From e2289a42074a7517708290b18de6c1b6de7ea75d Mon Sep 17 00:00:00 2001 From: Paul Kevan Date: Wed, 11 Dec 2024 16:26:15 +0000 Subject: [PATCH] pass nonce to verify --- .../wp-content/plugins/camptix/inc/class-camptix-badges.php | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/public_html/wp-content/plugins/camptix/inc/class-camptix-badges.php b/public_html/wp-content/plugins/camptix/inc/class-camptix-badges.php index 1ead01d5c..dac6e3014 100644 --- a/public_html/wp-content/plugins/camptix/inc/class-camptix-badges.php +++ b/public_html/wp-content/plugins/camptix/inc/class-camptix-badges.php @@ -11,7 +11,7 @@ */ function process_badges() { - if ( ! current_user_can( 'manage_options' ) || ! wp_verify_nonce( 'badge-submission' ) ) { + if ( ! current_user_can( 'manage_options' ) || ! wp_verify_nonce( $_POST['_wpnonce'], 'badge-submission' ) ) { return __( 'Invalid request', 'wordcamporg' ); }