Ticket #4422: xmlrpc.php.patch

xmlrpc.php

@@ -1429 +1429 @@
                 $type = $data['type'];
                 $bits = $data['bits'];
 
+                if ( !$this->login_pass_ok($user_login, $user_pass) )
+                        return $this->error;
+                        
                 if(!empty($data["overwrite"]) && ($data["overwrite"] == true)) {
                         // Get postmeta info on the object.
                         $old_file = $wpdb->get_row("
@@ -1449 +1452 @@
 
                 logIO('O', '(MW) Received '.strlen($bits).' bytes');
 
-                if ( !$this->login_pass_ok($user_login, $user_pass) )
-                        return $this->error;
-
                 set_current_user(0, $user_login);
                 if ( !current_user_can('upload_files') ) {
                         logIO('O', '(MW) User does not have upload_files capability');