Ticket #14530: 14530-2.patch
File 14530-2.patch, 13.2 KB (added by , 12 years ago) |
---|
-
wp-admin/custom-header.php
648 648 function step_2() { 649 649 check_admin_referer('custom-header-upload', '_wpnonce-custom-header-upload'); 650 650 if ( ! current_theme_supports( 'custom-header', 'uploads' ) ) 651 wp_die( __( ' Cheatin’ uh?' ) );651 wp_die( __( 'You do not have permission to view this page.' ) ); 652 652 653 653 if ( empty( $_POST ) && isset( $_GET['file'] ) ) { 654 654 $attachment_id = absint( $_GET['file'] ); … … 787 787 check_admin_referer( 'custom-header-crop-image' ); 788 788 789 789 if ( ! current_theme_supports( 'custom-header', 'uploads' ) ) 790 wp_die( __( ' Cheatin’ uh?' ) );790 wp_die( __( 'You do not have permission to view this page.' ) ); 791 791 792 792 if ( ! empty( $_POST['skip-cropping'] ) && ! ( current_theme_supports( 'custom-header', 'flex-height' ) || current_theme_supports( 'custom-header', 'flex-width' ) ) ) 793 wp_die( __( ' Cheatin’ uh?' ) );793 wp_die( __( 'You do not have permission to view this page.' ) ); 794 794 795 795 if ( $_POST['oitar'] > 1 ) { 796 796 $_POST['x1'] = $_POST['x1'] * $_POST['oitar']; -
wp-admin/customize.php
11 11 12 12 require_once( './admin.php' ); 13 13 if ( ! current_user_can( 'edit_theme_options' ) ) 14 wp_die( __( ' Cheatin’ uh?' ) );14 wp_die( __( 'You do not have permission to view this page.' ) ); 15 15 16 16 wp_reset_vars( array( 'url', 'return' ) ); 17 17 $url = urldecode( $url ); -
wp-admin/edit-comments.php
9 9 /** WordPress Administration Bootstrap */ 10 10 require_once('./admin.php'); 11 11 if ( !current_user_can('edit_posts') ) 12 wp_die(__(' Cheatin’ uh?'));12 wp_die(__('You do not have permission to view this page.')); 13 13 14 14 $wp_list_table = _get_list_table('WP_Comments_List_Table'); 15 15 $pagenum = $wp_list_table->get_pagenum(); -
wp-admin/edit-tags.php
18 18 wp_die( __( 'Invalid taxonomy' ) ); 19 19 20 20 if ( ! current_user_can( $tax->cap->manage_terms ) ) 21 wp_die( __( ' Cheatin’ uh?' ) );21 wp_die( __( 'You do not have permission to view this page.' ) ); 22 22 23 23 $wp_list_table = _get_list_table('WP_Terms_List_Table'); 24 24 $pagenum = $wp_list_table->get_pagenum(); … … 45 45 check_admin_referer( 'add-tag', '_wpnonce_add-tag' ); 46 46 47 47 if ( !current_user_can( $tax->cap->edit_terms ) ) 48 wp_die( __( ' Cheatin’ uh?' ) );48 wp_die( __( 'You do not have permission to view this page.' ) ); 49 49 50 50 $ret = wp_insert_term( $_POST['tag-name'], $taxonomy, $_POST ); 51 51 $location = 'edit-tags.php?taxonomy=' . $taxonomy; … … 83 83 check_admin_referer( 'delete-tag_' . $tag_ID ); 84 84 85 85 if ( !current_user_can( $tax->cap->delete_terms ) ) 86 wp_die( __( ' Cheatin’ uh?' ) );86 wp_die( __( 'You do not have permission to view this page.' ) ); 87 87 88 88 wp_delete_term( $tag_ID, $taxonomy ); 89 89 … … 97 97 check_admin_referer( 'bulk-tags' ); 98 98 99 99 if ( !current_user_can( $tax->cap->delete_terms ) ) 100 wp_die( __( ' Cheatin’ uh?' ) );100 wp_die( __( 'You do not have permission to view this page.' ) ); 101 101 102 102 $tags = (array) $_REQUEST['delete_tags']; 103 103 foreach ( $tags as $tag_ID ) { … … 136 136 check_admin_referer( 'update-tag_' . $tag_ID ); 137 137 138 138 if ( !current_user_can( $tax->cap->edit_terms ) ) 139 wp_die( __( ' Cheatin’ uh?' ) );139 wp_die( __( 'You do not have permission to view this page.' ) ); 140 140 141 141 $tag = get_term( $tag_ID, $taxonomy ); 142 142 if ( ! $tag ) -
wp-admin/edit.php
19 19 wp_die( __( 'Invalid post type' ) ); 20 20 21 21 if ( ! current_user_can( $post_type_object->cap->edit_posts ) ) 22 wp_die( __( ' Cheatin’ uh?' ) );22 wp_die( __( 'You do not have permission to view this page.' ) ); 23 23 24 24 $wp_list_table = _get_list_table('WP_Posts_List_Table'); 25 25 $pagenum = $wp_list_table->get_pagenum(); -
wp-admin/includes/bookmark.php
27 27 */ 28 28 function edit_link( $link_id = 0 ) { 29 29 if ( !current_user_can( 'manage_links' ) ) 30 wp_die( __( ' Cheatin’ uh?' ) );30 wp_die( __( 'You do not have permission to view this page.' ) ); 31 31 32 32 $_POST['link_url'] = esc_html( $_POST['link_url'] ); 33 33 $_POST['link_url'] = esc_url($_POST['link_url']); -
wp-admin/media-upload.php
32 32 33 33 // Require an ID for the edit screen 34 34 if ( isset($action) && $action == 'edit' && !$ID ) 35 wp_die( __( ' Cheatin’ uh?' ) );35 wp_die( __( 'You do not have permission to view this page.' ) ); 36 36 37 37 if ( ! empty( $_REQUEST['post_id'] ) && ! current_user_can( 'edit_post' , $_REQUEST['post_id'] ) ) 38 wp_die( __( ' Cheatin’ uh?' ) );38 wp_die( __( 'You do not have permission to view this page.' ) ); 39 39 40 40 // upload type: image, video, file, ..? 41 41 if ( isset($_GET['type']) ) -
wp-admin/nav-menus.php
20 20 21 21 // Permissions Check 22 22 if ( ! current_user_can('edit_theme_options') ) 23 wp_die( __( ' Cheatin’ uh?' ) );23 wp_die( __( 'You do not have permission to view this page.' ) ); 24 24 25 25 wp_enqueue_script( 'nav-menu' ); 26 26 -
wp-admin/network/site-users.php
135 135 136 136 // If the user doesn't already belong to the blog, bail. 137 137 if ( !is_user_member_of_blog( $user_id ) ) 138 wp_die(__(' Cheatin’ uh?'));138 wp_die(__('You do not have permission to view this page.')); 139 139 140 140 $user = get_userdata( $user_id ); 141 141 $user->set_role( $_REQUEST['new_role'] ); -
wp-admin/options.php
32 32 $capability = apply_filters( "option_page_capability_{$option_page}", $capability ); 33 33 34 34 if ( !current_user_can( $capability ) ) 35 wp_die(__(' Cheatin’ uh?'));35 wp_die(__('You do not have permission to view this page.')); 36 36 37 37 // Handle admin email change requests 38 38 if ( is_multisite() ) { … … 56 56 } 57 57 58 58 if ( is_multisite() && !is_super_admin() && 'update' != $action ) 59 wp_die(__(' Cheatin’ uh?'));59 wp_die(__('You do not have permission to view this page.')); 60 60 61 61 $whitelist_options = array( 62 62 'general' => array( 'blogname', 'blogdescription', 'gmt_offset', 'date_format', 'time_format', 'start_of_week', 'timezone_string' ), -
wp-admin/post-new.php
40 40 $editing = true; 41 41 42 42 if ( ! current_user_can( $post_type_object->cap->edit_posts ) || ! current_user_can( $post_type_object->cap->create_posts ) ) 43 wp_die( __( ' Cheatin’ uh?' ) );43 wp_die( __( 'You do not have permission to view this page.' ) ); 44 44 45 45 // Schedule auto-draft cleanup 46 46 if ( ! wp_next_scheduled( 'wp_scheduled_auto_draft_delete' ) ) -
wp-admin/press-this.php
14 14 header('Content-Type: ' . get_option('html_type') . '; charset=' . get_option('blog_charset')); 15 15 16 16 if ( ! current_user_can( 'edit_posts' ) || ! current_user_can( get_post_type_object( 'post' )->cap->create_posts ) ) 17 wp_die( __( ' Cheatin’ uh?' ) );17 wp_die( __( 'You do not have permission to view this page.' ) ); 18 18 19 19 /** 20 20 * Press It form handler. -
wp-admin/themes.php
