Latest releases

Fix broken HTML for container_schema

Security: Fix XSS vulnerability in events_list shortcode for item_schema and container_schema attributes, reported by Peter Thaleikis Update dependencies

Ensure script is loaded in shortcode context Fix "undefined" price in map

Add support for organization / remote offer in rich event data Manage multiple maps on single page Security: Escape attributes in custom boxes Fix too much escaped HTML in eventpost/details block Fix missing script for single map link Disambiguate event_category class Remove deprecated FILTER_SANITIZE_STRING Moves Weather to EventPost namespace Re-order hooks, fix warnings

fix save_bulkdatas(): Add nonce verification for security, reported by Francesco Carlucci fix ltrim() Passing null to parameter 1, reported by ov3rfly

Security: Authenticated (Contributor+) Stored Cross-Site Scripting, reported by Peter Thaleikis

Security: Sanitize GPS coordinates, fixes Cross Site Scripting, reported by preo

Security: Fix Cross Site Scripting, reported by Peter Thaleikis

Security: Fix vulnerability to XSS in shortcode Ensure that date is well formated in shortcode

Security: Fix vulnerability to local file inclusion

Fixed a bug that display html as string in event calendar blocks Fixed javascript warning in event map block

Security: Fix authenticated (Contributor+) Stored Cross-Site Scripting via shortcode Uses bulk_edit_posts hook, fixes lack of verification in bulk edit Escape some outputs Fix missing jQuery dependency in timeline-block Misc: De-index not existing "Event-post front" and "Event-post admin" blocks Add main global EventPost object for JS variables Allows to skip deprecation error Adds instructions for translators Limit number of tags in plugin README Now requires WordPress 6.3