X-Git-Url: https://scripts.mit.edu/gitweb/autoinstalls/wordpress.git/blobdiff_plain/af50974463450c98503e763a7836a50e260461a9..b22765f41bf0b2021b9beb9120ee0ac91fa89292:/wp-admin/async-upload.php diff --git a/wp-admin/async-upload.php b/wp-admin/async-upload.php index 08d710d2..4022b523 100644 --- a/wp-admin/async-upload.php +++ b/wp-admin/async-upload.php @@ -32,6 +32,8 @@ if ( ! ( isset( $_REQUEST['action'] ) && 'upload-attachment' == $_REQUEST['actio require_once( ABSPATH . 'wp-admin/admin.php' ); +header( 'Content-Type: text/html; charset=' . get_option( 'blog_charset' ) ); + if ( isset( $_REQUEST['action'] ) && 'upload-attachment' === $_REQUEST['action'] ) { include( ABSPATH . 'wp-admin/includes/ajax-actions.php' ); @@ -43,25 +45,26 @@ if ( isset( $_REQUEST['action'] ) && 'upload-attachment' === $_REQUEST['action'] } if ( ! current_user_can( 'upload_files' ) ) { - wp_die( __( 'You do not have permission to upload files.' ) ); + wp_die( __( 'Sorry, you are not allowed to upload files.' ) ); } -header( 'Content-Type: text/html; charset=' . get_option( 'blog_charset' ) ); - // just fetch the detail form for that attachment if ( isset($_REQUEST['attachment_id']) && ($id = intval($_REQUEST['attachment_id'])) && $_REQUEST['fetch'] ) { $post = get_post( $id ); if ( 'attachment' != $post->post_type ) wp_die( __( 'Unknown post type.' ) ); if ( ! current_user_can( 'edit_post', $id ) ) - wp_die( __( 'You are not allowed to edit this item.' ) ); + wp_die( __( 'Sorry, you are not allowed to edit this item.' ) ); switch ( $_REQUEST['fetch'] ) { case 3 : if ( $thumb_url = wp_get_attachment_image_src( $id, 'thumbnail', true ) ) echo ''; echo '' . _x( 'Edit', 'media item' ) . ''; - $title = $post->post_title ? $post->post_title : wp_basename( $post->guid ); // title shouldn't ever be empty, but use filename just in cas.e + + // Title shouldn't ever be empty, but use filename just in case. + $file = get_attached_file( $post->ID ); + $title = $post->post_title ? $post->post_title : wp_basename( $file ); echo '