#oneshot-reset
A self-destructing password reset script for WordPress sites
This script will allow you to reset a WordPress installations's administrator password as long as you have access to the server's files. It does not require you to have access to the database.
Except for the 'self-destruction' feature, this is the same script that appears here: Emergency Password Reset Script
The self destruction feature is implemented using a simple unlink() function call which should normally cause the script to destroy itself upon a successful password reset.
##Warning
Do not leave this script on your server or someone else could use it to change your password. The script may or may not delete itself depending on the server's configuration and file permissions. The script will not delete itself if the password reset is not successful.
##Keep in Mind:
- Requires you know the administrator username.
- It updates the administrator password and sends an email to the administrator's email address.
#How to Use
- Place
oneshot-reset.phpin the root of your WordPress installation (the same directory that contains wp-config.php). - Visit
http://example.com/oneshot-reset.php(whereexample.comis the domain of your website.) - As instructed, enter the administrator username (usually admin) and the new password, then click the
Update Optionsbutton. A message is displayed noting the changed password. An email is sent to the administrator with the changed password information. - Check that
oneshot-reset.phpis indeed deleted, and if not, delete it.
#Contributors
- Andrew Druffner andrew@nomstock.com
- MichaelH