Plugin / Google Doc Embedder

Changelog

2.6.4

Tidied up files that were no longer being used by the plugin, and simplified by removing profile editing. The extra legacy code caused a false-positive security alert and caused
the plugin to be removed from the repository temporarily.

2.6.2

Additional checks to protect against XSS/CSRF vulnerability reported by Tristan Madani.

Removed settings and profile import/export feature to reduce support and development requirements of this plugin.

2.6.1

Works with WP4.6.
Fixed a potential cross-site security vulnerability.

2.6

New version number to avoid previous version number conflicts.
This version should work with WP4.4

2.5.22

Post editor button fixed – was removed in previous version.

2.5.21

Changed the name of text domain from ‘gde’ to ‘google-document-embedder’.
This was needed so WordPress’ new translation system works – text domain must match plugin slug.

2.5.19

• Fixed potential XSS attack flaw – please update to this version.

2.5.18

• Added: Notice on settings page about recent changes to Google Viewer.

2.5.17

• Fixed: Potential security vulnerability in disabled enhanced viewer code

2.5.16

• Removed: Masked URL ability, pending rewrite after Google breakage

2.5.15

• Removed: Enhanced Viewer and mobile option, pending rewrite after Google breakage
• Added: Italian translation (thanks Marco)
• Fixed: Potential block download and hidden toolbar conflict (thanks Tom)
• Fixed: Garbled Cyrillic text in editor dialog (thanks bones852)

2.5.14

• Fixed: Download link had no text in some circumstances
• Updated: Hungarian translation (thanks szemcse)

2.5.13

• Fixed: Javascript error within WP 3.9 visual editor (thanks Sergey)
• Fixed: (E) Unsupported browser message on some documents
• Changed: (E) Lengthened default network timeout
• Removed: Long-useless authonly= and lang= shortcode parameters (use profiles)

2.5.12

• Changed: Updated mobile detection library
• Changed: Updated settings navigation style for WP 3.8+
• Changed: Updated Dutch translation (thanks Niko)

2.5.11

• Fixed: Settings and profiles import
• Changed: Removed more unreachable legacy code

2.5.10

• Fixed: PHP warning on multisite during uninstall (thanks TigranTovmasyan)
• Changed: (E) Viewer settings use native color picker
• Changed: Now requires WordPress 3.5+ (removed legacy functions)

2.5.9

• Fixed: Mixed content restrictions while parent page is SSL
• Removed: page= shortcode attribute (broken in Google Viewer)
• Removed: Beta delivery api (server bandwidth issues/WP repo policies)

2.5.8

• Added: (E) Right-click menu disabled on secure documents
• Fixed: Support tab service errors
• Changed: Czech translation updated (thanks Jirka)

2.5.7

• Fixed: No submit button on support tab if using < WP 3.4 (thanks fatherb)
• Fixed: save=0 option not respected in some cases
• Fixed: (E) cache=0 option breaks secure document display (thanks Manish)
• Fixed: (E) Javascript sometimes broken with WP_DEBUG enabled
• Changed: (E) Increased timeout period on fetching document contents

2.5.6

• Fixed: (E) Hangs on document load due to Google code changes
• Fixed: (E) Profile language not honored on New Window button tip (thanks Ege)
• Fixed: New profiles may appear blank on initial load
• Fixed: HTTP status code check is too stringent for some servers
• Fixed: Spurious database error on deactivation if log table not present
• Fixed: PHP error when API key retrieval fails

2.5.5

• Added: (E) Option to restrict full screen view to logged-in users
• Fixed: “Unable to load profile settings” on some installs
• Fixed: Rate limit exceeded on is.gd shortened URLs (thanks Dan)
• Fixed: Some settings remain in database after uninstall
• Fixed: Dimensions not sanitized in editor dialog
• Changed: Insert from Media Library ability restored for WP 3.5+

2.5.4

• Fixed: Force download option gives PHP error (thanks Zverina)
• Fixed: Force download breaks on filenames with multiple extensions
• Fixed: Numeric-only profile names accepted (conflict with IDs)
• Fixed: Can’t validate redirected URLs (thanks onesoftindiana)
• Fixed: Duplicating table indexes when logging enabled

2.5.3

• Fixed: Unsupported file type regression interferes with some uploads

2.5.2

• Fixed: Fatal error with certain plugins and themes
• Changed: Network activation halted for now (multisite single activation OK)
• Changed: Removed reliance on web services for file type recognition
• Changed: Multisite database improvements
• Changed: Text domain now called on the appropriate hook

2.5.1

• Added: Russian translation (thanks Józek)
• Added: Dutch translation (thanks Robert)
• Fixed: Default profile not created on clean install (thanks Clifford)
• Fixed: Viewer size from shortcode doesn’t default to pixel
• Fixed: Erroneous error message when file validation is blocked