[wp-trac] [WordPress Trac] #14044: check_admin_referer is a template tag only

WordPress Trac wp-trac at lists.automattic.com
Wed Dec 15 20:11:44 UTC 2010


#14044: check_admin_referer is a template tag only
-------------------------------------------------+-------------------------
 Reporter:  hakre                                |       Owner:
     Type:  enhancement                          |      Status:  new
 Priority:  normal                               |   Milestone:  Future
Component:  Security                             |  Release
 Severity:  normal                               |     Version:  3.0
 Keywords:  has-patch dev-feedback needs-        |  Resolution:
  testing gsoc                                   |
-------------------------------------------------+-------------------------

Comment (by gazouteast):

 @nacin

 Use Case = comments 6 & 7 here -
 [http://studioslice.com/2010/04/18/community-submitted-news-ver-11-is-
 out/]

 Plugin is in repo here - [http://wordpress.org/extend/plugins/community-
 submitted-news/]

 Looks as if plugin authors are using the admin-only check to validate form
 submission by non-registered users.  I've seen this on a couple of other
 plugins too, but can't remember their names as it was pre-WP3

 Gaz

-- 
Ticket URL: <http://core.trac.wordpress.org/ticket/14044#comment:4>
WordPress Trac <http://core.trac.wordpress.org/>
WordPress blogging software


More information about the wp-trac mailing list