[wp-trac] [WordPress Trac] #18319: inline reply removes images

[WordPress Trac]

#18319: inline reply removes images
--------------------------------------+--------------------
 Reporter:  hebbet                    |       Owner:
     Type:  defect (bug)              |      Status:  new
 Priority:  normal                    |   Milestone:  3.3
Component:  Comments                  |     Version:  3.2.1
 Severity:  normal                    |  Resolution:
 Keywords:  needs-patch dev-feedback  |
--------------------------------------+--------------------

Comment (by SergeyBiryukov):

 That check was copied from `wp-comments-post.php` in [8720], however in
 `admin-ajax.php` we already have `check_ajax_referer()`:

 http://core.trac.wordpress.org/browser/tags/3.2.1/wp-admin/admin-
 ajax.php#L628

 Isn't that enough to prevent possible XSRF described in #3973?

-- 
Ticket URL: <http://core.trac.wordpress.org/ticket/18319#comment:5>
WordPress Trac <http://core.trac.wordpress.org/>
WordPress blogging software