Plugin Directory


Ignore:
Timestamp:
01/31/2024 02:53:40 PM (15 months ago)
Author:
seedprod
Message:

Staging 6.15.22

File:
1 edited

Legend:

Unmodified
Added
Removed
  • coming-soon/trunk/app/lpage.php

    r3023103 r3029567  
    4949 */
    5050function seedprod_lite_new_lpage() {
     51    // check permissions
     52    if ( ! current_user_can( apply_filters( 'seedprod_lpage_capability', 'edit_others_posts' ) ) ) {
     53        wp_die();
     54    }
     55
    5156    $get_page = isset( $_GET['page'] ) ? sanitize_text_field( wp_unslash( $_GET['page'] ) ) : null; // phpcs:ignore WordPress.Security.NonceVerification.Recommended
    5257    $get_id   = isset( $_GET['id'] ) ? sanitize_text_field( wp_unslash( $_GET['id'] ) ) : null; // phpcs:ignore WordPress.Security.NonceVerification.Recommended
    5358
    5459    if ( null !== $get_page && 'seedprod_lite_template' == $get_page && null !== $get_id && '0' == $get_id ) {
     60        // check nonce
     61        if(wp_verify_nonce( $_GET['_wpnonce'], 'seedprod_nonce' ) === false) {
     62            wp_die('nonce check failed');
     63        }
    5564        // get theme code
    5665        $id = absint( $get_id );
Note: See TracChangeset for help on using the changeset viewer.