Making WordPress.org

Changeset 12520


Ignore:
Timestamp:
03/31/2023 01:18:15 AM (14 months ago)
Author:
dd32
Message:

Plugin Directory: Check for the bulk action nonce after we've verified this is the intended action.

The form uses GET requests and sends over action=-1 for innoculous things like search :( so this is hit for more code paths than just performing actions on the page.

Followup to [12517].
See #6903.

File:
1 edited

Legend:

Unmodified
Added
Removed
Note: See TracChangeset for help on using the changeset viewer.