WordPress.org

Ready to get started?Download WordPress

Forums

Adminer
[resolved] Version v1.2.3 (01/08/2013) Security Fix (4 posts)

  1. Handoko
    Member
    Posted 1 year ago #

    Hello,

    I saw the changelog of Adminer v1.2.3 (01/08/2013) mentioned there is a security fix, does it mean it solved the problem mentioned in this thread:

    http://wordpress.org/support/topic/useful-but-extremely-dangerous?

    Which does it also mean it's now safer to use because hackers are unable to access the script without login to admin backend?

    http://wordpress.org/extend/plugins/adminer/

  2. Frank
    Member
    Plugin Author

    Posted 1 year ago #

    The loader of adminer check for different parts, but the important check is, that you have the capability unfiltered_html of WordPress. The check is only possible, if you logged in and you have this capability; on default have this the Administrator. The check works also from outside the install.

  3. Handoko
    Member
    Posted 1 year ago #

    Not really understand.

    Does it mean, on normal cases only logged users who has administrator role can access the plugin?

    Anyway I feel safer to use it now because I know you have make it more secure. This Adminer and your Adminimize are both of my favorite plugins, very useful.

  4. Frank
    Member
    Plugin Author

    Posted 1 year ago #

    Yes, the access to the plugin or filed is only possible, if you are logged in and have enough capabilities, default the Administrator role.

    Thanks for the tribute.

Topic Closed

This topic has been closed to new replies.

About this Plugin

About this Topic

Tags

No tags yet.