diff --git wp-admin/comment.php wp-admin/comment.php index de5483e..a0a85b8 100644 --- wp-admin/comment.php +++ wp-admin/comment.php @@ -191,7 +191,7 @@ if ( $comment->comment_approved != '0' ) { // if not unapproved - + @@ -274,7 +274,7 @@ case 'editedcomment' : $comment_id = absint( $_POST['comment_ID'] ); $comment_post_id = absint( $_POST['comment_post_ID'] ); - check_admin_referer( 'update-comment_' . $comment_id ); + check_admin_referer( 'update-comment_' . $comment_id, '_wpnonce-update-comment' ); edit_comment(); diff --git wp-admin/custom-background.php wp-admin/custom-background.php index a924eca..acee451 100644 --- wp-admin/custom-background.php +++ wp-admin/custom-background.php @@ -328,7 +328,7 @@ if ( current_theme_supports( 'custom-background', 'default-color' ) ) - + diff --git wp-admin/custom-header.php wp-admin/custom-header.php index 14f01df..0650bd6 100644 --- wp-admin/custom-header.php +++ wp-admin/custom-header.php @@ -149,7 +149,7 @@ class Custom_Image_Header { $step = (int) $_GET['step']; if ( $step < 1 || 3 < $step || ( 2 == $step && ! wp_verify_nonce( $_REQUEST['_wpnonce-custom-header-upload'], 'custom-header-upload' ) ) || - ( 3 == $step && ! wp_verify_nonce( $_REQUEST['_wpnonce'], 'custom-header-crop-image' ) ) + ( 3 == $step && ! wp_verify_nonce( $_REQUEST['_wpnonce-custom-header-crop-image'], 'custom-header-crop-image' ) ) ) return 1; @@ -726,7 +726,7 @@ wp_nonce_field( 'custom-header-options', '_wpnonce-custom-header-options' ); ?> - +

@@ -784,7 +784,7 @@ wp_nonce_field( 'custom-header-options', '_wpnonce-custom-header-options' ); ?> * @since 2.1.0 */ function step_3() { - check_admin_referer( 'custom-header-crop-image' ); + check_admin_referer( 'custom-header-crop-image', '_wpnonce-custom-header-crop-image' ); if ( ! current_theme_supports( 'custom-header', 'uploads' ) ) wp_die( __( 'Cheatin’ uh?' ) ); diff --git wp-admin/edit-comments.php wp-admin/edit-comments.php index 174cd9a..afd8b76 100644 --- wp-admin/edit-comments.php +++ wp-admin/edit-comments.php @@ -17,7 +17,7 @@ $pagenum = $wp_list_table->get_pagenum(); $doaction = $wp_list_table->current_action(); if ( $doaction ) { - check_admin_referer( 'bulk-comments' ); + check_admin_referer( 'bulk-comments', '_wpnonce-bulk-comments' ); if ( 'delete_all' == $doaction && !empty( $_REQUEST['pagegen_timestamp'] ) ) { $comment_status = $wpdb->escape( $_REQUEST['comment_status'] ); diff --git wp-admin/edit-form-advanced.php wp-admin/edit-form-advanced.php index 7d142d9..c5706fe 100644 --- wp-admin/edit-form-advanced.php +++ wp-admin/edit-form-advanced.php @@ -297,7 +297,7 @@ if ( isset( $post_new_file ) && current_user_can( $post_type_object->cap->create

> - + diff --git wp-admin/edit-form-comment.php wp-admin/edit-form-comment.php index 14a2966..fb7f00a 100644 --- wp-admin/edit-form-comment.php +++ wp-admin/edit-form-comment.php @@ -11,7 +11,7 @@ if ( !defined('ABSPATH') ) die('-1'); ?> -comment_ID) ?> +comment_ID, '_wpnonce-update-comment') ?>

