[wp-hackers] The menu-system in wp 1.3
Kitty
kitty at mookitty.co.uk
Mon Oct 18 01:56:47 UTC 2004
On Sun, 2004-10-17 at 13:36, Ryan Boren wrote:
> I resolved the include problems while I was in there and added a
> user_can_access_admin_page() function that is called inside of menu.php
> after the menu is built. It checks the permissions specified in $menu
> and $submenu and will abort if the user does not have sufficient
> privileges. No more backdoor.
>
> Patch attached if anyone is interested.
Any chance this will be commited? I'm still beating on it.
--
Cheers, Blog: http://blog.mookitty.co.uk
Kitty PC Repair: http://www.girltech.net
WP Plugins: http://mookitty.co.uk/devblog
Support proactive security: http://www.openbsd.org/orders.html
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
Url : /pipermail/hackers_wordpress.org/attachments/20041017/cfb4d14b/attachment-0001.bin
More information about the hackers
mailing list