Okada Online Casino download ios,WinCap timesheets.Recharge Every day and Get Bonus up-to 50%!

Resolved consorcioiudadano
(@consorcioiudadano)

8 years, 4 months ago

Hello,

I work with a nonprofit organization that promotes the citizen participation and engagement across Santiago de Cali city with a national perspective.

Couple of months ago we hired a web developer, to build a website for our organization. The site URL is https://consorciociudadano.com/portal/

Since the work is done we asked for the passwords to have full control over our website and he handed an user and a password (User: ‘Administrador’ instead of ‘admin’, the usual) that, to our best knowledge, does not have full access to the website settings in the WordPress panel.

We have some concerns about this and would like to have your opinion about this. I have been checking and with this information I have even more concerns. I cannot or cannot see how to create users.

I attach an image of how the panel looks like. I have no access to pages, nor plugins, nor users creation, apparently.

https://s22.postimg.org/tfyiivwtt/Panel_CC.png

Another interesting fact I found.

When I use: https://consorciociudadano.com/portal/admin

The address has an automatic change for: https://consorciociudadano.com/portal/wp-login.php?redirect_to=http%3A%2F%2Fconsorciociudadano.com%2Fportal%2Fwp-admin%2F&reauth=1

?Is the user ‘Administrador’ the full access user?

We will be pending on your answer,

Thanks beforehand.

Viewing 4 replies - 1 through 4 (of 4 total)

Moderator James Huff
(@macmanx)

8 years, 4 months ago

Your “administrator” is not actually an Administrator, the key being that the role is not capitalized under the “Perfil” column.

It looks like they indeed lied to you, created a custom limited role, and did a rather poor job at it too by not even bothering to capitalize it.

If you are not using Multisite, access your database via phpMyAdmin (most hosting providers offer this in their control panel), go to the wp_users table and find the row for your user_login. Note the ID of this row. Now, go to the wp_usermeta table and find the wp_capabilities row for your user_id. Set the value of this row to:

a:1:{s:13:"administrator";b:1;}

This will give you a real Administrator account, then I recommend that you immediately delete this other person’s account as they are clearly not worth your trust.

Next, you’ll want to look for any sort of custom user role plugins and undo any damage done there.

Finally, for good measure, carefully follow this guide. When you’re done, you may want to implement some (if not all) of the recommended security measures.

Thread Starter consorcioiudadano
(@consorcioiudadano)

8 years, 4 months ago

What I was afraid of. Thanks beforehand for your fast response dear James. I think the situation is even more complicated, the user and password provided for the Host he gave us is not working so:
1. We don’t have access to the wp-Admin.
2. We don’t have access to the c-panel of the host which, is linked to his email address.

Any suggestion you could give us in order to recover our site and control panel?

Best regards,

Moderator James Huff
(@macmanx)

8 years, 4 months ago

You’ll need to work on item 2 first. If you don’t have access to the hosting account’s control panel, you could simply lose the entire site in an instant without warning (either due to the “developer” just deleting it, or the bill not being paid).

Once that’s done, follow this guide to reset your WordPress account’s password: https://codex.www.ads-software.com/Resetting_Your_Password#Through_phpMyAdmin (you’ll find phpMyAdmin in your hosting account’s control panel)

Then, follow the suggestion from earlier to make sure that account is a real Administrator.

Thread Starter consorcioiudadano
(@consorcioiudadano)

8 years, 3 months ago

Thanks dear James, we will get our hands to work to resolve this.

Viewing 4 replies - 1 through 4 (of 4 total)

The topic ‘Concern regarding permissions on my site’ is closed to new replies.

Concern regarding permissions on my site

Tags

Topics

Topics with no replies

Non-support topics

Resolved topics

Unresolved topics

All topics