Hello,
After using the hide backend feature the emails received when changing the admin email for a site are broken.
The email is:
Dear user,
You recently requested to have the administration email address on
your site changed.
If this is correct, please click on the following link to change it:
http://<SITE>/wp-admin/options.php?adminhash=<HASH>
You can safely ignore and delete this email if you do not want to
take this action.
This email has been sent to <email>
...
The problem is the wp-admin/options.php is only accessible after logging in.
Is there any workaround and or security issue to allow this access?
Best regards
https://wordpress.org/plugins/better-wp-security/
