Help with WordPress login flaw

  • cdgeog

    (@cdgeog)


    11 years ago

    I have received a few emails from readers of my site (gislounge.com) that, while surfing my web site, have found themselves logged in as myself, giving them full admin rights to my web site. This flaw seems to have occurred since upgrading to the latest version of WordPress 3.7.1. I have emailed information about the situation to security at www.remarpro.com.

    While I am waiting to hear back, does anybody know about this flaw? I really need some suggestion on how to prevent this from happening before someone with less than honorable intentions finds themselves with access to my dashboard.

    Thanks,
    Caitlin

Viewing 2 replies - 1 through 2 (of 2 total)
  • Moderator Jan Dembowski

    (@jdembowski)

    Forum Moderator and Brute Squad

    That’s news to me and would be a neat trick with cookies.

    Have you tried the usual troubleshooting steps and see if it can be reproduced on demand? Start with deactivating your plugins.

    *Looks at site*

    How are you doing that https://1-ps.googleusercontent.com CDN substitutions? Looks like you are off loading your for caching?

    Thread Starter cdgeog

    (@cdgeog)

    I use Google’s page speed service to speed up the page load of my site. I have been running it for over a year with no issue. I haven’t added any new plugins lately but I suppose one of my existing plugins doesn’t play well with the new WP version.

Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘Help with WordPress login flaw’ is closed to new replies.

Tags