Plugin Reviews


Adminer is a full-featured MySQL management tool written in PHP. This plugin include this tool in WordPress.

Average Rating
4.9 out of 5 stars
You are currently viewing the reviews that provided a rating of 2 stars. Click here to see all reviews.
Useful but extremely dangerous
By , for WP 3.4.2

The tool is very useful, but extremely dangerous! Even when disabled in /wp-admin/plugins.php, the PHP files can still be accessed directly. They require no authentication whatsoever but offer full access to the database.

The only limit i found, is that you have to guess the database name and prefix, which is not so hard in most cases.

I've disclosed all details to the author, but got no reply at all.

@Author: please fix this

You must log in to submit a review. You can also log in or register using the form near the top of this page.