Context Navigation

← Previous Changeset
Next Changeset →

Changeset 34909

Timestamp:

10/07/2015 02:29:29 PM (10 years ago)

Author:

johnbillion

Message:

Prevent a PHP notice from appearing on wp-login.php?action=postpass when there's no $_POST['post_password'] parameter. Redirects to the referer if there is one (if there isn't one it'll just exit with a blank screen; no need for a user-friendly error message here).

Fixes #34160
Props iamfriendly

File:

: 1 edited

trunk/src/wp-login.php (modified) (1 diff)

Legend:

: Unmodified
: Added
: Removed

trunk/src/wp-login.php

-                      r34885
+                      r34909
 case 'postpass' :
+    if ( ! array_key_exists( 'post_password', $_POST ) ) {
+        wp_safe_redirect( wp_get_referer() );
+        exit();
+    }
     require_once ABSPATH . WPINC . '/class-phpass.php';
     $hasher = new PasswordHash( 8, true );

Note: See TracChangeset for help on using the changeset viewer.

Trac UI Preferences

Make WordPress Core

Context Navigation

Changeset 34909

Legend:

trunk/src/wp-login.php

Download in other formats: