Nonce failing on form submission

Okay, not sure what was wrong with my original code, but this post put me on the right path.

To generate the nonce, use:

wp_nonce_field( plugin_basename( __FILE__ ), 'my_reset_nonce',true,false);

To verify, use:

if ( ! isset( $_POST['my_reset_nonce'] ) || ! wp_verify_nonce( ( $_POST['my_reset_nonce'] ), plugin_basename( __FILE__ ) ) ) {
    die;
} else {
    // Reset the form.
}

Various other variables, conditionals, sanitizing, etc. omitted for clarity.

Related Posts:

  1. Why am I sometimes getting a 404 error when I try to update a page with Elementor?
  2. When is it useful to use wp_verify_nonce
  3. Why Better WP security plugin returns 418 I’m a Teapot “error”?
  4. Weird problems after recovery from security breach
  5. Security checking in meta_box save is reluctant?
  6. wp_create_nonce function doesn’t work inside a plugin?
  7. 404 errors when updating options in admin dashboard
  8. wp_verify_nonce fails always
  9. What security concerns should I have when setting FS_METHOD to “direct” in wp-config?
  10. What Are Security Best Practices for WordPress Plugins and Themes? [closed]
  11. How to catch/what to do with a WP Error Object
  12. Are WordPress Plugins essential?
  13. I found this in a plugin. What does it do? is it dangerous?
  14. An unexpected error occurred. Something may be wrong with WordPress.org or this server’s configuration
  15. What are the common security flaws I need to look for? [closed]
  16. Disabled plugins are they security holes – rumor or reality?
  17. What could a hacker do with my wp-config.php
  18. What are the best practices for updating?
  19. Is there a plugin that will override the “Error establishing a database connection” message? [closed]
  20. How Can I Securely Implement a Password-less Login Feature?
  21. Error: call_user_func_array() expects parameter 1 to be a valid callback
  22. How to eliminate weird 404 errors in wp-admin?
  23. Security and .htaccess
  24. Loading external page template and enqueue script from plugin causes 403 forbidden error
  25. Validation error: Extending Gutenberg gallery block
  26. Why “Contact Form 7” doesn’t update PHPmailer library?
  27. Are there procedures to prevent malicious plugin updates?
  28. Secure WordPress paid plugin
  29. How to make media upload private? [duplicate]
  30. Does WordPress contain “default” anti-SQL injection code that responds with a 404 error?
  31. How do I fix the “sorry, you are not allowed to access this page” error I get on the “plugins > settings” links?
  32. Should messages in WP_Error already be html escaped?
  33. What does a security risk in a plugin look like?
  34. How to get Login Error messages on a custom template
  35. WordPress Capabilities: edit_user vs edit_users
  36. Should we use plugins that aren’t available from the official WordPress site?
  37. PHP Deprecated: Non-static method should not be called statically
  38. How to check plugins for malicious code?
  39. How to properly secure my WordPress installation?
  40. Why allow overriding crucial pluggable functions wp_verify_nonce and wp_create_nonce?
  41. Where should my plugin POST to?
  42. Plugins error (Use roles and capabilities instead) on latest version, multisite
  43. WordPress error – PHP Fatal error: Uncaught Error: Call to undefined function register_block_type_from_metadata()
  44. Security error WP 4.0 + WP phpBB Bridge [closed]
  45. Reduce nonce lifespan
  46. Should I install plugins to my WordPress installation from web sites having in URL “nulled” or, “null”?
  47. Error: “Cannot modify header information”
  48. Disabled plugins are security holes – rumor or reality?
  49. Plugin.php: PHP Notice: Undefined offset: 0 in
  50. check for the current screen
  51. Should I use RIPS tool to test my themes and plugins?
  52. “Are you sure you want to do this?” when deactivating all plugins in WordPress 4.3.1 [closed]
  53. Prevent Brute Force Attack
  54. How should I handle errors within a plugin?
  55. Why users disable the WordPress update?
  56. How many security plugins are too many? [closed]
  57. Will WordPress username displayed somewhere in the site?
  58. Upgrading WordPress 4.0 asks for FTP password
  59. Force plugin to fail activation
  60. An Unexpected HTTP Error occurred during the API request
  61. Is revealing just the AUTH_KEY a security issue?
  62. How Restrict access to admin dashboard by specific static ip?
  63. Dashboard Disappears after Upgrade
  64. Protecting against malicious code in WordPress plugin updates
  65. Questions about brute force attacks on the admin username, coming from amazon IP addresses
  66. How do you install the automattic developer plugin under localhost for mamp when there is an error, deprecated?
  67. echo do_shortcode is not working on theme’s template
  68. How to expire all wordpress user passwords instantly?
  69. Seaweed Plugin not working
  70. All plugins deactivated due to error
  71. How to get the wpnonce value?
  72. How to limit WordPress pages during updates?
  73. How can I see the error generated by plugin activation?
  74. rms_unique_wp_mu_pl_fl_nm.php
  75. Unable to activate wordpress importer after installing it
  76. How can we deal with unmaintained plugins with vulnerabilities?
  77. Security issues with WP sites
  78. How can I create a plugin installation link?
  79. Escape when echoed
  80. Should you escape hardcoded URLs?
  81. Error in the wp-config.php file: PHP Fatal error: Uncaught Error: Unknown named parameter (PHP 8.0)
  82. How to implement Sentry on WordPress? [closed]
  83. Preventing BFA in WordPress without using a plugin
  84. Can a plugin still effect a site even after deletion?
  85. Accessing GET variable named ‘error’
  86. Error handling a plugin with exceptions
  87. Unable to install theme recommended plugins on Multisite
  88. Problem with wordpress version 3.8
  89. How can I make uploaded images in the editor load with HTTPS?
  90. How to stop xmlrpc attacks without disabling component to allow JetPack to work in WordPress?
  91. How To Clean The Malware Infected & Hacked WordPress Websites? [duplicate]
  92. Post-terms-order PHP errors after update
  93. Call to undefined function get_userdata in user.php
  94. Only Homepage not loading properly
  95. Accidentally Broke Site (Please Help) [closed]
  96. WordPress filter that hook after each action/filter hook
  97. One of my plugins broke when I tried to update it, how do I safely uninstall it?
  98. Images not showing after changing wp-content folder name
  99. How to delete Passwrd Protected posts cookies when a user logged out from the site
  100. The safest way to automate WordPress backups
Hata!: SQLSTATE[HY000] [1045] Access denied for user 'divattrend_liink'@'localhost' (using password: YES)