WordPress.org

Ready to get started?Download WordPress

Forums

Gallery Bank
Be carefull!!!!! Dangerous plugin!!! (4 posts)

1 star
  1. powerofhealth
    Member
    Posted 8 months ago #

    This is very dangerous plugin!!!

    Subscriber can delete albums which are created by admin or someone else! Simply anyone can delete anything created before!

    No answer from them!!! Their domain bookings-engine.com is not working!

    Use another plugin!!!

  2. esmi
    Theme Diva & Forum Moderator
    Posted 8 months ago #

    Did you bother trying to contact the plugin's developer about this?

  3. Gallery-Bank
    Member
    Plugin Author

    Posted 8 months ago #

    Hi Powerofhealth,

    We have given the functionality so that all users can access the plugin from the wordpress dashboard but if you want to restrict it to the admininstrator. You need to perform the following steps.

    Firstly go to your Gallery-bank folder if you are using standard version or gallery-bank-pro-version if you are using the Pro Version.

    In the lib folder locate the file gallery-bank-class.php

    Once you open the file find this piece of code

    function create_global_menus_for_gallery_bank()
    {
    	global $wpdb;
    	$menu = add_menu_page('Gallery Bank', __('Gallery Bank', gallery_bank), 'read', 'gallery_bank','',GALLERY_BK_PLUGIN_URL . '/icon.png');
    	add_submenu_page('', 'Dashboard', __('Dashboard', gallery_bank), 'read', 'gallery_bank', 'gallery_bank');
    	$album_count = $wpdb->get_var
    	(
    		$wpdb->prepare
    		(
    			"SELECT count(album_id) FROM ".gallery_bank_albums(),""
    		)
    	);
    	if($album_count < 2)
    	{
    		add_submenu_page('gallery_bank', 'Add New Album',__('Add New Album', gallery_bank) , 'read', 'add_album', 'add_album');
    	}
    
    	add_submenu_page('gallery_bank', 'Sorting',__('Sorting', gallery_bank) , 'read', 'images_sorting_dd', 'images_sorting_dd');
    	$submenu1 = add_submenu_page('gallery_bank', 'Gallery Bank', __('Global Settings', gallery_bank), 'read', 'settings', 'settings');
    	add_submenu_page('gallery_bank','Documentation',__('Documentation', gallery_bank),'read','documentation','documentation');
    	add_submenu_page('gallery_bank','Purchase Pro Version',__('Purchase Pro Version', gallery_bank),'read','get_more_features','get_more_features');
    	add_submenu_page('', '','' , 'read', 'view_album', 'view_album');
    	add_submenu_page('', '','' , 'read', 'album_preview', 'album_preview');
    	add_submenu_page('', '','' , 'read', 'edit_album', 'edit_album');
    	add_submenu_page('', '','' , 'read', 'images_sorting', 'images_sorting');
    	add_submenu_page('', '','' , 'read', 'pro_version', 'pro_version');
    
    }

    Replace this code with the following :

    function create_global_menus_for_gallery_bank()
    {
    	global $wpdb;
    	$menu = add_menu_page('Gallery Bank', __('Gallery Bank', gallery_bank), 'read', 'gallery_bank','',GALLERY_BK_PLUGIN_URL . '/icon.png');
    	add_submenu_page('', 'Dashboard', __('Dashboard', gallery_bank), 'read', 'gallery_bank', 'gallery_bank');
    	$album_count = $wpdb->get_var
    	(
    		$wpdb->prepare
    		(
    			"SELECT count(album_id) FROM ".gallery_bank_albums(),""
    		)
    	);
    	if($album_count < 2)
    	{
    		add_submenu_page('gallery_bank', 'Add New Album',__('Add New Album', gallery_bank) , 'read', 'add_album', 'add_album');
    	}
    
    	add_submenu_page('gallery_bank', 'Sorting',__('Sorting', gallery_bank) , 'administrator', 'images_sorting_dd', 'images_sorting_dd');
    	$submenu1 = add_submenu_page('gallery_bank', 'Gallery Bank', __('Global Settings', gallery_bank), 'administrator', 'settings', 'settings');
    	add_submenu_page('gallery_bank','Documentation',__('Documentation', gallery_bank),'administrator','documentation','documentation');
    gallery_bank),'administrator','get_more_features','get_more_features');
    	add_submenu_page('', '','' , 'administrator', 'view_album', 'view_album');
    	add_submenu_page('', '','' , 'administrator', 'album_preview', 'album_preview');
    	add_submenu_page('', '','' , 'administrator', 'edit_album', 'edit_album');
    	add_submenu_page('', '','' , 'administrator', 'images_sorting', 'images_sorting');
    	add_submenu_page('', '','' , 'administrator', 'pro_version', 'pro_version');
    
    }
  4. Gallery-Bank
    Member
    Plugin Author

    Posted 8 months ago #

    We have fixed this as well for other customers in version 2.0.9

    The Plugin could be only used by the administrator or editor to perform any actions. But it was shown for other users as well.

    We have kept this as for a future request now to ask the user to which users it would like to give permissions to use the Plugin.

    Thanks

    Support Team

Reply

You must log in to post.

About this Plugin

About this Topic

Tags

No tags yet.