Make WordPress Core

Opened 21 months ago

Closed 9 months ago

#57613 closed defect (bug) (invalid)

my client made changes to site without being a user

Reported by: shooty's profile Shooty Owned by:
Milestone: Priority: normal
Severity: normal Version:
Component: Security Keywords: reporter-feedback close
Focuses: Cc:

Description (last modified by audrasjb)

I'm using an SEOS Social Premium theme that I purchased last year. This is a new site still in build. I'd asked my client for some info concerning links he wanted posted to the Media page. I am the ONLY user/admin to this site with a standard generated password, yet somehow my client made edits directly to the page! He doesn't even know how to sign into the dashboard and is certainly not a "user" in any capacity. Wow! what a security breach this is!

Change History (2)

#1 @audrasjb
21 months ago

  • Description modified (diff)
  • Keywords reporter-feedback close added
  • Severity changed from critical to normal

Hello and welcome to WordPress Trac,

Sorry to hear that you've encountered issues with your WordPress installation.

Unfortunately, there is no way to reproduce this issue on a clean, fresh, install.
If you don't have more detailed steps to reproduce the issue, you should probably ask for support in WordPress forums, it doesn't look like there is anything to fix.

Removing email address and website URL as it doesn't help for this issue.

Thanks

#2 @hellofromTonya
9 months ago

  • Milestone Awaiting Review deleted
  • Resolution set to invalid
  • Status changed from new to closed

Hello @Shooty,

It's been 11 months with no follow-up. I hope you were able to resolve the issue. I'm closing this ticket as it does not seem to be a Core issue.

However, if the problem still persists today or is known to be a issue in Core's sourcecode, then please reopen and share more information such as steps the reproduce it.

Note: See TracTickets for help on using tickets.