Changeset 37103 for trunk/src/wp-admin/user-edit.php

Timestamp:

03/30/2016 02:44:00 PM (10 years ago)

Author:

ocean90

Message:

Multisite: Validate new email address confirmations.

File:

• trunk/src/wp-admin/user-edit.php (modified) (3 diffs)

trunk/src/wp-admin/user-edit.php

@@ -84 +84 @@
 if ( is_multisite() && IS_PROFILE_PAGE && isset( $_GET[ 'newuseremail' ] ) && $current_user->ID ) {
     $new_email = get_user_meta( $current_user->ID, '_new_email', true );
-    if ( $new_email && $new_email[ 'hash' ] == $_GET[ 'newuseremail' ] ) {
+    if ( $new_email && hash_equals( $new_email[ 'hash' ], $_GET[ 'newuseremail' ] ) ) {
         $user = new stdClass;
         $user->ID = $current_user->ID;
@@ -98 +98 @@
         wp_redirect( add_query_arg( array( 'error' => 'new-email' ), self_admin_url( 'profile.php' ) ) );
     }
-} elseif ( is_multisite() && IS_PROFILE_PAGE && !empty( $_GET['dismiss'] ) && $current_user->ID . '_new_email' == $_GET['dismiss'] ) {
+} elseif ( is_multisite() && IS_PROFILE_PAGE && !empty( $_GET['dismiss'] ) && $current_user->ID . '_new_email' === $_GET['dismiss'] ) {
+    check_admin_referer( 'dismiss-' . $current_user->ID . '_new_email' );
     delete_user_meta( $current_user->ID, '_new_email' );
     wp_redirect( add_query_arg( array('updated' => 'true'), self_admin_url( 'profile.php' ) ) );
@@ -401 +402 @@
             /* translators: %s: new email */
             __( 'There is a pending change of your email to %s.' ),
-            '<code>' . $new_email['newemail'] . '</code>'
+            '<code>' . esc_html( $new_email['newemail'] ) . '</code>'
         );
         printf(
             ' <a href="%1$s">%2$s</a>',
-            esc_url( self_admin_url( 'profile.php?dismiss=' . $current_user->ID . '_new_email' ) ),
+            esc_url( wp_nonce_url( self_admin_url( 'profile.php?dismiss=' . $current_user->ID . '_new_email' ), 'dismiss-' . $current_user->ID . '_new_email' ) ),
             __( 'Cancel' )
         );