Changeset 4361
- Timestamp:
- 11/08/2012 08:23:37 AM (13 years ago)
- File:
-
- 1 edited
-
trunk/includes/common/functions.php (modified) (2 diffs)
Legend:
- Unmodified
- Added
- Removed
-
trunk/includes/common/functions.php
r4268 r4361 1408 1408 1409 1409 // Get the home URL 1410 $home_url = strtolower( home_url() );1410 $home_url = strtolower( home_url() ); 1411 1411 1412 1412 // Build the currently requested URL … … 1414 1414 $requested_url = strtolower( $scheme . $_SERVER['HTTP_HOST'] . $_SERVER['REQUEST_URI'] ); 1415 1415 1416 // Filter the requested URL, for configurations like reverse proxying 1417 $matched_url = apply_filters( 'bbp_verify_nonce_request_url', $requested_url ); 1418 1416 1419 // Check the nonce 1417 1420 $result = isset( $_REQUEST[$query_arg] ) ? wp_verify_nonce( $_REQUEST[$query_arg], $action ) : false; 1418 1421 1419 1422 // Nonce check failed 1420 if ( empty( $result ) || empty( $action ) || ( strpos( $ requested_url, $home_url ) !== 0 ) )1423 if ( empty( $result ) || empty( $action ) || ( strpos( $matched_url, $home_url ) !== 0 ) ) 1421 1424 $result = false; 1422 1425
Note: See TracChangeset
for help on using the changeset viewer.