[wp-cvs] wordpress/wp-admin templates.php,1.31,1.32
Matthew Mullenweg
saxmatt at users.sourceforge.net
Tue Dec 14 09:46:07 UTC 2004
Update of /cvsroot/cafelog/wordpress/wp-admin
In directory sc8-pr-cvs1.sourceforge.net:/tmp/cvs-serv20147/wp-admin
Modified Files:
templates.php
Log Message:
Don't allow viewing/editing of wp-config.php through web interface.
Index: templates.php
===================================================================
RCS file: /cvsroot/cafelog/wordpress/wp-admin/templates.php,v
retrieving revision 1.31
retrieving revision 1.32
diff -C2 -d -r1.31 -r1.32
*** templates.php 12 Dec 2004 20:41:15 -0000 1.31
--- templates.php 14 Dec 2004 09:45:49 -0000 1.32
***************
*** 52,58 ****
require_once('./admin-header.php');
! if ($user_level <= 5) {
die(__('<p>You have do not have sufficient permissions to edit templates for this blog.</p>'));
! }
update_recently_edited($file);
--- 52,60 ----
require_once('./admin-header.php');
! if ( $user_level <= 5 )
die(__('<p>You have do not have sufficient permissions to edit templates for this blog.</p>'));
!
! if ( strstr( $file, 'wp-config.php' ) )
! die( __('<p>The config file cannot be edited or viewed through the web interface. Sorry!</p>') );
update_recently_edited($file);
More information about the cvs
mailing list