I found a way. Change the lines on wordpress-form-manager plugin direcoty -> types -> file.php (around line 109)
From:
if($fileNameFormat == "%filename%"){
$newFileName = $pathInfo['filename'];
}
To:
if($fileNameFormat == "%filename%"){
//Sanitize the filename (See note below)
$remove_these = array(' ','`','"','\'','\\',"https://wordpress.stackexchange.com/",'%');
$newFileName = str_replace($remove_these, '', $pathInfo['filename']);
//Make the filename unique
$newFileName = time().'-'.$newFileName;
}
Related Posts:
- Sanitizing, Validating and Escaping in WordPress (Plugin)
- CSS from textarea in options page to frontend what to do
- Save selectlist value (taxonomy) in wp:wp_set_object_terms
- How can I use WordPress functions in my stylesheet?
- WP showing “warning: call_user_func_array()”, What to do?
- How can I pass a variable to wp_ajax action?
- How can i change an image’s author?
- Creating search filter through plugin
- WP-Members redirect if member ALREADY logged in
- How to edit/delete single row items in a table on my own menu page
- Get a list of galleries from an album in NextGEN Gallery [closed]
- Undefined property: WP_Post_Type::$ID
- Plugin exceeds memory limit
- Pass a php string to a javascript variable
- Show price with Geo IP location
- How to trigger $_GET request within admin plugin page?
- Wp favorite posts get user favorites in profile using buddypress [closed]
- How to generate video out of images via WordPress plugin
- Which escape function to use when escaping an email or plain text?
- Preferred way of cacheing a value in php
- How to remove html code in excel downloads using phpspreadsheet with wordpress plugins shortcode
- Automatically add attributes to woocommerce product?
- Edit Yoast SEO breadcrumbs output [closed]
- Adding a slider captcha to the comment system
- Plugins Page invisible / white
- Redirection of users away from wp-admin (but not administrators)
- code is working properly in Core PHP but writing coding in WordPress
- PHP Warning: call_user_func_array() expects parameter 1 to be a valid callback Error without any function name
- Custom WPBakery elements not displaying in WP admin
- How can I fix the mixed content problems of the kk star ratings plugin?
- Basic Object Oriented plugin question
- Adapt PHP form action for WordPress?
- All sites themes functions.php have been changed
- WordPress + PHP + IIS + PHP Fatal error: require():
- admin-ajax.php warning max input vars exceeded on layered pop plugins [closed]
- Individual testimonial taxonomy not displaying (white screen)
- Adding regex filter to feedwordpress
- Media Upload Tab reload and change $_GET
- Change get_current_user_id code to the author’s profile
- How to define constant before plugin [duplicate]
- Duplicate results are displayed in a custom plugin [closed]
- php code crashes site – possible syntax error
- Basic function call on init failing
- Help with WP Business Directory Manager Plugin?
- get specific value of a array | PHP
- I receive taxonomy id
- Is there a way to convert shortcodes to html content?
- Loop in elementor custom widget not working
- Change text string in a plugin
- get_users(); Is an Undefined Function When Used in Cron Job
- the_content() printing DOCTYPE, and tags in the middle of page
- How to change WooCommece variation data programmtically [closed]
- How to include files relative to a file’s directory
- .php file for woocommerce edit category? [closed]
- Asynchronous request in wordpress
- dynamically create callback functions inside a for loop
- WordPress truncate posts question (plugin related)
- Different registration form for different roles
- WordPress Post HTML after Posting
- Settings options not showing up on Sub Menu page in WordPress plugin
- uncaught TypeError: Cannot read properties of null (reading ‘classList’) custom plugin
- Use a hook or filter, or overwrite this Gamipress function?
- How do I display PHP file contents on front end of WordPress?
- The Build menu theme is frozen with the wordpress theme
- Does anyone know why my SEO and title become one?
- How can I translate something in my class constructor of my plugin in WordPress?
- Define global variable in theme file and call that variable in plugin file
- Get Shortcode output to database for static post_content
- SimpleXML is not working with xml response from external api
- strtotime not working
- Prefix WordPress Taxonomy Tags With Hashtag Symbol Like Twitter
- How To Toggle User_Meta in frontend in a form using PHP
- Change Woo Custom Endpoint Titles from a Plugin
- No result after wpdb->insert
- Optimized PHP & WordPress settings for speed/performance?
- Speeding up WordPress on a Local Network
- How can I store user preferences in WordPress and retreive them later?
- How to add php plugin code in theme
- Cannot pass variable to page definition
- how change my menu on submenu
- Plugin debugging with errors in activation routine
- Number format in thousands on highcharts in wpdatatable plugin
- How do I change tab url
- Embed Javascript code to registered users only
- Escaping and sanitization
- Things that saved lose when logout
- How to speed up installing plugins and upgrading WordPress
- How to set up php,javascript and css to allow for our finished product to be displayed within a page?
- W3 Total Cache Can’t Really Detect Things
- PHP and Jquery pass value from form. Update function on DataBase
- How do I add php to all links automatically?
- Plugin use of ajax/jquery depending dropdown
- Unable to show 4 products in a row
- Creating Features List in WordPress Post
- WordPress portfolio pagination on home page
- How can I properly sanitize the update_option in WordPress?
- Option value not getting updated until page refresh in WordPress
- Fatal error: Uncaught Error: Call to a member function fetch_array() on bool
- Use inline callable for hooks and filters
- Error in using ‘admin_enqueue_scripts’ action through a class