Server IP : 66.29.132.124 / Your IP : 3.147.86.30 Web Server : LiteSpeed System : Linux business141.web-hosting.com 4.18.0-553.lve.el8.x86_64 #1 SMP Mon May 27 15:27:34 UTC 2024 x86_64 User : wavevlvu ( 1524) PHP Version : 7.4.33 Disable Function : NONE MySQL : OFF | cURL : ON | WGET : ON | Perl : ON | Python : ON | Sudo : OFF | Pkexec : OFF Directory : /home/wavevlvu/misswavenigeria.com/wp-content/plugins/so-widgets-bundle/base/inc/ |
Upload File : |
<?php /** * Action for displaying the widget preview. */ function siteorigin_widget_preview_widget_action() { if ( empty( $_REQUEST['_widgets_nonce'] ) || ! wp_verify_nonce( $_REQUEST['_widgets_nonce'], 'widgets_action' ) ) { wp_die( __( 'Invalid request.', 'so-widgets-bundle' ), 403 ); } elseif ( empty( $_POST['class'] ) ) { wp_die( __( 'Invalid widget.', 'so-widgets-bundle' ), 400 ); } // Get the widget from the widget factory global $wp_widget_factory; $widget_class = str_replace( '\\\\', '\\', $_POST['class'] ); $widget = ! empty( $wp_widget_factory->widgets[ $widget_class ] ) ? $wp_widget_factory->widgets[ $widget_class ] : false; if ( ! is_a( $widget, 'SiteOrigin_Widget' ) ) { wp_die( __( 'Invalid post.', 'so-widgets-bundle' ), 400 ); } $instance = json_decode( stripslashes_deep( $_POST['data'] ), true ); /* @var $widget SiteOrigin_Widget */ $instance = $widget->update( $instance, $instance ); $instance['is_preview'] = true; // The theme stylesheet will change how the button looks wp_enqueue_style( 'theme-css', get_stylesheet_uri(), array(), rand( 0, 65536 ) ); wp_enqueue_style( 'so-widget-preview', siteorigin_widgets_url( 'base/css/preview.css' ), array(), rand( 0, 65536 ) ); $sowb = SiteOrigin_Widgets_Bundle::single(); $sowb->register_general_scripts(); do_action( 'siteorigin_widgets_render_preview_' . $widget->id_base, $widget ); ob_start(); $widget->widget( array( 'before_widget' => '', 'after_widget' => '', 'before_title' => '<h3 class="widget-title">', 'after_title' => '</h3>', ), $instance ); $widget_html = ob_get_clean(); // Print all the scripts and styles ?> <html> <head> <title><?php _e( 'Widget Preview', 'so-widgets-bundle' ); ?></title> <?php wp_print_scripts(); wp_print_styles(); ?> </head> <body> <?php // A lot of themes use entry-content as their main content wrapper. ?> <div class="entry-content"> <?php echo $widget_html; ?> </div> </body> </html> <?php wp_die(); } add_action( 'wp_ajax_so_widgets_preview', 'siteorigin_widget_preview_widget_action' ); /** * Check if the current user can edit posts of a specific post type. * * This function checks if the current user has the capability to edit posts * of the specified post type. It retrieves the post type object if necessary * and then checks the user's capabilities. * * @param string|object $post_type The post type name or object. * * @return bool True if the user can edit posts of the specified post type, * false otherwise. */ function siteorigin_widget_user_can_edit_post_type( $post_type ) { if ( ! is_object( $post_type ) ) { $post_type = get_post_type_object( $post_type ); } return $post_type && current_user_can( $post_type->cap->edit_posts ); } /** * Action to handle searching posts */ function siteorigin_widget_action_search_posts() { if ( empty( $_REQUEST['_widgets_nonce'] ) || ! wp_verify_nonce( $_REQUEST['_widgets_nonce'], 'widgets_action' ) ) { wp_die( __( 'Invalid request.', 'so-widgets-bundle' ), 403 ); } global $wpdb; $query = ''; $wpml_query = ''; // Get all public post types, besides attachments $post_types = (array) get_post_types( array( 'public' => true, ) ); if ( ! empty( $_REQUEST['postTypes'] ) ) { $post_types = array_intersect( explode( ',', sanitize_text_field( $_REQUEST['postTypes'] ) ), $post_types ); } else { unset( $post_types['attachment'] ); } // If WPML is installed, only include posts from the currently active language. if ( defined( 'ICL_LANGUAGE_CODE' ) && ! empty( $_REQUEST['language'] ) ) { $query .= $wpdb->prepare(" AND {$wpdb->prefix}icl_translations.language_code = %s ", sanitize_text_field( $_REQUEST['language'] )); $wpml_query .= " INNER JOIN {$wpdb->prefix}icl_translations ON ($wpdb->posts.ID = {$wpdb->prefix}icl_translations.element_id) "; } if ( ! empty( $_GET['query'] ) ) { $search_query = '%' . $wpdb->esc_like( sanitize_text_field( $_GET['query'] ) ) . '%'; $query .= $wpdb->prepare( " AND post_title LIKE %s ", $search_query ); } $post_types = apply_filters( 'siteorigin_widgets_search_posts_post_types', $post_types ); // Ensure the user can edit this post type. foreach ( $post_types as $key => $post_type ) { if ( ! siteorigin_widget_user_can_edit_post_type( $post_type ) ) { unset( $post_types[ $key ] ); } } $post_types = "'" . implode( "', '", array_map( 'esc_sql', $post_types ) ) . "'"; $ordered_by = esc_sql( apply_filters( 'siteorigin_widgets_search_posts_order_by', 'post_modified DESC' ) ); $results = $wpdb->get_results( " SELECT ID AS 'value', post_title AS label, post_type AS 'type' FROM {$wpdb->posts} {$wpml_query} WHERE post_type IN ( {$post_types} ) AND post_status = 'publish' {$query} ORDER BY {$ordered_by} LIMIT 20 ", ARRAY_A ); // Filter results to ensure the user can read the post. $results = array_filter( $results, function( $post ) { return current_user_can( 'read_post', $post['value'] ); } ); wp_send_json( apply_filters( 'siteorigin_widgets_search_posts_results', $results ) ); } add_action( 'wp_ajax_so_widgets_search_posts', 'siteorigin_widget_action_search_posts' ); $siteorigin_widget_taxonomies = array(); /** * Get the capability required for a taxonomy term. * * Determines the lowest available capability needed for the specified taxonomy * type. Caches the result in the $siteorigin_widget_taxonomies global array. * * @param string $type The taxonomy type to get the capability for. * * @return string|false The capability required for the taxonomy term, or false if not available. */ function siteorigin_widget_get_taxonomy_capability( $type ) { global $siteorigin_widget_taxonomies; if ( ! empty( $siteorigin_widget_taxonomies[ $type ] ) ) { return $siteorigin_widget_taxonomies[ $type ]; } // Let's identify the post type for this taxonomy. $taxonomy = get_taxonomy( $type ); if ( empty( $taxonomy ) || ! is_object( $taxonomy->cap ) ) { return false; } // Get the lowest capability possible. $capability = $taxonomy->cap->assign_terms ?? $taxonomy->cap->edit_terms ?? $taxonomy->cap->manage_terms ?? false; $siteorigin_widget_taxonomies[ $type ] = $capability; return $siteorigin_widget_taxonomies[ $type ]; } /** * Action to handle searching taxonomy terms. */ function siteorigin_widget_action_search_terms() { if ( empty( $_REQUEST['_widgets_nonce'] ) || ! wp_verify_nonce( $_REQUEST['_widgets_nonce'], 'widgets_action' ) ) { wp_die( __( 'Invalid request.', 'so-widgets-bundle' ), 403 ); } global $wpdb; $term = ! empty( $_GET['term'] ) ? sanitize_text_field( stripslashes( $_GET['term'] ) ) : ''; $term = trim( $term, '%' ); $query = $wpdb->prepare( " SELECT terms.term_id, terms.slug AS 'value', terms.name AS 'label', termtaxonomy.taxonomy AS 'type' FROM $wpdb->terms AS terms JOIN $wpdb->term_taxonomy AS termtaxonomy ON terms.term_id = termtaxonomy.term_id WHERE terms.name LIKE '%s' LIMIT 20 ", '%' . $wpdb->esc_like( $term ) . '%' ); $results = array(); $query_results = $wpdb->get_results( $query ); if ( empty( $query_results ) ) { return array(); } foreach ( $query_results as $result ) { if ( current_user_can( siteorigin_widget_get_taxonomy_capability( $result->type ) ) ) { $results[] = array( 'value' => $result->type . ':' . $result->value, 'label' => $result->label, 'type' => $result->type, ); } } wp_send_json( $results ); } add_action( 'wp_ajax_so_widgets_search_terms', 'siteorigin_widget_action_search_terms' ); /** * Action for getting the number of posts returned by a query. */ function siteorigin_widget_get_posts_count_action() { if ( empty( $_REQUEST['_widgets_nonce'] ) || ! wp_verify_nonce( $_REQUEST['_widgets_nonce'], 'widgets_action' ) ) { wp_die( __( 'Invalid request.', 'so-widgets-bundle' ), 403 ); } $query = stripslashes( $_POST['query'] ); wp_send_json( array( 'posts_count' => siteorigin_widget_post_selector_count_posts( $query ) ) ); } add_action( 'wp_ajax_sow_get_posts_count', 'siteorigin_widget_get_posts_count_action' ); function siteorigin_widget_remote_image_search() { if ( empty( $_GET[ '_sononce' ] ) || ! wp_verify_nonce( $_GET[ '_sononce' ], 'so-image' ) ) { wp_die( __( 'Invalid request.', 'so-widgets-bundle' ), 403 ); } if ( empty( $_GET['q'] ) ) { wp_die( __( 'Invalid request.', 'so-widgets-bundle' ), 400 ); } // Send the query to stock search server $url = add_query_arg( array( 'q' => $_GET[ 'q' ], 'page' => ! empty( $_GET[ 'page' ] ) ? (int) $_GET[ 'page' ] : 1, ), 'http://stock.siteorigin.com/wp-admin/admin-ajax.php?action=image_search' ); $result = wp_remote_get( $url, array( 'timeout' => 20, ) ); if ( ! is_wp_error( $result ) ) { $result = json_decode( $result['body'], true ); if ( ! empty( $result['items'] ) ) { foreach ( $result['items'] as & $r ) { if ( ! empty( $r['full_url'] ) ) { $r['import_signature'] = md5( $r['full_url'] . '::' . NONCE_SALT ); } } } wp_send_json( $result ); } else { $result = array( 'error' => true, 'message' => $result->get_error_message(), ); wp_send_json_error( $result ); } } add_action( 'wp_ajax_so_widgets_image_search', 'siteorigin_widget_remote_image_search' ); function siteorigin_widget_image_import() { if ( empty( $_GET[ '_sononce' ] ) || ! wp_verify_nonce( $_GET[ '_sononce' ], 'so-image' ) ) { $result = array( 'error' => true, 'message' => __( 'Nonce error', 'so-widgets-bundle' ), ); } elseif ( empty( $_GET['import_signature'] ) || empty( $_GET['full_url'] ) || md5( $_GET['full_url'] . '::' . NONCE_SALT ) !== $_GET['import_signature'] ) { $result = array( 'error' => true, 'message' => __( 'Signature error', 'so-widgets-bundle' ), ); } else { // Fetch the image $src = media_sideload_image( $_GET['full_url'], $_GET['post_id'], null, 'src' ); if ( is_wp_error( $src ) ) { $result = array( 'error' => true, 'message' => $src->get_error_code(), ); } else { global $wpdb; $attachment = $wpdb->get_col( $wpdb->prepare( "SELECT ID FROM $wpdb->posts WHERE guid='%s';", $src ) ); if ( ! empty( $attachment ) ) { $thumb_src = wp_get_attachment_image_src( $attachment[0], 'thumbnail' ); $result = array( 'error' => false, 'attachment_id' => $attachment[0], 'thumb' => $thumb_src[0], ); } else { $result = array( 'error' => true, 'message' => __( 'Attachment error', 'so-widgets-bundle' ), ); } } } // Return the result wp_send_json( $result ); } add_action( 'wp_ajax_so_widgets_image_import', 'siteorigin_widget_image_import' ); /** * Action to handle a user dismissing a teaser notice. */ function siteorigin_widgets_dismiss_widget_action() { if ( empty( $_GET[ '_wpnonce' ] ) || ! wp_verify_nonce( $_GET[ '_wpnonce' ], 'dismiss-widget-teaser' ) ) { wp_die( __( 'Invalid request.', 'so-widgets-bundle' ), 403 ); } if ( empty( $_GET[ 'widget' ] ) ) { wp_die( __( 'Invalid request.', 'so-widgets-bundle' ), 400 ); } $dismissed = get_user_meta( get_current_user_id(), 'teasers_dismissed', true ); if ( empty( $dismissed ) ) { $dismissed = array(); } $dismissed[ $_GET[ 'widget' ] ] = true; update_user_meta( get_current_user_id(), 'teasers_dismissed', $dismissed ); wp_die(); } add_action( 'wp_ajax_so_dismiss_widget_teaser', 'siteorigin_widgets_dismiss_widget_action' );