WordPress/wp-admin
Boone Gorges 39fb7992a9 Require numeric IDs in user deletion functions.
`wp_delete_user()` and `wpmu_delete_user()` both require an `$id` parameter.
Previously, the functions did not verify that the value passed was, in fact,
a number. As such, passing an object or any other entity that would be cast
to int `1` would result in user 1 being deleted. We fix this by enforcing
the requirement that `$id` be numeric.

Props dipesh.kakadiya, utkarshpatel, juliobox.
Fixes #33800.
Built from https://develop.svn.wordpress.org/trunk@34034


git-svn-id: http://core.svn.wordpress.org/trunk@34002 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2015-09-11 02:25:23 +00:00
..
css Grunt RTL CSS: swap-dashicons-left-right-arrows in rtlcss:properties expects double-quoted content strings in CSS. It doesn't swap single-quoted values. 2015-09-10 20:22:25 +00:00
images Squish that .png a bit more. See [32994]. 2015-06-30 22:04:25 +00:00
includes Require numeric IDs in user deletion functions. 2015-09-11 02:25:23 +00:00
js After [33821], when dynamically updating the document title text of the Comments List Table page, operate only on the fragment that contains the comment count. This prevents us from including other numbers that may be present in the other title parts (site title, etc). 2015-09-10 01:03:25 +00:00
maint Improve the tone of key/salts recommendation message. 2015-07-01 15:39:26 +00:00
network Move network_settings_add_js() from wp-admin/network/settings.php to wp-admin/includes/ms.php. 2015-09-10 22:24:24 +00:00
user Ensure the requires for the admin bootstrap are documented in all wp-admin/user/ files. 2014-11-04 16:32:22 +00:00
about.php About: Use actual locale and not subtitle debug cruft. 2015-08-18 17:07:26 +00:00
admin-ajax.php Pinking shears. 2015-08-17 21:39:25 +00:00
admin-footer.php Add @global annotations for wp-admin/*. 2015-05-28 21:41:30 +00:00
admin-functions.php
admin-header.php Correct the title used on the user dashboard. 2015-06-24 00:37:28 +00:00
admin-post.php Docs Formatting: Backtick-escape inline code for all dynamic hook docs in wp-admin/*. 2014-11-30 11:42:24 +00:00
admin.php Add @global annotations for wp-admin/*. 2015-05-28 21:41:30 +00:00
async-upload.php Merge two similar strings. 2015-09-01 13:46:24 +00:00
comment.php Move comment_footer_die() from wp-admin/comment.php to wp-admin/includes/comment.php. 2015-09-10 21:29:24 +00:00
credits.php Make 'Docs Committer' translatable. 2015-08-21 17:47:25 +00:00
custom-background.php Proper heading for admin screens. 2015-06-27 15:41:25 +00:00
custom-header.php Provide more helpful feedback than just "Cheatin' uh?" for permission errors in wp-admin/custom-header.php. 2015-09-02 16:29:21 +00:00
customize.php Provide more helpful feedback than just "Cheatin' uh?" for permission errors in wp-admin/customize.php. 2015-09-02 17:05:22 +00:00
edit-comments.php Provide more helpful feedback than just "Cheatin' uh?" for permission errors in wp-admin/edit-comments.php. 2015-09-02 18:04:21 +00:00
edit-form-advanced.php After [34004], don't break apart the paragraph into multiple translatable strings. 2015-09-10 21:00:24 +00:00
edit-form-comment.php Comments/PHP Notices: check that a parent comment exists before displaying an orphan's link to it in the admin. 2015-09-10 20:51:23 +00:00
edit-link-form.php Use a less element-specific class name for links within page titles. 2015-07-03 16:42:24 +00:00
edit-tag-form.php Proper heading for admin screens. 2015-06-27 15:41:25 +00:00
edit-tags.php Bump H3 headings to H2 on the {Term} screens for better accessibility. 2015-09-05 20:17:25 +00:00
edit.php Provide more helpful feedback than just "Cheatin' uh?" for permission errors in wp-admin/edit.php. 2015-09-02 18:15:20 +00:00
export.php Bump H3 headings to H2 on Export screen for better accessibility. 2015-09-05 20:09:24 +00:00
freedoms.php About: Third pass at 4.3 about page: 2015-08-13 22:11:35 +00:00
import.php Proper heading for admin screens. 2015-06-27 15:41:25 +00:00
index.php Replace some hyphens with —s in admin help tabs. 2015-08-19 04:53:25 +00:00
install-helper.php Add missing doc blocks to wp-admin/includes/*. 2015-05-29 20:17:26 +00:00
install.php Drop the hyphen from e-mail and standardize on email. 2015-08-28 03:17:21 +00:00
link-add.php
link-manager.php Use a less element-specific class name for links within page titles. 2015-07-03 16:42:24 +00:00
link-parse-opml.php Add @global annotations for wp-admin/*. 2015-05-28 21:41:30 +00:00
link.php Fix syntax for single- and multi-line comments in wp-admin-directory files. 2014-07-17 09:14:16 +00:00
load-scripts.php foreach is a statement, not a function. 2015-08-25 20:28:22 +00:00
