10h30/ultimatemember
1
0
Fork 0
mirror of https://github.com/10h30/ultimatemember.git synced 2026-06-05 15:09:37 +09:00
Code Issues Packages Projects Releases Wiki Activity
4,837 Commits 4 Branches 13 Tags
b3242fe9b0c96a5349fc24121c75425a5e8096f5
Commit Graph

325 Commits

Author SHA1 Message Date
Mykyta Synelnikov b3242fe9b0 Added docs 2025-05-12 13:25:24 +03:00
Mykyta Synelnikov 9d83fba560 Update dynamic function blacklist for security enhancement 
Added a mechanism to dynamically retrieve and merge updated WordPress function lists into the blacklist to prevent unsafe usage in dropdown options. Addresses a security issue (CVE-2025-47691) by using a JSON-based function source tied to WordPress versioning.
 2025-05-12 13:16:17 +03:00
Mykyta Synelnikov 1ba3809344 * using wp_is_mobile instead of MobileDetect library 2024-12-17 21:53:18 +02:00
Mykyta Synelnikov 920fb168dc * fix related to commit 945b79a97940406b40a5996f9aa2159bd11e29ab 2024-11-11 18:53:17 +02:00
Mykyta Synelnikov 90413c32e5 * reviewed and fixed iframe height when HTML formatted textarea is used; 2024-10-03 14:38:51 +03:00
Mykyta Synelnikov 682c4929ce * additional fix for #1551; 2024-10-01 17:06:43 +03:00
Mykyta Synelnikov cccce6ebc3 * fixed running UM()->fields()->get_restricted_fields_for_edit() function in the fields loop; 2024-09-27 17:55:44 +03:00
Mykyta Synelnikov 6d99694045 * fixed #1540; 2024-09-25 22:50:36 +03:00
Mykyta Synelnikov 491f12161e - fixed wp_editor null value; 2024-05-22 00:30:58 +03:00
Mykyta Synelnikov 8208d01bf8 - fixed PHP errors when some custom registered fields are displayed without registration; 2024-05-20 14:23:45 +03:00
Mykyta Synelnikov af3b265d65 - fixed displaying required field asterisk on the Profile > View mode; 2024-05-08 14:02:30 +03:00
Mykyta Synelnikov 3a36d9df47 Merge pull request #1491 from ultimatemember/security/CVE-2024-2765 
CVE 2024 2765
 2024-04-02 17:30:11 +03:00
Mykyta Synelnikov a4d20fe4fd - reviewed #1481; 2024-04-02 17:28:54 +03:00
Mykyta Synelnikov e2b7c6edbc - reviewed #1486; 
- fixed #1483;
 2024-03-27 11:43:37 +02:00
Mykyta Synelnikov d48bcac683 - fixed using esc_attr() in href="" attributes; 2024-03-27 11:06:02 +02:00
Mykyta Synelnikov daf5804977 - fixed PHP notice on validation; 2024-02-29 14:56:54 +02:00
Mykyta Synelnikov ceebdb3953 - added class="fusion-lazyload-ignore" to empty images in modal window while upload avatar or cover photo. Avoid the conflict with Fusion Images lazyload functionality; 2024-01-03 14:43:00 +02:00
Mykyta Synelnikov 4eb3ff2093 - fixed #1328; 
- reviewed #1373;
 2023-12-05 14:24:33 +02:00
Mykyta Synelnikov e861b86911 - fixed PHP issue; 2023-12-05 10:25:43 +02:00
Mykyta Synelnikov bbbe6812fd - fixed #1372; 2023-12-05 02:05:44 +02:00
Mykyta Synelnikov ceeef9500d - partially reviewed #1361; 2023-11-29 19:51:05 +02:00
Mykyta Synelnikov 5d750f35dc - reviewed #1343; 
- wpcs;
 2023-11-21 15:28:20 +02:00
Mykyta Synelnikov 6fc35d3cbb - reviewed #1337; 2023-11-21 14:52:55 +02:00
