[wp-trac] [WordPress Trac] #14578: Security issue after plugin deactivation (by accidentally creating administrators)
WordPress Trac
wp-trac at lists.automattic.com
Sun Dec 26 03:27:08 UTC 2010
#14578: Security issue after plugin deactivation (by accidentally creating
administrators)
---------------------------------------------+-----------------------------
Reporter: Ivolution | Owner:
Type: defect (bug) | Status: new
Priority: normal | Milestone: Awaiting
Component: Role/Capability | Review
Severity: major | Version: 3.0.1
Keywords: plugin, administrator, security | Resolution:
---------------------------------------------+-----------------------------
Comment (by dd32):
We should probably check on remove_role() to see if it's the default role,
and if so, revert back to subscriber in that case (Assuming the role
exists)
--
Ticket URL: <http://core.trac.wordpress.org/ticket/14578#comment:3>
WordPress Trac <http://core.trac.wordpress.org/>
WordPress blogging software
More information about the wp-trac
mailing list