« Django
Earthquake? »

PHP/Wordpress is daft

I’ve just had to upgrade wordpress to fix this bug:

http://trac.wordpress.org/ticket/5487 -

1. Create a draft post

2. Log out

3. Visit http://yourblog.com/index.php/wp-admin/

  • is_admin() spots the wp-admin in the request and returns true
  • query.php uses is_admin() to decide to return future, draft or pending posts

That’s not how you’re supposed to do authentication!

‘Code is poetry’, indeed.

This entry was posted on Tuesday, February 26th, 2008 at 8:26 pm and is filed under geekery. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

One Response to “PHP/Wordpress is daft”

  1. ivixlog » Blog Archive » AberQuotes Says:
    April 10th, 2008 at 10:02 pm

    [...] Pretty silly and will be forgotten about within weeks (if not already), but it at least made me use the majority of the components of Django to some extent. Having said that about blogs, I should probably get around to turning this site into a Django site, if only because wordpress is rubbish. [...]

Leave a Reply