Wordpress 3.5.2

[autoinstalls/wordpress.git] / wp-includes / pluggable.php

diff --git a/wp-includes/pluggable.php b/wp-includes/pluggable.php
index 37ddb83f3529f1cab87545e42c8564c45d534599..83afefab805df6f7dc921aeb48b630169025be27 100644 (file)
--- a/wp-includes/pluggable.php
+++ b/wp-includes/pluggable.php
@@ -1257,10 +1257,10 @@ function wp_verify_nonce($nonce, $action = -1) {
        $i = wp_nonce_tick();
 
        // Nonce generated 0-12 hours ago
-       if ( substr(wp_hash($i . $action . $uid, 'nonce'), -12, 10) == $nonce )
+       if ( substr(wp_hash($i . $action . $uid, 'nonce'), -12, 10) === $nonce )
                return 1;
        // Nonce generated 12-24 hours ago
-       if ( substr(wp_hash(($i - 1) . $action . $uid, 'nonce'), -12, 10) == $nonce )
+       if ( substr(wp_hash(($i - 1) . $action . $uid, 'nonce'), -12, 10) === $nonce )
                return 2;
        // Invalid nonce
        return false;