=== Golf Scores ===
Contributors: TKServer
Donate link: http://www.tkserver.com/
Tags: golf, golf scores, golf score tracker, sports, scorecard
Requires at least: 3.0.1
Tested up to: 6.8.2
Requires PHP: 7.4
Stable tag: 1.2.1
License: GPLv2 or later
License URI: http://www.gnu.org/licenses/gpl-2.0.html

Golf Scores for WordPress tracks a WP user's golf scores, dates, gross scores, net scores and comments.

== Description ==

GOLF SCORES for Wordpress by Tony Korologos at TKServer.com, is a Wordpress plugin/widget which tracks a single WP member's golf scores.  The application is great for tracking 9 or 18 hole golf rounds or frisbee golf rounds.  Golf Scores automatically calculates net scores, shows scoring history, and has a comment area for each round's commentary.  The plugin includes full administrative back end featuring score entry, score editing and/or moderation.
 
The authorized user may punch in golf scores from the administrative area.

== Installation ==

This section describes how to install the plugin and get it working.

1. Upload the folder `golfScores` to the `/wp-content/plugins/` directory
2. Activate the plugin through the 'Plugins' menu in WordPress
3. Before use, set preference settings (authorized user, list limits, custom CSS class, etc) in Golf Scores/Wordpress administration

== Frequently Asked Questions ==

= How many users can track their scores? =

One at a time.
= Can I add more than one user to track their scores? =

No.  This is a single user plugin. This is a possible future "pro" option.

== Changelog ==

= 1.2.1 =
* Fixed function name conflicts with other plugins
* Renamed widget() function to golf_scores_widget() to prevent redeclaration errors
* Renamed load_my_scripts() function to golf_scores_load_scripts() to prevent conflicts
* Improved plugin compatibility with other WordPress plugins

= 1.2 = 2025
* Major security update: Fixed SQL injection vulnerabilities in bulk delete operations
* Security enhancement: Added comprehensive XSS protection with proper output escaping
* Security improvement: Implemented CSRF protection for all frontend forms with nonce verification
* Enhanced input validation and sanitization throughout the plugin
* Fixed insecure direct object references with proper authorization checks
* Strengthened access controls and removed information disclosure vulnerabilities
* Fixed undefined variable warnings in widget display
* Improved code security following current WordPress standards
* Updated for modern WordPress compatibility

= 1.1.0.0 = 11/06/15
* Updated functionality to Wordpress 4.3.1.  Fixed some division by zero errors. Cleaned up front end widget paging.  Removed some outdated code and features.
= 1.0.4.1 =
* Minor fixes to readme.txt and main file

= 1.0.4 =
* added more user verification to functions for additional security

= 1.0.3 = 11/21/13
* added input sanitation for further security

= 1.0.2 = 11/21/13
* fixed sql injection threats

= 1.0.1 = 11/20/13
* minor tweaks, updated for auto-update

= 1.0 =
* Initial release - 11/16/13

