Navigation

Changeset 5941

Timestamp:

08/25/07 17:07:10 (1 year ago)

Author:

ryan

Message:

Add nonces to tag importers. Props xknown. fixes #4811

Files:

r5700	r5941
32	32	$step = (int) $_GET['step'];
33	33	}
	34
	35	if ( $step > 1 )
	36	check_admin_referer('import-utw');
34	37
35	38	// load the header
…	…
103	106
104	107	echo '<form action="admin.php?import=utw&step=2" method="post">';
	108	wp_nonce_field('import-utw');
105	109	echo '<p class="submit"><input type="submit" name="submit" value="'.__('Step 2 »').'" /></p>';
106	110	echo '</form>';
…	…
138	142
139	143	echo '<form action="admin.php?import=utw&step=3" method="post">';
	144	wp_nonce_field('import-utw');
140	145	echo '<p class="submit"><input type="submit" name="submit" value="'.__('Step 3 »').'" /></p>';
141	146	echo '</form>';
…	…
156	161
157	162	echo '<form action="admin.php?import=utw&step=4" method="post">';
	163	wp_nonce_field('import-utw');
158	164	echo '<p class="submit"><input type="submit" name="submit" value="'.__('Step 4 »').'" /></p>';
159	165	echo '</form>';

r5700	r5941
39	39	function categories_form() {
40	40	print '<form action="admin.php?import=wp-cat2tag&step=2" method="post">';
	41	wp_nonce_field('import-cat2tag');
41	42	print '<ul style="list-style:none">';
42	43
…	…
145	146
146	147	print '<form action="admin.php?import=wp-cat2tag" method="post">';
	148	wp_nonce_field('import-cat2tag');
147	149	print '<p style="text-align:center" class="submit"><input type="submit" value="' . __('Yes') . '" name="yes_convert_all_cats" />    <input type="submit" value="' . __('No') . '" name="no_dont_do_it" /></p>';
148	150	print '</form>';
…	…
159	161
160	162	function init() {
161		~~echo '<!--'; print_r($_POST); print_r($_GET); echo '-->';~~
162	163
163	164	if (isset($_POST['maybe_convert_all_cats'])) {
…	…
178	179	print '</div>';
179	180	} else {
	181	if ( $step > 1 )
	182	check_admin_referer('import-cat2tag');
	183
180	184	switch ($step) {
181	185	case 1 :