Context Navigation

← Previous Change
Next Change →

pluggable.php

Timestamp:

01/24/2008 09:19:42 PM (17 years ago)

Author:

ryan

Message:

check_ajax_referer() should look for *only* the auth_cookie, not others that look like they match. Autosave should know that an ajax response of -1 or 0 is a failure. Props mdawaffe

File:

: 1 edited

trunk/wp-includes/pluggable.php (modified) (1 diff)

Legend:

: Unmodified
: Added
: Removed

trunk/wp-includes/pluggable.php

-                      r6648
+                      r6649
         $cookie = explode('; ', urldecode(empty($_POST['cookie']) ? $_GET['cookie'] : $_POST['cookie'])); // AJAX scripts must pass cookie=document.cookie
         foreach ( $cookie as $tasty ) {
             if ( false !== strpos($tasty, AUTH_COOKIE) )
+            if ( false !== strpos($tasty, AUTH_COOKIE . '=') ) {
                 $auth_cookie = substr(strstr($tasty, '='), 1);
+                break;
+            }
+        }

Note: See TracChangeset for help on using the changeset viewer.

Trac UI Preferences

Make WordPress Core

Context Navigation

Changeset 6649 for trunk/wp-includes/pluggable.php

Legend:

trunk/wp-includes/pluggable.php

Download in other formats: