WordPress.org
Get WordPress

Make WordPress Core

Changeset 17134


Ignore:
Timestamp:
12/24/2010 05:59:58 PM (14 years ago)
Author:
ryan
Message:

nonce checks for site-themes. Props PeteMall. see #15969

File:
1 edited

Legend:

Unmodified
Added
Removed

  • trunk/wp-admin/network/site-themes.php

    r17051 r17134  
    6161    switch ( $action ) {
    6262        case 'enable':
     63            check_admin_referer( 'enable-theme_' . $_GET['theme'] );
    6364            $theme = $_GET['theme'];
    6465            $update = 'enabled';
     
    6970            break;
    7071        case 'disable':
     72            check_admin_referer( 'disable-theme_' . $_GET['theme'] );
    7173            $theme = $_GET['theme'];
    7274            $update = 'disabled';
     
    7779            break;
    7880        case 'enable-selected':
     81            check_admin_referer( 'bulk-themes' );
    7982            if ( isset( $_POST['checked'] ) ) {
    8083                $update = 'enable';
     
    8790            break;
    8891        case 'disable-selected':
     92            check_admin_referer( 'bulk-themes' );
    8993            if ( isset( $_POST['checked'] ) ) {
    9094                $update = 'disable';
Note: See TracChangeset for help on using the changeset viewer.