diff --git wp-admin/edit-link-form.php wp-admin/edit-link-form.php index 6d81ec0..143aa10 100644 --- wp-admin/edit-link-form.php +++ wp-admin/edit-link-form.php @@ -71,7 +71,7 @@ if ( !empty($form) ) if ( !empty($link_added) ) echo $link_added; -wp_nonce_field( $nonce_action ); +wp_nonce_field( $nonce_action, '_wpnonce-edit-link' ); wp_nonce_field( 'closedpostboxes', 'closedpostboxesnonce', false ); wp_nonce_field( 'meta-box-order', 'meta-box-order-nonce', false ); ?> diff --git wp-admin/edit-tag-form.php wp-admin/edit-tag-form.php index 034642a..53c4c9e 100644 --- wp-admin/edit-tag-form.php +++ wp-admin/edit-tag-form.php @@ -34,7 +34,7 @@ do_action($taxonomy . '_pre_edit_form', $tag, $taxonomy); ?> - + diff --git wp-admin/edit-tags.php wp-admin/edit-tags.php index 7250a66..efb08d7 100644 --- wp-admin/edit-tags.php +++ wp-admin/edit-tags.php @@ -94,7 +94,7 @@ case 'delete': break; case 'bulk-delete': - check_admin_referer( 'bulk-tags' ); + check_admin_referer( 'bulk-tags', '_wpnonce-bulk-tags' ); if ( !current_user_can( $tax->cap->delete_terms ) ) wp_die( __( 'Cheatin’ uh?' ) ); @@ -133,7 +133,7 @@ break; case 'editedtag': $tag_ID = (int) $_POST['tag_ID']; - check_admin_referer( 'update-tag_' . $tag_ID ); + check_admin_referer( 'update-tag_' . $tag_ID, '_wpnonce-edit-tag' ); if ( !current_user_can( $tax->cap->edit_terms ) ) wp_die( __( 'Cheatin’ uh?' ) ); diff --git wp-admin/edit.php wp-admin/edit.php index 9eae3cf..b430cb7 100644 --- wp-admin/edit.php +++ wp-admin/edit.php @@ -46,7 +46,7 @@ if ( 'post' != $post_type ) { $doaction = $wp_list_table->current_action(); if ( $doaction ) { - check_admin_referer('bulk-posts'); + check_admin_referer( 'bulk-posts', '_wpnonce-bulk-posts' ); $sendback = remove_query_arg( array('trashed', 'untrashed', 'deleted', 'ids'), wp_get_referer() ); if ( ! $sendback ) diff --git wp-admin/includes/class-wp-list-table.php wp-admin/includes/class-wp-list-table.php index 8a22bd4..33fb1b2 100644 --- wp-admin/includes/class-wp-list-table.php +++ wp-admin/includes/class-wp-list-table.php @@ -759,8 +759,10 @@ class WP_List_Table { * @access protected */ function display_tablenav( $which ) { - if ( 'top' == $which ) - wp_nonce_field( 'bulk-' . $this->_args['plural'] ); + if ( 'top' == $which ) { + $nonce_action = 'bulk-' . $this->_args['plural']; + wp_nonce_field( $nonce_action, '_wpnonce-' . $nonce_action ); + } ?>
diff --git wp-admin/includes/dashboard.php wp-admin/includes/dashboard.php index 0df8109..0b9a6b7 100644 --- wp-admin/includes/dashboard.php +++ wp-admin/includes/dashboard.php @@ -557,7 +557,7 @@ function wp_dashboard_quick_press() { - + 'save-post' ) ); ?>
diff --git wp-admin/link-manager.php wp-admin/link-manager.php index 92194f0..6e4e136 100644 --- wp-admin/link-manager.php +++ wp-admin/link-manager.php @@ -17,7 +17,7 @@ $wp_list_table = _get_list_table('WP_Links_List_Table'); $doaction = $wp_list_table->current_action(); if ( $doaction && isset( $_REQUEST['linkcheck'] ) ) { - check_admin_referer( 'bulk-bookmarks' ); + check_admin_referer( 'bulk-bookmarks', '_wpnonce-bulk-bookmarks' ); if ( 'delete' == $doaction ) { $bulklinks = (array) $_REQUEST['linkcheck']; diff --git wp-admin/link.php wp-admin/link.php index d12d229..bffce01 100644 --- wp-admin/link.php +++ wp-admin/link.php @@ -28,7 +28,7 @@ $this_file = admin_url('link-manager.php'); switch ($action) { case 'deletebookmarks' : - check_admin_referer('bulk-bookmarks'); + check_admin_referer( 'bulk-bookmarks', '_wpnonce-bulk-bookmarks' ); //for each link id (in $linkcheck[]) change