[wp-trac] [WordPress Trac] #32207: check_admin_referer action only fires on success

WordPress Trac noreply at wordpress.org
Thu Apr 30 13:15:30 UTC 2015


#32207: check_admin_referer action only fires on success
-----------------------------------+--------------------------
 Reporter:  markjaquith            |       Owner:  markjaquith
     Type:  enhancement            |      Status:  accepted
 Priority:  low                    |   Milestone:  4.3
Component:  Administration         |     Version:  trunk
 Severity:  minor                  |  Resolution:
 Keywords:  has-patch 2nd-opinion  |     Focuses:
-----------------------------------+--------------------------
Changes (by markjaquith):

 * keywords:  needs-patch => has-patch 2nd-opinion
 * owner:   => markjaquith
 * status:  new => accepted


Comment:

 Like so.

 Further reasoning on the move being okay: it passes `$result`. So people
 should have been checking that all along. I doubt anyone was assuming
 "this hook running means a nonce success".

--
Ticket URL: <https://core.trac.wordpress.org/ticket/32207#comment:1>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform


More information about the wp-trac mailing list