Security fix: statuses with visibility marked unlisted, private, and direct could be displayed publicly

fediembedi-client.php

@@ -133,7 +133,7 @@ class FediClient
 			'exclude_reblogs' => $reblogs
 		));
 
-		$response = $this->_get("/api/v1/accounts/{$account_id}/statuses?{$query}", null, $headers);
+		$response = $this->_get("/api/v1/accounts/{$account_id}/statuses?{$query}", null, null);
 
 		return $response;
 	}
@@ -173,7 +173,7 @@ class FediClient
 
 		$account_id = self::$acct_id;
 
-		$response = $this->_get("/api/v1/accounts/{$account_id}", null, null);
+		$response = $this->_get("/api/v1/accounts/{$account_id}", null, $headers);
 
 		return $response;
 	}

fediembedi.php

@@ -3,7 +3,7 @@
  * Plugin Name: FediEmbedi
  * Plugin URI: https://git.feneas.org/mediaformat/fediembedi
  * Description: Widgets and shortcodes to show your Fediverse profile timeline
- * Version: 0.10.2
+ * Version: 0.10.3
  * Author: mediaformat
  * Author URI: https://mediaformat.org
  * License: GPLv3

readme.md

@@ -53,7 +53,7 @@ and redirected to your site with a secure token. Similar to how you would connec
 
 ## Changelog
 
-### 0.10.2
+### 0.10.3
 * Security fix: statuses with visibility marked unlisted, private, and direct could be displayed publicly
 
 ### 0.10.0

readme.txt

@@ -64,7 +64,7 @@ and redirected to your site with a secure token. Similar to how you would connec
 
 == Changelog ==
 
-= 0.10.2 =
+= 0.10.3 =
 * Security fix: statuses with visibility marked unlisted, private, and direct could be displayed publicly
 
 = 0.10.0 =