[wp-hackers] Removing edit theme files features

Otto otto at ottodestruct.com
Thu Jan 17 18:41:57 UTC 2013

On Thu, Jan 17, 2013 at 12:19 PM, Chris Williams <chris at clwill.com> wrote:
> At the very least this feature should be limited to only those with the
> highest of login capabilities.

It already is. The edit_themes and edit_plugins capabilities are set
to be Administrator only, by default. In multisite, they're
specifically restricted to the Super-Admin access level.


More information about the wp-hackers mailing list