10 10 require_once('./admin.php'); 11 11 12 12 if ( !current_user_can('switch_themes') && !current_user_can('edit_theme_options') ) 13 wp_die( __( ' Cheatin’ uh?' ) );13 wp_die( __( 'You do not have permission to view this page.' ) ); 14 14 15 15 $wp_list_table = _get_list_table('WP_Themes_List_Table'); 16 16 … … 19 19 check_admin_referer('switch-theme_' . $_GET['stylesheet']); 20 20 $theme = wp_get_theme( $_GET['stylesheet'] ); 21 21 if ( ! $theme->exists() || ! $theme->is_allowed() ) 22 wp_die( __( ' Cheatin’ uh?' ) );22 wp_die( __( 'You do not have permission to view this page.' ) ); 23 23 switch_theme( $theme->get_stylesheet() ); 24 24 wp_redirect( admin_url('themes.php?activated=true') ); 25 25 exit; … … 27 27 check_admin_referer('delete-theme_' . $_GET['stylesheet']); 28 28 $theme = wp_get_theme( $_GET['stylesheet'] ); 29 29 if ( !current_user_can('delete_themes') || ! $theme->exists() ) 30 wp_die( __( ' Cheatin’ uh?' ) );30 wp_die( __( 'You do not have permission to view this page.' ) ); 31 31 delete_theme($_GET['stylesheet']); 32 32 wp_redirect( admin_url('themes.php?deleted=true') ); 33 33 exit; -
wp-admin/user-new.php
11 11 12 12 if ( is_multisite() ) { 13 13 if ( ! current_user_can( 'create_users' ) && ! current_user_can( 'promote_users' ) ) 14 wp_die( __( ' Cheatin’ uh?' ) );14 wp_die( __( 'You do not have permission to view this page.' ) ); 15 15 } elseif ( ! current_user_can( 'create_users' ) ) { 16 wp_die( __( ' Cheatin’ uh?' ) );16 wp_die( __( 'You do not have permission to view this page.' ) ); 17 17 } 18 18 19 19 if ( is_multisite() ) { … … 58 58 } 59 59 60 60 if ( ! current_user_can('promote_user', $user_details->ID) ) 61 wp_die(__(' Cheatin’ uh?'));61 wp_die(__('You do not have permission to view this page.')); 62 62 63 63 // Adding an existing user to this blog 64 64 $new_user_email = $user_details->user_email; … … 95 95 check_admin_referer( 'create-user', '_wpnonce_create-user' ); 96 96 97 97 if ( ! current_user_can('create_users') ) 98 wp_die(__(' Cheatin’ uh?'));98 wp_die(__('You do not have permission to view this page.')); 99 99 100 100 if ( ! is_multisite() ) { 101 101 $user_id = edit_user(); -
wp-admin/users.php
10 10 require_once( './admin.php' ); 11 11 12 12 if ( ! current_user_can( 'list_users' ) ) 13 wp_die( __( ' Cheatin’ uh?' ) );13 wp_die( __( 'You do not have permission to view this page.' ) ); 14 14 15 15 $wp_list_table = _get_list_table('WP_Users_List_Table'); 16 16 $pagenum = $wp_list_table->get_pagenum(); … … 125 125 126 126 // If the user doesn't already belong to the blog, bail. 127 127 if ( is_multisite() && !is_user_member_of_blog( $id ) ) 128 wp_die(__(' Cheatin’ uh?'));128 wp_die(__('You do not have permission to view this page.')); 129 129 130 130 $user = get_userdata( $id ); 131 131 $user->set_role($_REQUEST['new_role']); -
wp-admin/widgets.php
13 13 require_once(ABSPATH . 'wp-admin/includes/widgets.php'); 14 14 15 15 if ( ! current_user_can('edit_theme_options') ) 16 wp_die( __( ' Cheatin’ uh?' ));16 wp_die( __( 'You do not have permission to view this page.' )); 17 17 18 18 $widgets_access = get_user_setting( 'widgets_access' ); 19 19 if ( isset($_GET['widgets-access']) ) { -
wp-includes/class-wp-customize-manager.php
80 80 wp_die( $ajax_message ); 81 81 82 82 if ( ! $message ) 83 $message = __( ' Cheatin’ uh?' );83 $message = __( 'You do not have permission to view this page.' ); 84 84 85 85 wp_die( $message ); 86 86 } -
wp-includes/script-loader.php
325 325 'saved' => __( 'Saved' ), 326 326 'cancel' => __( 'Cancel' ), 327 327 'close' => __( 'Close' ), 328 'cheatin' => __( ' Cheatin’ uh?' ),328 'cheatin' => __( 'You do not have permission to view this page.' ), 329 329 330 330 // Used for overriding the file types allowed in plupload. 331 331 'allowedFiles' => __( 'Allowed Files' ),