Can the Website be Hacked by using Temporary Login Plugin

  • Resolved anopenedmind

    (@pratulghosh)


    4 years, 6 months ago

    Hi I am using this plugin in one of my wordpress websites. Recently, I purchased the WPLMS theme from Themeforest and I was facing some issues with the theme. So I contacted the Support team of the theme and they asked for my admin credentials to fix the issue in my site. I gave them my admin credentials after creating it through the “Temporary Login Without Password” plugin. They accessed it and fixed the issue. To my surprise, now I can see that I have been issued Temporary Access in the site and I cannot access the Admin panel of my site. I cannot change the password of the site. If I try to change the password it says “You don’t have permission to access this page”. Please see screenshot.
    My question is: How can someone take over the site even with Temporary access given (with Admin power)? If someone can do it, then please check your plugin for a technical glitch.
    2. How can I take over the site again?
    Thanks

    The page I need help with: [log in to see the link]

Viewing 4 replies - 1 through 4 (of 4 total)
  • Thread Starter anopenedmind

    (@pratulghosh)

    I would also like to mention that I am using the updated, latest version of WordPress as well as the Plugin. The plugin was installed from the “Add Plugin” option of my website.

    Hi,

    No. Website can’t be hacked using Temporary Login Without Password.

    Looking at what you described, It seems you are logged in as temporary user and just because of that you can’t change the password and you get the “You don’t have permission to access this page” message.

    What we recommend is to logout from the current user and login using your admin credential and check once again.

    Please check and let us know how it goes.

    Feel free to contact us if you have any further queries. We will be happy to help you.

    Thread Starter anopenedmind

    (@pratulghosh)

    I could not login using my admin credential. I had to go inside the WordPress Dashboard using my web host Hostinger’s option.

    Hi,

    This is strange!

    Because we don’t allow temporary users to access other users.

    Please let us know if you need any help from us or would like us to investigate further into this issue.

Viewing 4 replies - 1 through 4 (of 4 total)
  • The topic ‘Can the Website be Hacked by using Temporary Login Plugin’ is closed to new replies.