Add referer checks. Props masquerade.
git-svn-id: http://svn.automattic.com/wordpress/trunk@3618 1a063a9b-81f0-0310-95a4-ce76da25c4cd
This commit is contained in:
parent
adb8409d4d
commit
75a62f2e1e
|
@ -23,7 +23,8 @@ $action = "delete";
|
||||||
|
|
||||||
switch($action) {
|
switch($action) {
|
||||||
case 'post':
|
case 'post':
|
||||||
|
check_admin_referer();
|
||||||
|
|
||||||
$post_ID = write_post();
|
$post_ID = write_post();
|
||||||
|
|
||||||
// Redirect.
|
// Redirect.
|
||||||
|
@ -92,6 +93,8 @@ case 'editattachment':
|
||||||
add_post_meta($post_id, '_wp_attachment_metadata', $newmeta);
|
add_post_meta($post_id, '_wp_attachment_metadata', $newmeta);
|
||||||
|
|
||||||
case 'editpost':
|
case 'editpost':
|
||||||
|
check_admin_referer();
|
||||||
|
|
||||||
$post_ID = edit_post();
|
$post_ID = edit_post();
|
||||||
|
|
||||||
if ($_POST['save']) {
|
if ($_POST['save']) {
|
||||||
|
|
Loading…
Reference in New Issue