[wp-trac] [WordPress Trac] #56475: Nonce not verify
WordPress Trac
noreply at wordpress.org
Sun Sep 4 06:55:12 UTC 2022
#56475: Nonce not verify
--------------------------+-------------------------------
Reporter: hiren1094 | Owner: (none)
Type: defect (bug) | Status: new
Priority: normal | Milestone: 6.1
Component: Security | Version: 6.0
Severity: normal | Resolution:
Keywords: has-patch | Focuses: coding-standards
--------------------------+-------------------------------
Comment (by hiren1094):
Hello @SergeyBiryukov
As per WordPress coding standards nonce should be verified in all form
submissions.
And WordPress Installation screen is one kind of form.
As per coding standards If you are using any HTML or HTTP-based form
submissions, use a nonce to guarantee a user intends to perform an action.
--
Ticket URL: <https://core.trac.wordpress.org/ticket/56475#comment:7>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list