Hi. I have a security problem.
When a new user logs in to the site, enter your data for the login option in the menu of the site. Until there works well.
The problem is when the user registered the site ingreda through http://www.sitio.com/wp-login.php.
The user enters the panel of wordpress and from there can modify your profile data. including the amount of your credit on the site.
Why you have access to your credit? and why you can change the value?
How to prevent a common user does not enter wordpress panel and modify to taste the credit $?
translated by Google
Juan Carlos (Argentina)
Hello Juan, Try disabling all your plugins first.Also make sure you have assigned ‘New User Default Role’ to ‘Subscriber’ under Settings >General
Start your new website today!