Question regarding update 4.56

  • Resolved SGURYGF

    (@sgurygf)


    5 years, 10 months ago

    Hi,

    In the latest plugin’s update changelog says:

    Update: Single site WordPress installation: URE automatically grants all existing user capabilities to WordPress built-in ‘administrator’ role before opening its page “Users->User Role Editor”.

    Is this a security fix?

Viewing 2 replies - 1 through 2 (of 2 total)
  • Plugin Author Vladimir Garagulya

    (@shinephp)

    5 years, 10 months ago

    Hi,

    No. This function was added not as security fix, but more as a helper.
    It automatically grants to the administrator role new added WordPress built-in capabilities without need to write a special code for this purpose. If some plugin added role with custom capabilities, administrator will get them too, etc.
    And, yes, if for some reason some critical capability was revoked from administrator role, it will be granted back.

    Thread Starter SGURYGF

    (@sgurygf)

    5 years, 9 months ago

    Sorry for the delay, thanks for the explanation!

Viewing 2 replies - 1 through 2 (of 2 total)

The topic ‘Question regarding update 4.56’ is closed to new replies.