Making WordPress.org

#6949 closed defect (bug) (invalid)

How to block the user if login from the cookies

Reported by: hybreeder's profile Hybreeder Owned by:
Milestone: Priority: high
Component: General Keywords: has-screenshots
Cc:

Description

I am getting one security issue on my website. I am sharing the steps below

  1. I have installed the cookies editor extension in my Chrome browser
  2. Then I logged in to my WordPress website
  3. Clicked on the cookies editor icon and there is an export option->Export as JSON

https://i.stack.imgur.com/pU2l1.png

  1. Then I Logout the admin panel
  2. Clear all the cache and cookies.
  3. Open the cookies editor again and import the JSON which I got while exporting and click on import

Then I refresh the page, I can see that I am logged in to the admin panel without login details.

Any idea how to solve this issue?

Change History (1)

#1 @Otto42
10 months ago

  • Resolution set to invalid
  • Status changed from new to closed

This is meta trac, a bug tracker system for wordpress.org and associated properties.

For general support questions and help with WordPress, please use the WordPress support forums as found here: https://wordpress.org/support/forums/

Note: See TracTickets for help on using tickets.