campaign log nonce
-
Hi,
I was looking at the code in app/campaign_log.php and noticed something that doesn’t make any sense.
$nonce=$_REQUEST[‘_wpnonce’];
if ( !isset( $nonce ) ) { //NOTE: this if section makes no sense
include(‘wp-includes/pluggable.php’);
if(!wp_verify_nonce($nonce, ‘clog-nonce’) ) wp_die(‘Are you sure?’);
}I read this as:
1) get the nonce
2) If the nonce does not exist
2a) include pluggable.php
2b) verify_nonce()But in step 2, the nonce was determined to not exist, so what is being verified?
This looks like a bug to me.
Viewing 1 replies (of 1 total)
Viewing 1 replies (of 1 total)
- The topic ‘campaign log nonce’ is closed to new replies.
