Context Navigation

← Previous Ticket
Next Ticket →

#5349 closed defect (bug) (worksforme)

Admin permissions on Manage Posts page

Reported by:	cbandy	Owned by:
Milestone:		Priority:	normal
Severity:	normal	Version:	2.3.1
Component:	Administration	Keywords:
Focuses:		Cc:

Description

When logged in as admin, the Delete button on the Manage Posts page (wp-admin/edit.php) always displays "You don't have permission to do that" and does not delete a post.

Digging, I found that check_ajax_referer compares the current user_login to the USER_COOKIE value passed in the request. The current user_login is the plain string "admin" while the value in the request appears encoded in some way, and the test ( $current_name != $user ) is always false.

Commenting out line 367-368 in wp-includes/pluggable.php solved for me.

Attachments (1)

pluggable.php.diff (427 bytes) - added by cbandy 18 years ago.

Download all attachments as: .zip

Change History (4)

@cbandy
18 years ago

Attachment pluggable.php.diff added

#1 @cbandy
18 years ago

Possibly related to #3720 as commented by miklb on 03/13/07

#2 @lloydbudd
18 years ago

Milestone set to 2.4

#3 @mrmist
18 years ago

Milestone 2.9 deleted
Resolution set to worksforme
Status changed from new to closed

Think this one is no longer an issue.

Note: See TracTickets for help on using tickets.

Trac UI Preferences

Download in other formats:

Make WordPress Core