Crap! WordPress 2.0.3 shipped with a rather annoying pair triplet of bugs:
- Editing a comment will generate an “Are you sure?” dialog
- A bug in the “Are you sure?” dialog adds slashes in front of all of your quote characters
- After editing comments, you are not forwarded to the correct location
So, when you edit comments, it’ll needlessly take you to the “Are you sure?” dialog (intended for people with blank HTTP_REFERER values) and then it’ll mess up the comment by changing something like:
I'm sleepy
to this:
I\'m sleepy
Enough foreplay… time to fix the stupid thing:
The fix
Forget those steps below… just use this plugin I wrote!
Open up/wp-admin/post.php
in a plaintext editorLine 325 is the bad line:check_admin_referer('update-comment');
Change this line to:check_admin_referer('update-comment' . $_POST['comment_ID']);
I’ll post another entry when I get the “Are you sure?” slashing bug figured out… but note that fixing this bug will avoid that bug, by skipping the “Are you sure?” dialog for comment editing.
Hey Mark…
Is there a reason this isn’t fixed in the SVN?
Also, in 3835, changes have been made to edit-form-comment.php…. I presume these fix the slashing bug?
Thanks,
CG
CG,
It is fixed in SVN.
/branches/2.0/
and/trunk/
should be kosher now.The slashing bug fix was in
/wp-includes/pluggable-functions.php
. Theedit-form-comment.php
fix was to change the nonce key on the receiving end.But if you don’t want to run SVN code, I just now released a plugin that fixes the three major issues (“are you sure?” on comments, slashes bug, comment edit redirection bug) without modifying any core code.
Nice fix. I ended up just going ahead and fixing the code itself, though, since it’s not really any more trouble to do that than it is to download, unzip, upload, and activate the plugin itself.
Thanks Mark, you’re the man!
It *does* work now great.
Maybe a 2.0.3.1 release? This is quite annoying, and not everyone knows enough to visit the “hacker blogs..”
Don’t know about 2.0.3.1 (ugh, I hate the 4-digit releases!) If it were up to me, I’d wait about 3 weeks, fix as many more bugs as I could, and then release 2.0.4
We’ll see. Until then, spread the word about the plugin!
The plugin works great!
I’m getting another bug with the new upgrade in that I can’t load functions.php. Using the Kubrick default theme (or K2, or any that require that file), clicking on the “Current Theme Options” sub-tab gives me a “Cannot load functions.php” error.
Or is this just me?
I also have some strange problems when editing a link in the admin backend from the Blogroll. It redirects not correctly. It’s in the linkmanager.php file.
rxbbx,
Fixed that bug in version 0.3 of the WordPress 2.0.3 Tuneup plugin.
Thnx for your work.. It works like a charm.
Thanks, Mark. Your plugin kicks butt.
A big HOORAY to Mark.
Arteriosclerosis (hardening of the arteries), heart disease or stroke, hypertension (high blood pressure) and high cholesterol. man tabs
Welcome to my site – Myusenet-pics
Nice!
very gooddd. In my blog are problem whit comments T.T http://www.revphp.es
helpmeee
Please Review This Site, You’ll Like It
[LINK= http://freeaza.110mb.com/ ]lorazepam wikipedia the free encyclopedia[/LINK] lorazepam wikipedia the free encyclopedia
Just Stopped by to say hi, Thanks
[LINK= http://freeazx.110mb.com/ ]free wav to mp3 converter[/LINK] free wav to mp3 converter
Dont Stop Showing The World What Youve GotYou Can be very helpfull and see here [LINK=http://fefefreehadaw.110mb.com/]2004 free tax return filing[/LINK] 2004 free tax return filing
Great Persona On the WebsiteGreat Work ,Im Impressed From The Site
Hillary duff photo gallery
links
It redirects not correctly
Very good information. Thank you.
Can someone
I also have some strange problems when editing a link in the admin backend from the Blogroll. It redirects not correctly. It’s in the linkmanager.php file.
Great work 🙂 Your plugin kicks butt.
I like Daughtry a lot and I enjoyed the new Eagles album, and bands like Journey and ACDC are still making the rounds. Rock is far from dead.