10h30/ultimatemember
1
0
Fork 0
mirror of https://github.com/10h30/ultimatemember.git synced 2026-06-05 15:09:37 +09:00
Code Issues Packages Projects Releases Wiki Activity
4,777 Commits 4 Branches 13 Tags
2f18dccd092fa26ce7f33abe6631e3bb673ef1be
Commit Graph

1830 Commits

Author SHA1 Message Date
Mykyta Synelnikov 2f18dccd09 Refactor email activation flow in Ultimate Member. 
Improved readability and clarity of the email activation process by updating comments and restructuring conditional checks. Added hooks and filters for better customization, including redirect URL filtering. Replaced `wp_redirect` with `um_safe_redirect` for safer redirection handling.
 2025-02-28 14:21:54 +02:00
Mykyta Synelnikov c0d506b199 Merge remote-tracking branch 'origin/development/2.9.x' into fix/activate_account_via_email_link 2025-02-28 13:35:20 +02:00
Mykyta Synelnikov d107153244 Refactor profile image handling in Ultimate Member. 
Simplified Gravatar image logic and improved code readability by restructuring the image processing flow. Removed redundant variable initialization and adjusted handling of `$image_info`. This ensures cleaner, more maintainable code while preserving existing functionality.
 2025-02-28 11:22:24 +02:00
yuriinalivaiko 468c9748fc - fixed image metadata for Gravatar 2025-02-21 13:47:50 +02:00
yuriinalivaiko 945ed3775a Task CU-86cy0809h 
- fixed redirect to the Password Change page after the account activation.
 2025-02-14 21:57:47 +02:00
Mykyta Synelnikov c3755baa16 Merge pull request #1624 from ultimatemember/fix/um-erase-data 
The "Erase of your data" layout (CU-86cxneg3d)
 2025-02-12 17:58:06 +02:00
Mykyta Synelnikov 422d2b7c67 Refactor password handling to bypass wp_unslash. 
Introduce a dedicated method to handle password fields securely, avoiding `wp_unslash` for these fields. This enhances consistency and security when processing form data across the plugin.
 2025-02-12 17:47:19 +02:00
Mykyta Synelnikov cbc8c24b35 Merge pull request #1647 from ultimatemember/fix/password 
Password set in Dashboard can't be used for UM login or vice versa (CU-86cxwy7ww)
 2025-02-12 17:21:27 +02:00
Mykyta Synelnikov 38593400ba Merge pull request #1644 from ultimatemember/fix/updates-request 
Fixes updates request
 2025-02-12 17:16:56 +02:00
yuriinalivaiko 17d95a189b Task CU-86cxwy7ww 
- password sanitize has been changed to the standard WordPress one.
 2025-02-04 23:23:26 +02:00
Mykyta Synelnikov 4adbe19cbe * fixed CVE-2024-12276; 
* reviewed using $wpdb and WPCS;
* set minimum required version to 6.2 due to using %i for $wpdb->prepare;
 2025-02-03 16:17:37 +02:00
Mykyta Synelnikov a760a6242e * updated requests to site URL; 
* WPCS;
 2025-01-31 15:19:28 +02:00
Mykyta Synelnikov 865fbf83c2 * added honeypot scripts/styles via 
`wp_add_inline_script()`, `wp_add_inline_style()`
 2025-01-30 13:00:17 +02:00
Mykyta Synelnikov 4d43d94502 * related to https://github.com/ultimatemember/ultimatemember/commit/8ca44d02a02e887fc4ab9bcb8ea9ff18ab2c0413 2025-01-30 12:33:49 +02:00
Mykyta Synelnikov bb0a49e08a * update dropdown items texts on cover photo change/remove; 
* WPCS;
 2025-01-29 16:44:29 +02:00
Mykyta Synelnikov fce490f54b * update dropdown items texts on cover photo change/remove; 
* WPCS;
 2025-01-29 16:43:05 +02:00
Mykyta Synelnikov 4dd1be344e * backward compatibility; 
* update dropdown items texts on profile photo change/remove;
* added escapers;
* WPCS;
 2025-01-29 16:01:02 +02:00
Mykyta Synelnikov 0520a55cc4 * removed hidden inputs on view mode; 
* handle data attribute instead of the hidden input;
* WPCS;
 2025-01-29 14:49:47 +02:00
Mykyta Synelnikov 5fc2cd54a4 * Reviewed #1634 2025-01-24 18:19:14 +02:00
yuriinalivaiko 5952c06c59 Task CU-86cxq9tuk 
- changed Open Graph image size.
