Support » Plugin: Photo Gallery - Photo Albums - Image Gallery - WordPress Gallery Plugin » Be carefull!!!!! Dangerous plugin!!!

  • This is very dangerous plugin!!!

    Subscriber can delete albums which are created by admin or someone else! Simply anyone can delete anything created before!

    No answer from them!!! Their domain bookings-engine.com is not working!

    Use another plugin!!!

Viewing 3 replies - 1 through 3 (of 3 total)
  • esmi

    (@esmi)

    Forum Moderator

    Did you bother trying to contact the plugin’s developer about this?

    Plugin Author Gallery-Bank

    (@gallery-bank)

    Hi Powerofhealth,

    We have given the functionality so that all users can access the plugin from the wordpress dashboard but if you want to restrict it to the admininstrator. You need to perform the following steps.

    Firstly go to your Gallery-bank folder if you are using standard version or gallery-bank-pro-version if you are using the Pro Version.

    In the lib folder locate the file gallery-bank-class.php

    Once you open the file find this piece of code

    function create_global_menus_for_gallery_bank()
    {
    	global $wpdb;
    	$menu = add_menu_page('Gallery Bank', __('Gallery Bank', gallery_bank), 'read', 'gallery_bank','',GALLERY_BK_PLUGIN_URL . '/icon.png');
    	add_submenu_page('', 'Dashboard', __('Dashboard', gallery_bank), 'read', 'gallery_bank', 'gallery_bank');
    	$album_count = $wpdb->get_var
    	(
    		$wpdb->prepare
    		(
    			"SELECT count(album_id) FROM ".gallery_bank_albums(),""
    		)
    	);
    	if($album_count < 2)
    	{
    		add_submenu_page('gallery_bank', 'Add New Album',__('Add New Album', gallery_bank) , 'read', 'add_album', 'add_album');
    	}
    
    	add_submenu_page('gallery_bank', 'Sorting',__('Sorting', gallery_bank) , 'read', 'images_sorting_dd', 'images_sorting_dd');
    	$submenu1 = add_submenu_page('gallery_bank', 'Gallery Bank', __('Global Settings', gallery_bank), 'read', 'settings', 'settings');
    	add_submenu_page('gallery_bank','Documentation',__('Documentation', gallery_bank),'read','documentation','documentation');
    	add_submenu_page('gallery_bank','Purchase Pro Version',__('Purchase Pro Version', gallery_bank),'read','get_more_features','get_more_features');
    	add_submenu_page('', '','' , 'read', 'view_album', 'view_album');
    	add_submenu_page('', '','' , 'read', 'album_preview', 'album_preview');
    	add_submenu_page('', '','' , 'read', 'edit_album', 'edit_album');
    	add_submenu_page('', '','' , 'read', 'images_sorting', 'images_sorting');
    	add_submenu_page('', '','' , 'read', 'pro_version', 'pro_version');
    
    }

    Replace this code with the following :

    function create_global_menus_for_gallery_bank()
    {
    	global $wpdb;
    	$menu = add_menu_page('Gallery Bank', __('Gallery Bank', gallery_bank), 'read', 'gallery_bank','',GALLERY_BK_PLUGIN_URL . '/icon.png');
    	add_submenu_page('', 'Dashboard', __('Dashboard', gallery_bank), 'read', 'gallery_bank', 'gallery_bank');
    	$album_count = $wpdb->get_var
    	(
    		$wpdb->prepare
    		(
    			"SELECT count(album_id) FROM ".gallery_bank_albums(),""
    		)
    	);
    	if($album_count < 2)
    	{
    		add_submenu_page('gallery_bank', 'Add New Album',__('Add New Album', gallery_bank) , 'read', 'add_album', 'add_album');
    	}
    
    	add_submenu_page('gallery_bank', 'Sorting',__('Sorting', gallery_bank) , 'administrator', 'images_sorting_dd', 'images_sorting_dd');
    	$submenu1 = add_submenu_page('gallery_bank', 'Gallery Bank', __('Global Settings', gallery_bank), 'administrator', 'settings', 'settings');
    	add_submenu_page('gallery_bank','Documentation',__('Documentation', gallery_bank),'administrator','documentation','documentation');
    gallery_bank),'administrator','get_more_features','get_more_features');
    	add_submenu_page('', '','' , 'administrator', 'view_album', 'view_album');
    	add_submenu_page('', '','' , 'administrator', 'album_preview', 'album_preview');
    	add_submenu_page('', '','' , 'administrator', 'edit_album', 'edit_album');
    	add_submenu_page('', '','' , 'administrator', 'images_sorting', 'images_sorting');
    	add_submenu_page('', '','' , 'administrator', 'pro_version', 'pro_version');
    
    }

    Plugin Author Gallery-Bank

    (@gallery-bank)

    We have fixed this as well for other customers in version 2.0.9

    The Plugin could be only used by the administrator or editor to perform any actions. But it was shown for other users as well.

    We have kept this as for a future request now to ask the user to which users it would like to give permissions to use the Plugin.

    Thanks

    Support Team

Viewing 3 replies - 1 through 3 (of 3 total)
  • The topic ‘Be carefull!!!!! Dangerous plugin!!!’ is closed to new replies.