| 1 | Index: wp-admin/network/site-themes.php |
|---|
| 2 | =================================================================== |
|---|
| 3 | --- wp-admin/network/site-themes.php (revision 17132) |
|---|
| 4 | +++ wp-admin/network/site-themes.php (working copy) |
|---|
| 5 | @@ -60,6 +60,7 @@ |
|---|
| 6 | |
|---|
| 7 | switch ( $action ) { |
|---|
| 8 | case 'enable': |
|---|
| 9 | + check_admin_referer( 'enable-theme_' . $_GET['theme'] ); |
|---|
| 10 | $theme = $_GET['theme']; |
|---|
| 11 | $update = 'enabled'; |
|---|
| 12 | if ( !$allowed_themes ) |
|---|
| 13 | @@ -68,6 +69,7 @@ |
|---|
| 14 | $allowed_themes[$theme] = true; |
|---|
| 15 | break; |
|---|
| 16 | case 'disable': |
|---|
| 17 | + check_admin_referer( 'disable-theme_' . $_GET['theme'] ); |
|---|
| 18 | $theme = $_GET['theme']; |
|---|
| 19 | $update = 'disabled'; |
|---|
| 20 | if ( !$allowed_themes ) |
|---|
| 21 | @@ -76,6 +78,7 @@ |
|---|
| 22 | unset( $allowed_themes[$theme] ); |
|---|
| 23 | break; |
|---|
| 24 | case 'enable-selected': |
|---|
| 25 | + check_admin_referer( 'bulk-themes' ); |
|---|
| 26 | if ( isset( $_POST['checked'] ) ) { |
|---|
| 27 | $update = 'enable'; |
|---|
| 28 | $themes = (array) $_POST['checked']; |
|---|
| 29 | @@ -86,6 +89,7 @@ |
|---|
| 30 | } |
|---|
| 31 | break; |
|---|
| 32 | case 'disable-selected': |
|---|
| 33 | + check_admin_referer( 'bulk-themes' ); |
|---|
| 34 | if ( isset( $_POST['checked'] ) ) { |
|---|
| 35 | $update = 'disable'; |
|---|
| 36 | $themes = (array) $_POST['checked']; |
|---|
