[wp-trac] [WordPress Trac] #3263: Nonces & forms
WordPress Trac
wp-trac at lists.automattic.com
Fri Oct 20 14:36:56 GMT 2006
#3263: Nonces & forms
----------------------------+-----------------------------------------------
Reporter: Viper007Bond | Owner: anonymous
Type: defect | Status: new
Priority: normal | Milestone: 2.0.5
Component: Administration | Version: 2.0.4
Severity: normal | Keywords: needs-patch
----------------------------+-----------------------------------------------
I have a form at `admin.php?page=blah`. In the `$_POST` handling for the
form, I have a nonces check (which I've forced to fail for testing
purposes by typing in a fake name). The result of this is a "Are you sure
you want to do this" (no question mark at the end of that BTW) with a "No"
link and a "Yes" button.
Now if I click the "Yes" button, it posts to `admin.php` which is then
blank. It should post to the current URL instead in order for things to
keep working.
No patch 'cause it's 7:30 in the morning and I'm still up, so I'm lazy /
tired. :P
--
Ticket URL: <http://trac.wordpress.org/ticket/3263>
WordPress Trac <http://wordpress.org/>
WordPress blogging software
More information about the wp-trac
mailing list