category to selected value if (count($linkcheck) == 0) { @@ -49,7 +49,7 @@ switch ($action) { break; case 'move' : - check_admin_referer('bulk-bookmarks'); + check_admin_referer( 'bulk-bookmarks', '_wpnonce-bulk-bookmarks' ); //for each link id (in $linkcheck[]) change category to selected value if (count($linkcheck) == 0) { @@ -65,7 +65,7 @@ switch ($action) { break; case 'add' : - check_admin_referer('add-bookmark'); + check_admin_referer( 'add-bookmark', '_wpnonce-edit-link' ); $redir = wp_get_referer(); if ( add_link() ) @@ -77,7 +77,7 @@ switch ($action) { case 'save' : $link_id = (int) $_POST['link_id']; - check_admin_referer('update-bookmark_' . $link_id); + check_admin_referer( 'update-bookmark_' . $link_id, '_wpnonce-edit-link' ); edit_link($link_id); diff --git wp-admin/network/site-themes.php wp-admin/network/site-themes.php index b47a0c6..db3e719 100644 --- wp-admin/network/site-themes.php +++ wp-admin/network/site-themes.php @@ -83,7 +83,7 @@ if ( $action ) { unset( $allowed_themes[$theme] ); break; case 'enable-selected': - check_admin_referer( 'bulk-themes' ); + check_admin_referer( 'bulk-themes', '_wpnonce-bulk-themes' ); if ( isset( $_POST['checked'] ) ) { $themes = (array) $_POST['checked']; $action = 'enabled'; @@ -96,7 +96,7 @@ if ( $action ) { } break; case 'disable-selected': - check_admin_referer( 'bulk-themes' ); + check_admin_referer( 'bulk-themes', '_wpnonce-bulk-themes' ); if ( isset( $_POST['checked'] ) ) { $themes = (array) $_POST['checked']; $action = 'disabled'; diff --git wp-admin/network/site-users.php wp-admin/network/site-users.php index 2064a76..522403a 100644 --- wp-admin/network/site-users.php +++ wp-admin/network/site-users.php @@ -104,7 +104,7 @@ if ( $action ) { case 'remove': if ( ! current_user_can( 'remove_users' ) ) die(__('You can’t remove users.')); - check_admin_referer( 'bulk-users' ); + check_admin_referer( 'bulk-users', '_wpnonce-bulk-users' ); $update = 'remove'; if ( isset( $_REQUEST['users'] ) ) { @@ -122,7 +122,7 @@ if ( $action ) { break; case 'promote': - check_admin_referer( 'bulk-users' ); + check_admin_referer( 'bulk-users', '_wpnonce-bulk-users' ); $editable_roles = get_editable_roles(); if ( empty( $editable_roles[$_REQUEST['new_role']] ) ) wp_die(__('You can’t give users that role.')); diff --git wp-admin/network/themes.php wp-admin/network/themes.php index 04840ee..f76e6e4 100644 --- wp-admin/network/themes.php +++ wp-admin/network/themes.php @@ -49,7 +49,7 @@ if ( $action ) { exit; break; case 'enable-selected': - check_admin_referer('bulk-themes'); + check_admin_referer( 'bulk-themes', '_wpnonce-bulk-themes' ); $themes = isset( $_POST['checked'] ) ? (array) $_POST['checked'] : array(); if ( empty($themes) ) { wp_safe_redirect( add_query_arg( 'error', 'none', $referer ) ); @@ -62,7 +62,7 @@ if ( $action ) { exit; break; case 'disable-selected': - check_admin_referer('bulk-themes'); + check_admin_referer( 'bulk-themes', '_wpnonce-bulk-themes' ); $themes = isset( $_POST['checked'] ) ? (array) $_POST['checked'] : array(); if ( empty($themes) ) { wp_safe_redirect( add_query_arg( 'error', 'none', $referer ) ); @@ -75,7 +75,7 @@ if ( $action ) { exit; break; case 'update-selected' : - check_admin_referer( 'bulk-themes' ); + check_admin_referer( 