Ticket #2776 (closed defect (bug): fixed)

Opened 6 years ago

Last modified 5 years ago

Editing other users is not properly nonced

Reported by: markjaquith Owned by: markjaquith
Priority: normal Milestone:
Component: Administration Version: 2.0.2
Severity: normal Keywords: nonce has-patch commit
Cc:

Description

If you edit another user's profile/information, you get the "Are you sure?" prompt. Attached patch fixes it.

#2761 compounds matters, naturally.

Version: 2.0.3

Attachments

correctly_nonce_user_editing.diff Download (555 bytes) - added by markjaquith 6 years ago.
patch for /branches/2.0/

Change History

markjaquith6 years ago

patch for /branches/2.0/

comment:1   markjaquith6 years ago

  • Owner changed from anonymous to markjaquith
  • Status changed from new to assigned

I updated my "WordPress 2.0.3 Tuneup" plugin to fix this issue (version 0.2), so WordPress 2.0.3 users aren't stuck with this annoyance until our next release.

 http://txfx.net/code/wordpress/wordpress-203-tuneup/

comment:2   ryan6 years ago

  • Status changed from assigned to closed
  • Resolution set to fixed

(In [3838]) Edit profile nonce fix from markjaquith. fixes #2776

comment:3   ryan6 years ago

  • Resolution set to fixed

(In [3839]) Edit profile nonce fix from markjaquith. fixes #2776

comment:4   ryan6 years ago

  • Milestone set to 2.0.4

comment:5   anonymous5 years ago

  • Milestone 2.0.4 deleted

Milestone 2.0.4 deleted

Note: See TracTickets for help on using tickets.