/** Load WordPress Bootstrap */
require_once ('admin.php');
+
+if ( !current_user_can('edit_files') )
+ wp_die(__('You do not have sufficient permissions to import content in this blog.'));
+
$title = __('Import');
require_once ('admin-header.php');
$parent_file = 'tools.php';
<div class="wrap">
<?php screen_icon(); ?>
-<h2><?php echo wp_specialchars( $title ); ?></h2>
+<h2><?php echo esc_html( $title ); ?></h2>
<p><?php _e('If you have posts or comments in another system, WordPress can import those into this blog. To get started, choose a system to import from below:'); ?></p>
<?php