Ticket #7945: admin-ajax-allow-GET.diff
File admin-ajax-allow-GET.diff, 830 bytes (added by , 15 years ago) |
---|
-
admin-ajax.php
7 7 if ( !is_user_logged_in() ) 8 8 die('-1'); 9 9 10 if ( isset($_GET['action']) && 'ajax-tag-search' == $_GET['action'] ) { 10 if( isset( $_GET['action'] )) 11 switch ( $action = $_GET['action'] ) : 12 case 'ajax-tag-search' : 11 13 if ( !current_user_can( 'manage_categories' ) ) 12 14 die('-1'); 13 15 … … 23 25 $results = $wpdb->get_col( "SELECT name FROM $wpdb->terms WHERE name LIKE ('%". $s . "%')" ); 24 26 echo join( $results, "\n" ); 25 27 die; 26 } 28 break; 29 default : 30 do_action( 'wp_ajax_' . $_GET['action'] ); 31 die('0'); 32 break; 33 endswitch; 27 34 35 28 36 $id = isset($_POST['id'])? (int) $_POST['id'] : 0; 29 37 switch ( $action = $_POST['action'] ) : 30 38 case 'delete-comment' :