Changeset 762565
- Timestamp:
- 08/26/2013 07:12:43 PM (11 years ago)
- File:
-
- 1 edited
-
jetpack/trunk/modules/subscriptions.php (modified) (4 diffs)
Legend:
- Unmodified
- Added
- Removed
-
jetpack/trunk/modules/subscriptions.php
r762552 r762565 371 371 function widget_submit() { 372 372 // Check the nonce. 373 check_admin_referer( 'blogsub_subscribe_' . get_current_blog_id() ); 373 if ( is_user_logged_in() ) { 374 check_admin_referer( 'blogsub_subscribe_' . get_current_blog_id() ); 375 } 374 376 375 377 if ( empty( $_REQUEST['email'] ) ) … … 530 532 $source = 'widget'; 531 533 534 535 532 536 $instance = wp_parse_args( (array) $instance, $this->defaults() ); 533 537 $title = isset( $instance['title'] ) ? stripslashes( $instance['title'] ) : ''; … … 542 546 543 547 echo $args['before_widget']; 544 echo $args['before_title'] . '<label for="subscribe-field">' . esc_attr( apply_filters( 'widget_title', $instance['title'] )) . '</label>' . $args['after_title'] . "\n";548 echo $args['before_title'] . '<label for="subscribe-field">' . esc_attr( ) . '</label>' . $args['after_title'] . "\n"; 545 549 546 550 $referer = ( is_ssl() ? 'https' : 'http' ) . '://' . $_SERVER['HTTP_HOST'] . $_SERVER['REQUEST_URI']; … … 592 596 <input type="hidden" name="sub-type" value="<?php echo esc_attr( $source ); ?>" /> 593 597 <input type="hidden" name="redirect_fragment" value="<?php echo esc_attr( $widget_id ); ?>" /> 594 <?php wp_nonce_field( 'blogsub_subscribe_'. get_current_blog_id(), '_wpnonce', false ); ?> 598 <?php 599 if ( is_user_logged_in() ) { 600 wp_nonce_field( 'blogsub_subscribe_'. get_current_blog_id(), '_wpnonce', false ); 601 } 602 ?> 595 603 <input type="submit" value="<?php echo esc_attr( $subscribe_button ); ?>" name="jetpack_subscriptions_widget" /> 596 604 </p>
Note: See TracChangeset
for help on using the changeset viewer.