WordPress-C/WordPress
1
0
Fork 0
mirror of https://github.com/WordPress/WordPress.git synced 2025-03-01 19:09:12 +00:00
Code Issues Packages Projects Releases Wiki Activity

Grouped backports to the 4.1 branch.

Browse Source 
- Media: Prevent CSRF setting attachment thumbnails.

Merges [55764] to the 4.1 branch.
Props dd32, isabel_brison, martinkrcho, matveb, ocean90, paulkevan, peterwilsoncc, timothyblynjacobs, xknown, youknowriad.
Built from https://develop.svn.wordpress.org/branches/4.1@55772


git-svn-id: http://core.svn.wordpress.org/branches/4.1@55284 1a063a9b-81f0-0310-95a4-ce76da25c4cd
This commit is contained in:
Sergey Biryukov 2023-05-16 15:18:19 +00:00
parent 2f706a0103
commit a54ca6da9a
6 changed files with 30 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

22
wp-admin/about.php
View File

@ -42,7 +42,27 @@ include( ABSPATH . 'wp-admin/admin-header.php' );
</h2> </h2>
<div class="changelog point-releases"> <div class="changelog point-releases">
<h3><?php echo _n( 'Maintenance and Security Release', 'Maintenance and Security Releases', 37 ); ?></h3> <h3><?php echo _n( 'Maintenance and Security Release', 'Maintenance and Security Releases', 38 ); ?></h3>
<p>
<?php
printf(
/* translators: %s: WordPress version number */
__( '<strong>Version %s</strong> addressed one security issue.' ),
'4.1.38'
);
?>
<?php
printf(
/* translators: %s: HelpHub URL */
__( 'For more information, see <a href="%s">the release notes</a>.' ),
sprintf(
/* translators: %s: WordPress version */
esc_url( __( 'https://wordpress.org/support/wordpress-version/version-%s/' ) ),
sanitize_title( '4.1.38' )
)
);
?>
</p>
<p> <p>
<?php <?php
printf( printf(

4
wp-admin/includes/ajax-actions.php
View File

@ -2011,6 +2011,10 @@ function wp_ajax_set_attachment_thumbnail() {
wp_send_json_error(); wp_send_json_error();
} }
if ( false === check_ajax_referer( 'set-attachment-thumbnail', '_ajax_nonce', false ) ) {
wp_send_json_error();
}
$post_ids = array(); $post_ids = array();
// For each URL, try to find its corresponding post ID. // For each URL, try to find its corresponding post ID.
foreach ( $_POST['urls'] as $url ) { foreach ( $_POST['urls'] as $url ) {

1
wp-includes/js/media-audiovideo.js
View File

@ -588,6 +588,7 @@
wp.ajax.send( 'set-attachment-thumbnail', { wp.ajax.send( 'set-attachment-thumbnail', {
data : { data : {
_ajax_nonce: wp.media.view.settings.nonce.setAttachmentThumbnail,
urls: urls, urls: urls,
thumbnail_id: attachment.get( 'id' ) thumbnail_id: attachment.get( 'id' )
} }

2
wp-includes/js/media-audiovideo.min.js vendored
View File

File diff suppressed because one or more lines are too long

1
wp-includes/media.php
View File

@ -2863,6 +2863,7 @@ function wp_enqueue_media( $args = array() ) {
'captions' => ! apply_filters( 'disable_captions', '' ), 'captions' => ! apply_filters( 'disable_captions', '' ),
'nonce' => array( 'nonce' => array(
'sendToEditor' => wp_create_nonce( 'media-send-to-editor' ), 'sendToEditor' => wp_create_nonce( 'media-send-to-editor' ),
'setAttachmentThumbnail' => wp_create_nonce( 'set-attachment-thumbnail' ),
), ),
'post' => array( 'post' => array(
'id' => 0, 'id' => 0,

2
wp-includes/version.php
View File

@ -4,7 +4,7 @@
* *
* @global string $wp_version * @global string $wp_version
*/ */
$wp_version = '4.1.37'; $wp_version = '4.1.38';
/** /**
* Holds the WordPress DB revision, increments when changes are made to the WordPress DB schema. * Holds the WordPress DB revision, increments when changes are made to the WordPress DB schema.