'bulk-themes', '_wpnonce-bulk-themes' ); if ( isset( $_GET['themes'] ) ) $themes = explode( ',', $_GET['themes'] ); @@ -104,7 +104,7 @@ if ( $action ) { case 'delete-selected': if ( ! current_user_can( 'delete_themes' ) ) wp_die( __('You do not have sufficient permissions to delete themes for this site.') ); - check_admin_referer( 'bulk-themes' ); + check_admin_referer( 'bulk-themes', '_wpnonce-bulk-themes' ); $themes = isset( $_REQUEST['checked'] ) ? (array) $_REQUEST['checked'] : array(); diff --git wp-admin/network/users.php wp-admin/network/users.php index 1318355..85f1448 100644 --- wp-admin/network/users.php +++ wp-admin/network/users.php @@ -117,7 +117,7 @@ if ( isset( $_GET['action'] ) ) { wp_die( __( 'You do not have permission to access this page.' ) ); if ( ( isset( $_POST['action']) || isset($_POST['action2'] ) ) && isset( $_POST['allusers'] ) ) { - check_admin_referer( 'bulk-users-network' ); + check_admin_referer( 'bulk-users-network', '_wpnonce-bulk-users-network' ); $doaction = $_POST['action'] != -1 ? $_POST['action'] : $_POST['action2']; $userfunction = ''; diff --git wp-admin/plugins.php wp-admin/plugins.php index 7fc3036..e81fe92 100644 --- wp-admin/plugins.php +++ wp-admin/plugins.php @@ -65,7 +65,7 @@ if ( $action ) { if ( ! current_user_can('activate_plugins') ) wp_die(__('You do not have sufficient permissions to activate plugins for this site.')); - check_admin_referer('bulk-plugins'); + check_admin_referer( 'bulk-plugins', '_wpnonce-bulk-plugins' ); $plugins = isset( $_POST['checked'] ) ? (array) $_POST['checked'] : array(); @@ -101,7 +101,7 @@ if ( $action ) { break; case 'update-selected' : - check_admin_referer( 'bulk-plugins' ); + check_admin_referer( 'bulk-plugins', '_wpnonce-bulk-plugins' ); if ( isset( $_GET['plugins'] ) ) $plugins = explode( ',', $_GET['plugins'] ); @@ -174,7 +174,7 @@ if ( $action ) { if ( ! current_user_can('activate_plugins') ) wp_die(__('You do not have sufficient permissions to deactivate plugins for this site.')); - check_admin_referer('bulk-plugins'); + check_admin_referer( 'bulk-plugins', '_wpnonce-bulk-plugins' ); $plugins = isset( $_POST['checked'] ) ? (array) $_POST['checked'] : array(); // Do not deactivate plugins which are already deactivated. @@ -205,7 +205,7 @@ if ( $action ) { if ( ! current_user_can('delete_plugins') ) wp_die(__('You do not have sufficient permissions to delete plugins for this site.')); - check_admin_referer('bulk-plugins'); + check_admin_referer( 'bulk-plugins', '_wpnonce-bulk-plugins' ); //$_POST = from the plugin form; $_GET = from the FTP details screen. $plugins = isset( $_REQUEST['checked'] ) ? (array) $_REQUEST['checked'] : array(); diff --git wp-admin/post.php wp-admin/post.php index c638c18..f777bfd 100644 --- wp-admin/post.php +++ wp-admin/post.php @@ -100,7 +100,7 @@ case 'postajaxpost': case 'post': case 'post-quickpress-publish': case 'post-quickpress-save': - check_admin_referer('add-' . $post_type); + check_admin_referer( 'add-' . $post_type, '_wpnonce-add-' . $post_type ); if ( 'post-quickpress-publish' == $action ) $_POST['publish'] = 'publish'; // tell write_post() to publish diff --git wp-admin/update.php wp-admin/update.php index 687142e..822c6c7 100644 --- wp-admin/update.php +++ wp-admin/update.php @@ -23,7 +23,7 @@ if ( isset($_GET['action']) ) { if ( ! current_user_can( 'update_plugins' ) ) wp_die( __( 'You do not have sufficient permissions to update plugins for this site.' ) ); - check_admin_referer( 'bulk-update-plugins' ); + check_admin_referer( 'bulk-update-plugins', '_wpnonce-bulk-update-plugins' ); if ( isset( $_GET['plugins'] ) ) $plugins = explode( ',', stripslashes($_GET['plugins']) ); @@ -170,7 +170,7 @@ if ( isset($_GET['action']) ) { if ( ! current_user_can( 'update_themes' ) ) wp_die( __( 'You do not have sufficient permissions to update themes for this site.' ) ); - check_admin_referer( 'bulk-update-themes' ); + check_admin_referer( 'bulk-update-themes', '_wpnonce-bulk-update-themes' ); if ( isset( $_GET['themes'] ) ) $themes = explode( ',', stripslashes($_GET['themes']) ); diff --git wp-admin/upload.php wp-admin/upload.php index 7d50d52..a05af95 100644 --- wp-admin/upload.php +++ wp-admin/upload.php @@ -19,7 +19,7 @@ $pagenum = $wp_list_table->get_pagenum(); $doaction = $wp_list_table->current_action(); if ( $doaction ) { - check_admin_referer('bulk-media'); + check_admin_referer( 'bulk-media', '_wpnonce-bulk-media' ); if ( 'delete_all' == $doaction ) { $post_ids = $wpdb->get_col( "SELECT ID FROM $wpdb->posts WHERE post_type='attachment' AND post_status = 'trash'" ); diff --git wp-admin/users.php wp-admin/users.php index 6ea1765..b9db4b9 100644 --- wp-admin/users.php +++ wp-admin/users.php @@ -95,7 +95,7 @@ switch ( $wp_list_table->current_action() ) { /* Bulk Dropdown menu Role changes */ case 'promote': - check_admin_referer('bulk-users'); + check_admin_referer( 'bulk-users', '_wpnonce-bulk-users' ); if ( ! current_user_can( 'promote_users' ) ) wp_die( __( 'You can’t edit that user.' ) ); @@ -191,7 +191,7 @@ case 'delete': if ( is_multisite() ) wp_die( __('User deletion is not allowed from this screen.') ); - check_admin_referer('bulk-users'); + check_admin_referer( 'bulk-users', '_wpnonce-bulk-users' ); if ( empty($_REQUEST['users']) && empty($_REQUEST['user']) ) { wp_redirect($redirect); @@ -295,7 +295,7 @@ break; case 'remove': - check_admin_referer('bulk-users'); + check_admin_referer( 'bulk-users', '_wpnonce-bulk-users' ); if ( ! is_multisite() ) wp_die( __( 'You can’t remove users.' ) ); diff --git wp-includes/functions.php wp-includes/functions.php index a41d32f..8fda660 100644 --- wp-includes/functions.php +++ wp-includes/functions.php @@ -1191,6 +1191,9 @@ function wp_nonce_url( $actionurl, $action = -1 ) { * @return string Nonce field. */ function wp_nonce_field( $action = -1, $name = "_wpnonce", $referer = true , $echo = true ) { + if ( 1 >= func_num_args() ) + _doing_it_wrong( __METHOD__, __( 'The action and name parameters are now required.' ), '3.6' ); + $name = esc_attr( $name ); $nonce_field = ''; diff --git wp-includes/js/autosave.js wp-includes/js/autosave.js index 3920d36..9077f67 100644 --- wp-includes/js/autosave.js +++ wp-includes/js/autosave.js @@ -61,7 +61,7 @@ jQuery(document).ready( function($) { async: false, data: { action: 'wp-remove-post-lock', - _wpnonce: $('#_wpnonce').val(), + _wpnonce: $('input[name="edit_form_advanced_nonce"]').val(), post_ID: $('#post_ID').val(), active_post_lock: $('#active_post_lock').val() }