XMLRPC several methods for check for capability before it exists
|Reported by:||markoheijnen||Owned by:||nacin|
When you check for the capability to edit a post it also applies for not existing posts.
So if a post ID doesn't exists it will also say you are not allowed to edit the post.
So I guess wp_get_single_post should be before current_user_can. So the right error message can be applied. Also the check on post_date for "no such post" is weird
Change History (7)
comment:2 @markoheijnen — 3 years ago
- Summary changed from XMLRPC mw_getPost never shows the post doesn't exists to XMLRPC several methods for check for capability before it exists