Throw _doing_it_wrong() when nonce action not passed to check_admin_referer(). props duck_. see #16449
git-svn-id: http://svn.automattic.com/wordpress/trunk@18195 1a063a9b-81f0-0310-95a4-ce76da25c4cd
This commit is contained in:
parent
71c2782b1c
commit
f030e87cdc
|
@ -866,6 +866,9 @@ if ( !function_exists('check_admin_referer') ) :
|
||||||
* @param string $query_arg where to look for nonce in $_REQUEST (since 2.5)
|
* @param string $query_arg where to look for nonce in $_REQUEST (since 2.5)
|
||||||
*/
|
*/
|
||||||
function check_admin_referer($action = -1, $query_arg = '_wpnonce') {
|
function check_admin_referer($action = -1, $query_arg = '_wpnonce') {
|
||||||
|
if ( -1 == $action )
|
||||||
|
_doing_it_wrong( __FUNCTION__, __( 'You should specify a nonce action to be verified by using the first parameter.' ), '3.2' );
|
||||||
|
|
||||||
$adminurl = strtolower(admin_url());
|
$adminurl = strtolower(admin_url());
|
||||||
$referer = strtolower(wp_get_referer());
|
$referer = strtolower(wp_get_referer());
|
||||||
$result = isset($_REQUEST[$query_arg]) ? wp_verify_nonce($_REQUEST[$query_arg], $action) : false;
|
$result = isset($_REQUEST[$query_arg]) ? wp_verify_nonce($_REQUEST[$query_arg], $action) : false;
|
||||||
|
|
Loading…
Reference in New Issue