Mykyta Synelnikov 3ccb9cf619 - fixed custom callback member directories filters with child dropdown filters; 2023-10-13 15:35:39 +03:00
Mykyta Synelnikov df47e006d7 - changed version to 2.7.0; 
- updated dependencies to 2.7.0;
 2023-10-10 18:20:15 +03:00
ashubawork 3ff9637a43 - fix checking $this->global_args['mode'] 2023-10-03 16:24:44 +03:00
Mykyta Synelnikov 31ef4924f3 - fixed #1316; 2023-10-03 15:40:10 +03:00
ashubawork dc0ea19770 - fix code comment 2023-09-26 09:19:25 +03:00
ashubawork d4b7a9c565 - frontend field oembed 2023-09-25 15:36:51 +03:00
ashubawork 86afc2523a - init commit 2023-09-22 14:52:12 +03:00
Mykyta Synelnikov 200bc9c51f - reviewed #1298; 
- temporarily removed Stripe from extensions;
- wpcs for extensions.php;
 2023-09-22 11:42:42 +03:00
Mykyta Synelnikov c31a8dabd9 - reviewed PR #1281; 2023-09-21 01:47:53 +03:00
Mykyta Synelnikov ffc52f3f53 - added docs for um_user_profile_restricted_edit_fields hook; 2023-09-12 01:03:47 +03:00
Mykyta Synelnikov e5b8ff400e - fixed editable attribute base on the legacy code; 
- if `editable` attribute  doesn't exist then we set `editable` to true by default;
 2023-09-05 01:12:16 +03:00
Mykyta Synelnikov 6e9d122494 - fixed "is_block" argument for ultimatemember shortcodes; 
- added sanitize shortcode arguments functions;
 2023-09-02 00:53:51 +03:00
Mykyta Synelnikov a2b52cdd0c - fixed changes added for #1277; 
- probably fix for #1292;
 2023-08-28 23:20:14 +03:00
Mykyta Synelnikov 26de093b38 - fixed variable type for UM()->form()->processing and UM()->fields()->set_id; 2023-08-23 15:00:21 +03:00
Mykyta Synelnikov 11c0a8ebf9 - fixed HTML validation for user description field in header; 
- fixed escaping HTML in user description field;
 2023-08-15 23:52:40 +03:00
Mykyta Synelnikov 427437ff69 - fixed #1277 2023-08-15 04:07:26 +03:00
Mykyta Synelnikov bfef1f9dc7 - reviewed #1269; 
- unified `UM()->fields()->editing` and `UM()->fields()->viewing` to bool variables use true|false in conditions to make `===` or `!==` comparing;
 2023-08-15 03:49:13 +03:00
ashubawork bb4139e514 - fix bio conflict 2023-07-28 10:49:36 +03:00
Mykyta Synelnikov c9789b8462 - standardize the condition for checking not editable fields to empty( $data['editable'] 2023-07-27 13:37:01 +03:00
Mykyta Synelnikov 886d418705 - reviewed #1212 and manually merged it into development/2.6.9; 2023-07-25 13:22:22 +03:00
ashubawork 5b647ae5e9 - add translators 2023-07-13 11:36:29 +03:00
ashubawork 0ae17ff00f - wp_kses for field error 2023-07-12 10:10:09 +03:00
Mykyta Synelnikov efa1a8a636 - fixed editable field; 2023-07-04 13:01:04 +03:00
Mykyta Synelnikov a7f3b80d3e - reviewd #1237; 2023-07-04 12:44:06 +03:00
Mykyta Synelnikov 1a2f683645 - wpcs; 2023-07-03 14:19:42 +03:00
Mykyta Synelnikov 6e9bd103b3 - fixed fatal already fixed in 2.6.7; 2023-07-02 20:52:25 +03:00
Mykyta Synelnikov 8e108c9443 - deprecated unnecessary um_multiselect_option_value hook; 
- updated hookdocs;
 2023-07-02 13:39:42 +03:00