[wp-trac] Re: [WordPress Trac] #2678: Nonces instead of referers
WordPress Trac
wp-trac at lists.automattic.com
Wed May 3 07:38:07 GMT 2006
#2678: Nonces instead of referers
----------------------------+-----------------------------------------------
Id: 2678 | Status: new
Component: Administration | Modified: Wed May 3 07:38:07 2006
Severity: normal | Milestone:
Priority: normal | Version: 2.1
Owner: anonymous | Reporter: ringmaster
----------------------------+-----------------------------------------------
Comment (by denney):
It seems adding that patch has some problems with some plugins. I'm using
the WPG2 plugin and the following problem occurs (because it calls
"check_admin_referer()"):
When I click yes to the confirmation, it just redirects me to a blank page
with "wp-admin/admin.php" in the URL. Going back to the WPG2 plugin page
indeed shows that nothing was actually saved or done.
I've tried adding a nonce action to the urls using wp_nonce_url() and
adding that nonce action to the call to check_admin_referer() but I still
get the confirmation page. There is a _wpnonce= in the URL though.
--
Ticket URL: <http://trac.wordpress.org/ticket/2678>
WordPress Trac <http://wordpress.org/>
WordPress blogging software
More information about the wp-trac
mailing list