 2025-01-19 14:58:59 +02:00
yuriinalivaiko 8bf8a0130b fixed "Download your data" and "Erase of your data" fields layout. 2025-01-17 16:03:51 +02:00
Mykyta Synelnikov dc81fa44ae Merge pull request #1607 from ultimatemember/fix/remove_mobile_detect 
Deprecates mobile detect library
 2025-01-14 12:02:23 +02:00
Mykyta Synelnikov 5ebefde6b8 * fixed security issue CVE ID: CVE-2025-0308 2025-01-10 02:17:18 +02:00
Mykyta Synelnikov e5fe05503a * fixed security issue CVE ID: CVE-2025-0308 
* fixed security issue CVE ID: CVE-2025-0318
 2025-01-08 12:20:35 +02:00
Mykyta Synelnikov a0892e18aa * enhancements related to #1599; 2024-12-19 17:24:52 +02:00
Mykyta Synelnikov 1ba3809344 * using wp_is_mobile instead of MobileDetect library 2024-12-17 21:53:18 +02:00
Mykyta Synelnikov 823f98906f * sorted deprecated function; 2024-11-29 14:24:35 +02:00
Mykyta Synelnikov b892a70756 * changed hook for initialization of email templates paths; 
* removed `load_plugin_textdomain` due to (article)[https://make.wordpress.org/core/2024/10/21/i18n-improvements-6-7/#Enhanced-support-for-only-using-PHP-translation-files]
* deprecated `UM()->localize()` function;
* deprecated `um_language_textdomain` filter hook;
 2024-11-29 14:09:23 +02:00
Mykyta Synelnikov f5d81f1a41 * added todos; 2024-11-29 12:57:18 +02:00
Mykyta Synelnikov 0e0977f37b * fixed #1595; 2024-11-28 17:49:48 +02:00
Mykyta Synelnikov 8d33c43130 Fixes 'um_dispatch_email' action #1589 
* Sending email notifications directly (without Action Scheduler) on user delete action;
* Changed activation handler priority for integration with Action Scheduler
* Added 'fetch_user_id' argument for fetching the necessary user before email sending when Action Scheduler is active.
 2024-11-19 17:48:10 +02:00
Mykyta Synelnikov 1a11581d12 * fixed um_current_user_can(); 2024-11-15 11:16:55 +02:00
Mykyta Synelnikov 51f36e4dd2 * release preparations; 2024-11-15 02:12:17 +02:00
Mykyta Synelnikov 234e200d20 * release preparations; 2024-11-15 02:11:10 +02:00
Mykyta Synelnikov 2086ddb53f * added um_image_upload_validation hook for 3rd-party validation during upload images; 2024-11-15 02:06:03 +02:00
Mykyta Synelnikov e561557e22 * added user_id attribute to the hooks; 2024-11-14 15:54:42 +02:00
Mykyta Synelnikov daa3ba87ef * fixed #1583; 2024-11-14 01:08:30 +02:00
Mykyta Synelnikov b4becdbcf5 * reviewed #1582; 2024-11-13 17:20:52 +02:00
yuriinalivaiko 9d373c968e - fixed incorrect usage of the um_fetch_user function 2024-11-13 14:32:47 +02:00
Mykyta Synelnikov b63ebf1a63 Merge pull request #1578 from ultimatemember/fix/registration_role 
Fixes validation of the form slug
 2024-11-13 00:37:32 +02:00
Mykyta Synelnikov aa60e74639 Merge pull request #1577 from ultimatemember/fix/invalid_fields_array 
Fixes issues when the custom fields meta has a wrong format
 2024-11-13 00:37:10 +02:00
Mykyta Synelnikov 349939ed75 * fixed checking profile_photo and cover_photo fields editable condition on profile image upload/crop handlers; 2024-11-12 16:50:09 +02:00
Mykyta Synelnikov 920fb168dc * fix related to commit 945b79a97940406b40a5996f9aa2159bd11e29ab 2024-11-11 18:53:17 +02:00
Mykyta Synelnikov 9712e507ce Merge pull request #1575 from ultimatemember/security/uploader_conditions 
Fixes security issue related to the file/image upload and image resize
 2024-11-11 14:01:55 +02:00
Mykyta Synelnikov 34ee3d5ebc * reviewed and updated docs; 2024-11-06 17:13:38 +02:00
Mykyta Synelnikov 065dfa54ed Merge pull request #1544 from ultimatemember/feature/action-schedule-integration 
Action schedule integration
 2024-11-06 13:49:51 +02:00
ashubawork 3d94686454 - change blocks folder 2024-11-06 12:12:13 +02:00
Mykyta Synelnikov 684324f5c0 * reviewed; 2024-11-05 18:42:18 +02:00
Mykyta Synelnikov 61ea1b3e8d * maybe fixed CVE-2024-10528; 2024-11-05 11:55:07 +02:00
ashubawork cf92a24168 - update blocks 2024-10-31 14:10:34 +02:00