Changeset 17126

Timestamp:

12/23/2010 06:53:44 PM (15 years ago)

Author:

nacin

Message:

bulk-themes nonce for network/themes.php deletion. props PeteMall, see #15969.

File:

• trunk/wp-admin/network/themes.php (modified) (1 diff)

trunk/wp-admin/network/themes.php

@@ -70 +70 @@
             update_site_option( 'allowedthemes', $allowed_themes );
             break;
-        case 'delete':
-            check_admin_referer('delete-theme_' . $_GET['template']);
-            if ( !current_user_can('delete_themes') )
-                wp_die( __( 'Cheatin’ uh?' ) );
-            delete_theme($_GET['template']);
-            wp_redirect( network_admin_url('themes.php?deleted=true') );
-            exit;
-            break;
         case 'delete-selected':
             if ( ! current_user_can( 'delete_themes' ) )
                 wp_die( __('You do not have sufficient permissions to delete themes for this site.') );
+            check_admin_referer( 'bulk-themes' );
 
             $themes = isset( $_REQUEST['checked'] ) ? (array) $_REQUEST['checked'] : array();