·
7 commits
to main
since this release
9f85bcc
This commit was signed with the committer’s verified signature.
dannyvankooten
Danny van Kooten
1.6.1 - Oct 1, 2024
- Escape return value of
add_query_argbefore outputting, fixing a potential XSS issue. Thanks to vgo0 for the responsible disclosure. - Escape or kses return values of all gettext calls.
- Improved sanitization of all plugin settings.
- Minor server side performance improvements by getting rid of some unneccessary string copies or sprintf calls.