WordPress.org
Get WordPress

Plugin Directory

Changeset 2143899


Ignore:
Timestamp:
08/22/2019 05:00:00 PM (7 years ago)
Author:
geekysoft
Message:

Don’t let users w/o admin capabilities into the settings page

File:
1 edited

Legend:

Unmodified
Added
Removed

  • cache-control/trunk/admin.php

    r2143894 r2143899  
    11<?php
    22
    3 if ( !defined('ABSPATH') || !is_admin() ) {
     3if ( !defined('ABSPATH') || !is_admin() || !current_user_can('manage_options')) {
    44    header( 'HTTP/1.1 403 Forbidden' );
    55    exit(   'HTTP/1.1 403 Forbidden' );
Note: See TracChangeset for help on using the changeset viewer.