[wp-trac] [WordPress Trac] #5070: Unauthorized administrator
registration
WordPress Trac
wp-trac at lists.automattic.com
Mon Sep 24 23:08:05 GMT 2007
#5070: Unauthorized administrator registration
-----------------------------+----------------------------------------------
Reporter: Emu | Owner: anonymous
Type: defect | Status: new
Priority: highest omg bbq | Milestone: 2.5
Component: Security | Version: 2.2.3
Severity: critical | Keywords:
-----------------------------+----------------------------------------------
Hello.
About a month I found in my registered users one that have admin rights.
Then I removed his rights and schedule investigation of problem to
"tomorrow". Today I found another co-administrator in my user list. I
tried to investigate the problem, but I couldn't find the way to reproduce
issue. Access log was not enough.
My blog is currently 2.2.3 version of WordPress.
I can post access log records for that user if it can help.
I think that is very dangerous, so I'll put "highest omg bbq" priority.
Regards, Emu
P.S. The problem can be in some of my installed plugins, so I'll continue
investigating.
P.P.S. Sorry for my bad english. I hope you understand me.
--
Ticket URL: <http://trac.wordpress.org/ticket/5070>
WordPress Trac <http://trac.wordpress.org/>
WordPress blogging software
More information about the wp-trac
mailing list