WordPress.org

Make WordPress Core

Opened 3 years ago

Closed 3 years ago

Last modified 3 years ago

#45384 closed defect (bug) (invalid)

i think its a back door

Reported by: hoseineslami Owned by:
Milestone: Priority: normal
Severity: normal Version:
Component: Users Keywords:
Focuses: Cc:

Description

when ever we create a user on any WordPress website with this email
a@…
suddenly WordPress assign an avatar to that user
always same photo...

Change History (3)

#1 @tobifjellner
3 years ago

  • Resolution set to invalid
  • Severity changed from major to normal
  • Status changed from new to closed

This is no backdoor. These account images are Gravatars and on gravatar.com you can read more about how it works. The only information that is sent out is a hash value.
Theoretically, the hash value of the email address you are using could be the same as the hash value of a totally different email address someone else is using.

Having said that, I now need to say this:
Most welcome to WordPress trac. This is where we follow-up the development and bug fixing for WordPress core. It is not meant for user support. If you want to continue discussing this topic, then that's better done over at https://wordpress.org/support

Further: If you some day should become aware of a real backdoor, then PLEASE don't post about it publicly, since that might raise the risks for everyone involved. Instead use HackerOne. There are links and more information on the start pages of this system.

#2 @SergeyBiryukov
3 years ago

  • Component changed from General to Users

#3 @ocean90
3 years ago

  • Milestone Awaiting Review deleted
Note: See TracTickets for help on using tickets.