[wp-trac] [WordPress Trac] #42183: wp_update_user() conditional compares a plain-text password to the hashed old

WordPress Trac noreply at wordpress.org
Wed Oct 11 16:24:48 UTC 2017


#42183: wp_update_user() conditional compares a plain-text password to the hashed
old
------------------------------------+------------------------------
 Reporter:  yudge                   |       Owner:
     Type:  defect (bug)            |      Status:  new
 Priority:  normal                  |   Milestone:  Awaiting Review
Component:  Users                   |     Version:  4.5.2
 Severity:  normal                  |  Resolution:
 Keywords:  has-patch dev-feedback  |     Focuses:  administration
------------------------------------+------------------------------

Comment (by johnjamesjacoby):

 > Yes, that's why i used wp_check_password() in 42183.1.patch

 I didn't see the second email come through. Sorry about that. Glad we're
 on the same page!

--
Ticket URL: <https://core.trac.wordpress.org/ticket/42183#comment:4>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform


More information about the wp-trac mailing list