[wp-trac] [WordPress Trac] #14982: Author link in Twenty Ten is showing username
WordPress Trac
wp-trac at lists.automattic.com
Tue Sep 28 01:07:19 UTC 2010
#14982: Author link in Twenty Ten is showing username
--------------------------+-------------------------------------------------
Reporter: denzel_chia | Owner:
Type: defect (bug) | Status: new
Priority: normal | Milestone: Awaiting Review
Component: Security | Version: 3.0.1
Severity: major | Keywords: twentyten, author link,
--------------------------+-------------------------------------------------
The author link under post name in Twenty Ten theme is showing username
example;
Posted on September 28, 2010 by Denzel Chia
Mouseover author name Denzel Chia and you can see the username for login
in the link at the browser status bar.
Perhaps this can be changed to use author ID?
Anybody can get the login username this way and what is left is the
password to guess. This also defeats the purpose of allowing to use own
username instead of admin.
Thanks
--
Ticket URL: <http://core.trac.wordpress.org/ticket/14982>
WordPress Trac <http://core.trac.wordpress.org/>
WordPress blogging software
More information about the wp-trac
mailing list