Support » Fixing WordPress » MySQL Database

  • Hi.
    I have a question about MySQL Database. I have a WordPress Website still in test. So, a guy helped me with integrating Moip API into a specific folder. Some days later, he asked me for a copy of the MySQL database to complete the integration. I made a backup and sent it to him.
    Since then, I don´t get any response from him.
    So, I want to know, what can he do with this MySQL database? Are there passwords even of the MySQL and the website stored? I´m still a newbie and trusted the guy, but now it seems that is was wrong to send it to him.
    Please can anyone help me with it?
    What procedure I must do, even there is one?
    Thanks in advance

Viewing 3 replies - 1 through 3 (of 3 total)
  • Moderator Steve Stern

    (@sterndata)

    Support Team Volunteer

    The database contains hashed versions of you site’s user passwords, not the clear text versions. It might be possible to crack them.

    The database password is stored in the file wp-config.php.

    If you’re concerned, change all user passwords for your site.

    Steve is right about changing the password, but pretty much everything is stored in the database. Think about what other information might be stored in there and how that might effect you or your users. This will give them access to your registered user’s email addresses and possibly more if you have an online store or some other data collected.

    Moderator Steve Stern

    (@sterndata)

    Support Team Volunteer

    This will give them access to your registered user’s email addresses and possibly more if you have an online store or some other data collected.

    Thanks for pointing that out! I forgot about that.

    Bottom line: Don’t give access to your site to someone you don’t absolutely trust.

Viewing 3 replies - 1 through 3 (of 3 total)
  • The topic ‘MySQL Database’ is closed to new replies.