wp_nonce_field()
WordPress function that outputs a hidden form field containing a nonce for CSRF protection.
How it works
WordPress function that outputs a hidden form field containing a nonce for CSRF protection.
In WordPress
Every WordPress form must include wp_nonce_field(). The corresponding handler must call check_admin_referer() or wp_verify_nonce().
WP HealthKit checks for wp_nonce_field()-related vulnerabilities automatically
Run a Free Audit