[wp-trac] Re: [WordPress Trac] #5082: Edit Comment capability flipped

WordPress Trac wp-trac at lists.automattic.com
Thu Sep 27 04:47:08 GMT 2007


#5082: Edit Comment capability flipped
---------------------------+------------------------------------------------
 Reporter:  lybica         |        Owner:  anonymous
     Type:  defect         |       Status:  new      
 Priority:  high           |    Milestone:  2.3.1    
Component:  Security       |      Version:  2.3      
 Severity:  major          |   Resolution:           
 Keywords:  edit-comments  |  
---------------------------+------------------------------------------------
Comment (by bl968):

 Replying to [ticket:5082 lybica]:
 > I, as an "Author", can Edit/Delete/Classify-as-Spam comments written by
 other Authors, including anonymous ones, but not mine.[[BR]]
 > In edit-comment.php, [ Edit | ... ] links are present except on my
 comments.[[BR]]
 > I can ''actually edit'' comments by others using edit-comment.php.[[BR]]
 > Even edit_comment_link() in my theme does the opposite thing.[[BR]]
 > There must be some flipped logic introduced in 2.3, or screwed up on db
 upgrade...?

 Unable to duplicate. Steps attempted on a blog upgraded from 2.2.1 to 2.3.

  * Ran upgrade.php.
  * Created new author.
  * unable to edit other users comments both through the dashboard, through
 options/manage comments (edit-comment.php), and through the
 edit_comment_link() in the theme.

 Some things to try...

  * Remove your wp-admin directory from your wordpress installation. (rm
 -rf wp-admin from your blogs home directory.)
  * Extract a fresh wordpress copy to a new sub directory.
  * Move the wp-admin from that directory to the your blogs home directory.
  * See if the problem still exists.
  * If problem still occurs try doing the same procedure with wp-includes.

-- 
Ticket URL: <http://trac.wordpress.org/ticket/5082#comment:1>
WordPress Trac <http://trac.wordpress.org/>
WordPress blogging software


More information about the wp-trac mailing list