load-styles.php foreach is a statement, not a function. 2015-08-25 20:28:22 +00:00
media-new.php media-new.php, when using the browser uploader, if the result of uploading is a WP_Error - wp_die() with the error, instead of redirecting with a generic error. 2015-09-10 17:18:24 +00:00
media-upload.php Provide more helful feedback than just "Cheatin' uh?" for permission errors in wp-admin/media-upload.php. 2015-09-02 16:21:21 +00:00
media.php Use a less element-specific class name for links within page titles. 2015-07-03 16:42:24 +00:00
menu-header.php Admin menu: improve accessibility when collapsed. 2015-06-25 19:33:26 +00:00
menu.php After [33723], ensure that $i is properly set before looping. 2015-09-02 18:48:22 +00:00
moderation.php
ms-admin.php
ms-delete-site.php Trim trailing space from string in site delete confirmation 2015-07-01 16:31:25 +00:00
ms-edit.php
ms-options.php
ms-sites.php
ms-themes.php
ms-upgrade-network.php
ms-users.php
my-sites.php Merge two similar strings about insufficient permissions. 2015-07-27 13:25:25 +00:00
nav-menus.php Provide more helpful feedback than just "Cheatin' uh?" for permission errors in wp-admin/nav-menus.php. 2015-09-02 18:21:21 +00:00
network.php Create wp-admin/includes/network.php via svn cp and only load it in wp-admin/network.php. Move the functions there. 2015-09-10 22:01:24 +00:00
options-discussion.php Move ad hoc Options functions to wp-admin/includes/options.php: 2015-09-10 21:45:24 +00:00
options-general.php Move ad hoc Options functions to wp-admin/includes/options.php: 2015-09-10 21:45:24 +00:00
options-head.php
options-media.php Bump H3 headings to H2 on the Media Settings screen for better accessibility. 2015-09-05 20:12:25 +00:00
options-permalink.php Move ad hoc Options functions to wp-admin/includes/options.php: 2015-09-10 21:45:24 +00:00
options-reading.php Move ad hoc Options functions to wp-admin/includes/options.php: 2015-09-10 21:45:24 +00:00
options-writing.php Drop the hyphen from e-mail and standardize on email. 2015-08-28 03:17:21 +00:00
options.php Provide more helpful feedback than just "Cheatin' uh?" for permission errors in wp-admin/options.php. 2015-09-02 18:31:21 +00:00
plugin-editor.php Proper heading for admin screens. 2015-06-27 15:41:25 +00:00
plugin-install.php Use a less element-specific class name for links within page titles. 2015-07-03 16:42:24 +00:00
plugins.php Move plugin_sandbox_scrape() from wp-admin/plugins.php to wp-admin/includes/plugin.php. 2015-09-10 21:24:24 +00:00
post-new.php Provide more helpful feedback than just "Cheatin' uh?" for permission errors in wp-admin/post-new.php. 2015-09-02 18:36:22 +00:00
post.php Set the secure flag on the wp-saving-post cookie when using HTTPS. 2015-09-10 22:42:23 +00:00
press-this.php Provide more helpful feedback than just "Cheatin' uh?" for permission errors in wp-admin/press-this.php. 2015-09-02 18:38:21 +00:00
profile.php
revision.php Revisions screen: change language from "Return to post editor" to "Return to editor" - more generic for usage by custom post types. 2015-09-09 03:23:23 +00:00
setup-config.php foreach is a statement, not a function. 2015-08-25 20:28:22 +00:00
theme-editor.php Proper heading for admin screens. 2015-06-27 15:41:25 +00:00
theme-install.php Round 2 of: We should use ellipses … / … instead of three dots/periods ... e.g Loading… not Loading... 2015-09-09 04:39:25 +00:00
themes.php _wpThemeSettings.l10n.searchPlaceholder is an input placeholder and doesn't handle UTF-8 or HTML entities properly. In lieu of using literal Unicode here, use .... 2015-09-10 20:36:24 +00:00
tools.php Bump H3 headings to H2 on Tools screen for better accessibility. 2015-08-31 03:32:21 +00:00
update-core.php Bump H3 headings to H2 on WordPress Updates screen for better accessibility. 2015-08-31 03:26:24 +00:00
update.php Accessibility improvements for Themes screen: fix keyboard events and callbacks for the Search field, increase trigger timeout a bit, improve Esc. key handling. 2015-04-03 02:32:28 +00:00
upgrade-functions.php
upgrade.php Add @global annotations for wp-admin/*. 2015-05-28 21:41:30 +00:00
upload.php Merge some similar media-related strings. 2015-07-26 23:24:24 +00:00
user-edit.php Move 2 ad hoc user admin functions: 2015-09-10 21:33:33 +00:00
user-new.php Move 2 ad hoc user admin functions: 2015-09-10 21:33:33 +00:00
users.php When deleting via User List Table, don't prompt for re-attribution if the user(s) do(es) not have any posts. 2015-09-10 16:47:24 +00:00
widgets.php Move wp_widgets_access_body_class() (a hook callback) from wp-admin/widgets.php to wp-admin/includes/widgets.php. 2015-09-10 21:22:23 +00:00