X-Git-Url: https://scripts.mit.edu/gitweb/autoinstalls/wordpress.git/blobdiff_plain/e08b42e8ad054ec67522d7ac1aaae5dc68cb3d01..2329f698283944696a7076258cf816545970bb47:/wp-admin/async-upload.php?ds=sidebyside diff --git a/wp-admin/async-upload.php b/wp-admin/async-upload.php index a16c8d3a..add61649 100644 --- a/wp-admin/async-upload.php +++ b/wp-admin/async-upload.php @@ -6,7 +6,13 @@ * @subpackage Administration */ -define('WP_ADMIN', true); +if ( isset( $_REQUEST['action'] ) && 'upload-attachment' === $_REQUEST['action'] ) { + define( 'DOING_AJAX', true ); +} + +if ( ! defined( 'WP_ADMIN' ) ) { + define( 'WP_ADMIN', true ); +} if ( defined('ABSPATH') ) require_once(ABSPATH . 'wp-load.php'); @@ -32,8 +38,7 @@ if ( !current_user_can('upload_files') ) header('Content-Type: text/html; charset=' . get_option('blog_charset')); if ( isset( $_REQUEST['action'] ) && 'upload-attachment' === $_REQUEST['action'] ) { - define( 'DOING_AJAX', true ); - include ABSPATH . 'wp-admin/includes/ajax-actions.php'; + include( ABSPATH . 'wp-admin/includes/ajax-actions.php' ); send_nosniff_header(); nocache_headers(); @@ -81,7 +86,7 @@ if ( isset( $_REQUEST['post_id'] ) ) { $id = media_handle_upload( 'async-upload', $post_id ); if ( is_wp_error($id) ) { - echo '