vhad/wordpress-develop
1
0
Fork 0
mirror of https://github.com/gosticks/wordpress-develop.git synced 2026-06-28 22:30:04 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

Fixed admin level security problem.

Browse Source 
Plus an user -> a user


git-svn-id: https://develop.svn.wordpress.org/trunk@149 602fd350-edb4-49c9-b593-d223f7449a82
This commit is contained in:
Mike Little
2003-06-03 00:08:51 +00:00
parent 10fedfea94
commit adce403896
3 changed files with 10 additions and 10 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
wp-admin/b2edit.showposts.php
View File

@@ -235,7 +235,7 @@ if ($i == "ASC")
<p>
<strong><?php the_time('Y/m/d @ H:i:s'); ?></strong> [ <a href="b2edit.php?p=<?php echo $id ?>&c=1"><?php comments_number('no comments', '1 comment', "% comments") ?></a>
<?php
if (($user_level > $authordata[13]) or ($user_login == $authordata[1])) {
if (($user_level > $authordata->user_level) or ($user_login == $authordata->user_login)) {
echo " - <a href='b2edit.php?action=edit&amp;post=$id";
if ($m)
echo "&m=$m";
@@ -274,7 +274,7 @@ if ($i == "ASC")
<?php comment_text() ?>
<?php comment_date('Y/m/d') ?> @ <?php comment_time() ?>
<?php
if (($user_level > $authordata[13]) or ($user_login == $authordata[1])) {
if (($user_level > $authordata->user_level) or ($user_login == $authordata->user_login)) {
echo "[ <a href=\"b2edit.php?action=editcomment&amp;comment=".$commentdata->comment_ID."\">Edit</a>";
echo " - <a href=\"b2edit.php?action=deletecomment&amp;p=".$post->ID."&amp;comment=".$commentdata->comment_ID."\">Delete</a> ]";
}