Fix MS Sites nonce. See #14579
git-svn-id: https://develop.svn.wordpress.org/trunk@15602 602fd350-edb4-49c9-b593-d223f7449a82
This commit is contained in:
parent
80055bcec2
commit
84771d91a8
|
@ -396,7 +396,7 @@ switch ( $_GET['action'] ) {
|
||||||
|
|
||||||
case 'allblogs':
|
case 'allblogs':
|
||||||
if ( isset( $_POST['doaction']) || isset($_POST['doaction2'] ) ) {
|
if ( isset( $_POST['doaction']) || isset($_POST['doaction2'] ) ) {
|
||||||
check_admin_referer( 'bulk-ms-sites', '_wpnonce_bulk-ms-sites' );
|
check_admin_referer( 'bulk-sites' );
|
||||||
|
|
||||||
if ( ! current_user_can( 'manage_sites' ) )
|
if ( ! current_user_can( 'manage_sites' ) )
|
||||||
wp_die( __( 'You do not have permission to access this page.' ) );
|
wp_die( __( 'You do not have permission to access this page.' ) );
|
||||||
|
@ -582,7 +582,7 @@ switch ( $_GET['action'] ) {
|
||||||
wp_die( __( 'You do not have permission to access this page.' ) );
|
wp_die( __( 'You do not have permission to access this page.' ) );
|
||||||
|
|
||||||
if ( isset( $_POST['doaction']) || isset($_POST['doaction2'] ) ) {
|
if ( isset( $_POST['doaction']) || isset($_POST['doaction2'] ) ) {
|
||||||
check_admin_referer( 'bulk-ms-users', '_wpnonce_bulk-ms-users' );
|
check_admin_referer( 'bulk-ms-users' );
|
||||||
|
|
||||||
if ( $_GET['action'] != -1 || $_POST['action2'] != -1 )
|
if ( $_GET['action'] != -1 || $_POST['action2'] != -1 )
|
||||||
$doaction = $_POST['action'] != -1 ? $_POST['action'] : $_POST['action2'];
|
$doaction = $_POST['action'] != -1 ? $_POST['action'] : $_POST['action2'];
|
||||||
|
|
Loading…
Reference in New Issue