Commit c706bd7e authored by MediaFormat's avatar MediaFormat

Security fix: statuses with visibility marked unlisted, private, and direct...

Security fix: statuses with visibility marked unlisted, private, and direct could be displayed publicly
parent 9a770d36
......@@ -133,7 +133,7 @@ class FediClient
'exclude_reblogs' => $reblogs
));
$response = $this->_get("/api/v1/accounts/{$account_id}/statuses?{$query}", null, $headers);
$response = $this->_get("/api/v1/accounts/{$account_id}/statuses?{$query}", null, null);
return $response;
}
......@@ -173,7 +173,7 @@ class FediClient
$account_id = self::$acct_id;
$response = $this->_get("/api/v1/accounts/{$account_id}", null, null);
$response = $this->_get("/api/v1/accounts/{$account_id}", null, $headers);
return $response;
}
......
......@@ -3,7 +3,7 @@
* Plugin Name: FediEmbedi
* Plugin URI: https://git.feneas.org/mediaformat/fediembedi
* Description: Widgets and shortcodes to show your Fediverse profile timeline
* Version: 0.10.2
* Version: 0.10.3
* Author: mediaformat
* Author URI: https://mediaformat.org
* License: GPLv3
......
......@@ -53,7 +53,7 @@ and redirected to your site with a secure token. Similar to how you would connec
## Changelog
### 0.10.2
### 0.10.3
* Security fix: statuses with visibility marked unlisted, private, and direct could be displayed publicly
### 0.10.0
......
......@@ -64,7 +64,7 @@ and redirected to your site with a secure token. Similar to how you would connec
== Changelog ==
= 0.10.2 =
= 0.10.3 =
* Security fix: statuses with visibility marked unlisted, private, and direct could be displayed publicly
= 0.10.0 =
......
Markdown is supported
0%
or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment