@@ -59,6 +59,15 @@ This plugin is known to conflict with certain plugins, many pertaining to SEO an
== Changelog ==
= 0.6 =
* Revert security hotfixes made in 0.5.3 and address the vulnerabilities in the WordPress way.
* If current user can't read a private post, don't display the print template, allowing the standard theme to handle requests.
* If a post is password protected and the viewer hasn't provided the right password, display the password form and prevent plugin from exposing any information about the post that WordPress doesn't already.
* When WordPress determines a request is a 404, don't activate the plugin's templating functionality.
* Convert the plugin to a singleton.
* Audit entire plugin for translation readyness.
* Correct phpdoc.
= 0.5.3 =
* Creates is_protected() method to determine if the print page should be visible to the current user
* Correct security vulnerability allowing both private and password protected posts from being accessed through the print page
...
...
@@ -139,6 +148,9 @@ This plugin is known to conflict with certain plugins, many pertaining to SEO an
== Upgrade Notice ==
= 0.6 =
Recommended for all users as this release addresses security vulnerabilities related to privately-published and password-protected posts.
= 0.5.2 =
Resolves a problem where requests for print templates redirect to the article.
