WordPress.org
Get WordPress

Make WordPress Core

Opened 14 years ago

Closed 14 years ago

Last modified 14 years ago

#16188 closed defect (bug) (fixed)

Need ajax referer checks for linking and list tables

Reported by: nacin's profile nacin Owned by:
Milestone: 3.1 Priority: high
Severity: normal Version: 3.1
Component: Administration Keywords: dev-reviewed commit
Focuses: Cc:

Description


Attachments (2)

16188.linking.diff (1.4 KB) - added by nacin 14 years ago.
16188.diff (2.9 KB) - added by nacin 14 years ago.

Download all attachments as: .zip

Change History (10)

#1 @westi
14 years ago

  • Cc westi added
  • Component changed from General to Administration
  • Priority changed from normal to high

@nacin
14 years ago

#2 @westi
14 years ago

  • Keywords dev-reviewed commit added

Looks great

@nacin
14 years ago

#3 @westi
14 years ago

Second patch looks good too

Would move the check_ajax_referer call before we bother setting up current_screen

#4 @nacin
14 years ago

  • Resolution set to fixed
  • Status changed from new to closed

(In [17255]) Nonce checks for internal linking and list table ajax. fixes #16188.

#5 @scribu
14 years ago

Nitpicking re [17255]: The wplink script version should be 2011, not 2010.

#6 @scribu
14 years ago

Oh, and the list-table script version should be updated as well.

#7 @westi
14 years ago

(In [17257]) Fix wplink version. Bump list-table version. Fixes #16188 props scribu.

#8 @nacin
14 years ago

(In [17262]) Add nonces to instances where the list table display() method is overridden. see #16188.

Note: See TracTickets for help on using tickets.