Plugin Directory


Ignore:
Timestamp:
08/25/2020 07:05:37 AM (5 years ago)
Author:
impleCode
Message:

Security - fixed nonce check

File:
1 edited

Legend:

Unmodified
Added
Removed
  • post-type-x/trunk/core/includes/register-product.php

    r2339630 r2368377  
    300300        if ( $post_type_now == 'al_product' ) {
    301301            $pricemeta_noncename = isset( $_POST[ 'pricemeta_noncename' ] ) ? $_POST[ 'pricemeta_noncename' ] : '';
    302             if ( !empty( $pricemeta_noncename ) && !wp_verify_nonce( $pricemeta_noncename, plugin_basename( __FILE__ ) ) ) {
     302            if ( empty($pricemeta_noncename) || (!empty( $pricemeta_noncename ) && !wp_verify_nonce( $pricemeta_noncename, plugin_basename( __FILE__ ) )) ) {
    303303                return $post->ID;
    304304            }
Note: See TracChangeset for help on using the changeset viewer.