[wp-trac] [WordPress Trac] #23939: Wrong capability check in wp_ajax_replyto_comment
WordPress Trac
noreply at wordpress.org
Thu Apr 4 18:39:22 UTC 2013
#23939: Wrong capability check in wp_ajax_replyto_comment
-----------------------------+--------------------------
Reporter: fgauthier | Type: defect (bug)
Status: new | Priority: normal
Milestone: Awaiting Review | Component: Comments
Version: trunk | Severity: normal
Keywords: has-patch |
-----------------------------+--------------------------
The wp_ajax_replyto_comment function in the wp-admin/includes/ajax-
actions.php checks the "edit-post" capability instead of the "edit-
comment" capability.
Attached a tested patch.
--
Ticket URL: <http://core.trac.wordpress.org/ticket/23939>
WordPress Trac <http://core.trac.wordpress.org/>
WordPress blogging software
More information about the wp-trac
mailing list