you should pay attention to a security issue with the ImageManager plugin.
Anyone can access the manager.php file and delete images.
Add this at the top of manager.php to check user is logged in :
require_once('../../../wp-config.php');
require_once('../../../wp-includes/functions.php');
get_currentuserinfo();
auth_redirect();
Great Plugin !
I’ll try to make it work with HtmlArea. Does anyone succeeded in that already ? Is the logic to integrate ImageManager into this htmlarea plugin or the reverse ?
