[wp-trac] [WordPress Trac] #64198: Notes are accessible to any authenticated user with `edit_posts` capability using query args
WordPress Trac
noreply at wordpress.org
Wed Nov 5 12:20:52 UTC 2025
#64198: Notes are accessible to any authenticated user with `edit_posts` capability
using query args
--------------------------+---------------------
Reporter: desrosj | Owner: (none)
Type: defect (bug) | Status: new
Priority: normal | Milestone: 6.9
Component: Comments | Version: trunk
Severity: normal | Resolution:
Keywords: has-patch | Focuses:
--------------------------+---------------------
Comment (by soyebsalar01):
Roles other than admin who is not the author of the post can see the
comments
Below is the results of testing:-
1)Logged in as Admin
https://www.awesomescreenshot.com/image/57267861?key=b82d0e0870991f558b0c169d117c271b
2)Logged in as Other Role
https://www.awesomescreenshot.com/image/57267876?key=f3f2b1486bafc9f466d4a2fc8ea81a98
Conclusion : Bug still persisting
--
Ticket URL: <https://core.trac.wordpress.org/ticket/64198#comment:4>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list