
         ?>
         <h1><?= __( 'Antispam block your comment!', 'kama-spamblock' ) ?></h1>
 
-        <form method="post" action="<?= site_url( '/wp-comments-post.php' ) ?>">
+        <form method="POST" action="<?= site_url( '/wp-comments-post.php' ) ?>">
             <p>
                 <?= sprintf(
                    __( 'Copy %1$s to the field %2$s and press button', 'kama-spamblock' ),
-                   '<code style="background:rgba(255,255,255,.2);">' . $this->nonce . '</code>',
+                   '<code style="background:rgba(255,255,255,.2);">' . esc_html( $this->nonce ) . '</code>',
                    '<input type="text" name="ksbn_code" value="" style="width:150px; border:1px solid #ccc; border-radius:3px; padding:.3em;" />'
                ) ?>
@@ -181 +165 @@
 
             <?php
-            unset( $_POST['ksbn_code'] );
+            foreach( $_POST as $key => $val ){
+                if( $key === 'ksbn_code' ){
+                    continue;
+                }
 
-            foreach( $_POST as $key => $val ){
-                echo sprintf( '<textarea style="display:none;" name="%s">%s</textarea>', $key, esc_textarea( stripslashes( $val ) ) );
+                echo sprintf( '<textarea style="display:none;" name="%s">%s</textarea>',
+                    esc_attr( $key ),
+                    esc_textarea( stripslashes( $val ) )
+                );
             }
             ?>

kama-spamblock/trunk/Kama_Spamblock_Options.php

@@ -13 +13 @@
     public function __construct() {
         $opt = array_merge( $this->default_options(), get_option( self::OPT_NAME, [] ) );
+        $this->check_empty_unique_code( $opt['unique_code'] );
+
         $opt = apply_filters( 'kama_spamblock__options', $opt );
-        $opt = (object) $opt;
 
-        $this->unique_code = $opt->unique_code;
-        $this->sibmit_button_id = $opt->sibmit_button_id;
+        $this->unique_code      = $opt['unique_code'];
+        $this->sibmit_button_id = $opt['sibmit_button_id'];
     }
 
     /**
-     * @return string[]
+     * @return void
      */
-    public function default_options(){
+    private function check_empty_unique_code( string $code ) {
+        if( ! $code ){
+            $opt = get_option( self::OPT_NAME, [] );
+            $opt['unique_code'] = wp_generate_password( 10, false );
+            update_option( self::OPT_NAME, $opt );
+        }
+    }
 
+    public function default_options(): array {
         return [
             'sibmit_button_id' => 'submit',
-            'unique_code'      => 'uniq9065',
+            'unique_code'      => '', // default value will be auto-generated
         ];
     }
@@ -37 +45 @@
             self::OPT_NAME . '_field',
             __( 'Kama Spamblock settings', 'kama-spamblock' ),
-            [ $this, 'options_field', ],
+            [ $this, 'options_fields', ],
             'discussion',
             'kama_spamblock'
@@ -52 +60 @@
             }
             elseif( 'unique_code' === $key ){
-                $val = preg_replace( '~[^A-Za-z0-9*%$#@!_-]~', '', $val );
+                $val = self::sanitize_uniue_code( $val );
+                $val || $val = wp_generate_password( 10, false );
             }
             else{
@@ -62 +71 @@
     }
 
-    public function options_field() {
+    public static function sanitize_uniue_code( string $code ) {
+        return preg_replace( '~[^A-Za-z0-9*%$#@!_-]~', '', $code );
+    }
+
+    public function options_fields() {
         ?>
         <p>
@@ -76 +89 @@
 
     public static function settings_link( $links ) {
-
         $links[] = sprintf( '<a href="%s">%s</a>', admin_url( '/options-discussion.php#wpfooter' ), __( 'Settings', 'kama-spamblock' ) );
 

kama-spamblock/trunk/kama-spamblock.php

@@ -12 +12 @@
  * Plugin URI: https://wp-kama.ru/95
  *
- * Requires PHP: 5.6
- * Requires at least: 2.7
+ * Requires PHP: 7.0
+ * Requires at least: 5.7
  *
- * Version: 1.8.2
+ * Version: 1.8.3
  */
 
