Changeset 3759 for trunk/wp-admin/post.php
- Timestamp:
- 05/02/2006 10:36:06 PM (20 years ago)
- File:
-
- 1 edited
-
trunk/wp-admin/post.php (modified) (4 diffs)
Legend:
- Unmodified
- Added
- Removed
-
trunk/wp-admin/post.php
r3721 r3759 25 25 case 'postajaxpost': 26 26 case 'post': 27 check_admin_referer( );27 check_admin_referer('add-post'); 28 28 29 29 $post_ID = 'post' == $action ? write_post() : edit_post(); … … 79 79 80 80 case 'editattachment': 81 check_admin_referer();81 $post_id = (int) $_POST['post_ID']; 82 82 83 $post_id = (int) $_POST['post_ID'];83 check_admin_referer('update-attachment' . $post_id); 84 84 85 85 // Don't let these be changed … … 97 97 98 98 case 'editpost': 99 check_admin_referer(); 99 $post_ID = (int) $_POST['post_ID']; 100 check_admin_referer('update-post' . $post_ID); 100 101 101 102 $post_ID = edit_post(); … … 122 123 123 124 case 'delete': 124 check_admin_referer();125 126 125 $post_id = (isset($_GET['post'])) ? intval($_GET['post']) : intval($_POST['post_ID']); 126 check_admin_referer('delete-post' . $post_id); 127 127 128 128 $post = & get_post($post_id);
Note: See TracChangeset
for help on using the changeset viewer.