Reset Password Issues | WordPress.org

daz_omega
(@daz_omega)

8 years, 8 months ago

Hi,

I have had some issues with the reset password process using this plugin. After looking within the plugin I noticed that passwords were being generating that could include $ signs and . symbols.

When the confirmation email was sent the activation key is encoded by an email client (in my case using outlook web version). this encodes these signs and symbols and when a user clicks on this link their activation key does not match the one stored in the database.

I fixed this by adding a urldecode function to the activation key and then added these extra signs to the preg_replace check of the check_password_reset_key prior to checking the received activation key against the activation key stored in the database.

Rather than hacking at the plugin, I was wondering if this fix could be applied to the latest version or something similar that solves this issue.

https://wordpress.org/plugins/theme-my-login/

Viewing 1 replies (of 1 total)

Plugin Author Jeff Farthing
(@jfarthing84)

8 years, 8 months ago

Can I get an example of the links you were getting?

Viewing 1 replies (of 1 total)

The topic ‘Reset Password Issues’ is closed to new replies.

Tags

In: Plugins
1 reply
2 participants
Last reply from: Jeff Farthing
Last activity: 8 years, 8 months ago
Status: not resolved