IT Nursery
  • 1010 Avenue of the Moon
    New York, NY 10018 US.
  • Mon - Sat 8.00 - 18.00
    Sunday: Closed
  • Get A Quote
  • WordPress

    • Logout URL performing strange

    • IT Nursery
    • May 7, 2022
    • 0

    When I enter url :

    http://www.example.com/wp-login.php?action=logout

    it asks if you want to log out or not ?

    why does it happen where I am not logged in as a admin?

    If I run this url on any website like

    http://www.example.com/wp-login.php?action=logout

    The admin of that site comes to know that somebody logged out, when I just used this url, without admin username and password.

    2 Answers
    2

    This happens because of a missing nonce parameter in the URL.

    Every WordPress action, including login/logout, validates the nonce first, to make sure the request comes from a known source.

    Tags:

    Leave a Reply

    Your email address will not be published. Required fields are marked *