WordPress.org
Get WordPress

Plugin Directory

Changeset 3154073


Ignore:
Timestamp:
09/18/2024 05:25:01 PM (19 months ago)
Author:
beetexting
Message:

csrf issue resolved

Location:
beetexting-texting-widget
Files:
2 edited

Legend:

Unmodified
Added
Removed

  • beetexting-texting-widget/tags/1.0.1/beetexting_settings_page.php

    r3140581 r3154073  
    1212        if (!isset($_POST['my_wpbt_update_setting']))
    1313          die("<br><br> Unauthorized ! ");
    14         if ( ! isset( $_POST['my_wpbt_update_setting'] ) || ! wp_verify_nonce( sanitize_text_field( wp_unslash ( $_POST['my_wpbt_update_setting'] ) ) , 'wpbt_update_setting' ) )
     14        if ( ! isset( $_POST['my_wpbt_update_setting'] ) && ! wp_verify_nonce( sanitize_text_field( wp_unslash ( $_POST['my_wpbt_update_setting'] ) ) , 'wpbt_update_setting' ) )
    1515          die("<br><br>Hmm .. Unauthorized.. No CSRF for you! ");
    1616 

  • beetexting-texting-widget/trunk/beetexting_settings_page.php

    r3140581 r3154073  
    1212        if (!isset($_POST['my_wpbt_update_setting']))
    1313          die("<br><br> Unauthorized ! ");
    14           if ( ! isset( $_POST['my_wpbt_update_setting'] ) || ! wp_verify_nonce( sanitize_text_field( wp_unslash ( $_POST['my_wpbt_update_setting'] ) ) , 'wpbt_update_setting' ) )
     14          if ( ! isset( $_POST['my_wpbt_update_setting'] ) && ! wp_verify_nonce( sanitize_text_field( wp_unslash ( $_POST['my_wpbt_update_setting'] ) ) , 'wpbt_update_setting' ) )
    1515          die("<br><br>Hmm .. Unauthorized.. No CSRF for you! ");
    1616 
Note: See TracChangeset for help on using the changeset viewer.