Perform a cap check on attachments in media_upload_form_handler(). For trunk

git-svn-id: https://develop.svn.wordpress.org/trunk@18365 602fd350-edb4-49c9-b593-d223f7449a82
2011-06-28 21:44:56 +00:00 · 2011-06-28 21:44:56 +00:00 · 2258beaf3c
commit 2258beaf3c
parent 520081cec7
1 changed files with 5 additions and 0 deletions
--- a/wp-admin/includes/media.php
+++ b/wp-admin/includes/media.php
@ -436,6 +436,11 @@ function media_upload_form_handler() {

 	if ( !empty($_POST['attachments']) ) foreach ( $_POST['attachments'] as $attachment_id => $attachment ) {
 		$post = $_post = get_post($attachment_id, ARRAY_A);
+		$post_type_object = get_post_type_object( $post[ 'post_type' ] );
+
+		if ( !current_user_can( $post_type_object->cap->edit_post, $attachment_id ) )
+			continue;
+
 		if ( isset($attachment['post_content']) )
 			$post['post_content'] = $attachment['post_content'];
 		if ( isset($attachment['post_title']) )