@@ -23 +23 @@
 add_action( 'init', 'kama_spamblock_init', 11 );
 
-
 function kama_spamblock_init() {
     return kama_spamblock()->init_plugin();
 }
 
-/**
- * @return Kama_Spamblock
- */
-function kama_spamblock() {
+function kama_spamblock(): Kama_Spamblock {
     static $inst;
 
-    $inst || $inst = new Kama_Spamblock( __FILE__ );
+    $inst || $inst = new Kama_Spamblock( __FILE__, new Kama_Spamblock_Options() );
 
     return $inst;

kama-spamblock/trunk/readme.txt

@@ -2 +2 @@
 Stable tag: trunk
 Contributors: Tkama
-Tested up to: 6.4.1
+Tested up to: 6.6.2
 License: GPLv2 or later
 License URI: http://www.gnu.org/licenses/gpl-2.0.html
 Tags: spam, spammer, autospam, spamblock, antispam, anti-spam, protect, comments, ping, trackback, bot, robot, human, captcha, invisible
 
-A lightweight and discreet solution to prevent automatic spam when a spam comment is posted. Additionally, it conducts checks on pings and trackbacks to verify genuine backlinks.
+Light and invisible method to block auto-spam when a spam comment is posted. Pings and trackbacks check for real backlinks.
 
 
@@ -21 +21 @@
 == Screenshots ==
 
-1. Plugin settings on standart WordPress <code>Settings > Discussion</code> page.
+1. Plugin settings on standard WordPress <code>Settings > Discussion</code> page.
 
-2. Spam alert, when spam comment detected or if user have javascript disabled in his browser. This alert allows send comment once again, when it was blocked in any nonstandard cases.
+2. Spam alert, when spam comment is detected or if the user has JavaScript disabled in their browser. This alert allows sending the comment once again when it was blocked in any nonstandard cases.
 
 
@@ -35 +35 @@
 
 
+== Changelog ==
 
-== Changelog ==
+= 1.8.3 =
+* FIX: XSS vulnerability fixed. Thanks to [Wordfence](https://www.wordfence.com/) for the report.
+* IMP: Other minor improvements.
 
 = 1.8.2 =
@@ -49 +52 @@
 
 = 1.7.5 =
-* FIX: bug with uniq code comparation
-* minor code fixes
-
+* FIX: bug with unique code comparison.
+* Minor code fixes.
 
 = 1.7.4 =
-* CHG: change sanitize-options-on-save function - sanitize_key() to sanitize_html_class() - it's not so hard but hard enough...
-* CHG: 'sanitize_setting' function call. Seems it hasn't have back-compat for wordpress versions less then 4.7
+* CHG: changed sanitize-options-on-save function - sanitize_key() to sanitize_html_class() - it's not so hard but hard enough...
+* CHG: 'sanitize_setting' function call. Seems it doesn't have back-compat for WordPress versions less than 4.7.
 
 = 1.7.3 =
-* FIX: options fix of 1.7.2
+* FIX: options fix of 1.7.2.
 
 = 1.7.2 =
-* CHG: move translation to translation.wordpress.org
+* CHG: moved translation to translation.wordpress.org.
 * ADD: new 'unique code' option.
 * IMP: some code improvements.
@@ -69 +71 @@
 
 = 1.6.0 =
-* CHG: check logic is little change in order to correctly work with page cache plugins
+* CHG: check logic is slightly changed in order to work correctly with page cache plugins.
 
 = 1.5.2 =
-* ADD: delete is_singular check for themes where this check work wrong. Now plugin JS showen in all pages
+* ADD: deleted is_singular check for themes where this check works incorrectly. Now plugin JS is shown on all pages.
 
 = 1.5.1 =
-* ADD: js include from numbers of hooks. If there is no "wp_footer" hook in theme
+* ADD: JS included from a number of hooks if there is no "wp_footer" hook in the theme.
 
 = 1.5.0 =
-* ADD: Russian localization
-
+* ADD: Russian localization.