Categorized | Wordpress

Fixing Potential Privacy Breach In Collaborative WordPress

If you are the only one to login into the dashboard of a WordPress run website, then its one less issue to worry about. But if you allow readers to register themselves as Contributors on the site and write posts, or have multiple users login into the admin panel, then there are chances of compromising a user’s privacy.

In WordPress, any role higher than a Subscriber, that is Contributor and above, can login into the admin panel and view IP addresses/ emails of all those who post comments on the website.

WordPress doesn’t have any in-built feature yet which allows the administrator to disable it. So if the websites themselves do not take any measures, this could lead to a potential privacy breach.

To get a better idea of what I am talking about, take a look at this popular WordPress run current affairs website ( where users can “Post News”, which basically translates to registering as a Contributor and then posting articles.

You can either create your own id or use the one that I have created for test purposes – test123\test123 (Just don’t change the password)

Now if you go to the Comments section, you don’t see the ip address next to the comment authors name, which is a good thing. It means the website is making an effort in protecting the privacy of its readers.

But only in a half hearted manner. (Perhaps they are not aware of it?)

Within the Comments section, if you right click and view the source of the page, you can view all the ip addresses of those who commented on the website. This is a major breach.

So how to protect the privacy

I use the following piece of code to disable Comments in one of my websites (I am unable to recall who made this plugin, if you can let me know, I would link back to you).

You need to create a .php file with the code below, save it in your plugins folder, and activate it.



function check_user_capabilities() {

global $user_level;

if ((strpos($_SERVER[‘SCRIPT_NAME’], ‘wp-admin/edit-comments.php’)) or (strpos($_SERVER[‘SCRIPT_NAME’], ‘wp-admin/comment.php’))) {

if ($user_level < 9){

echo “<div class=’wrap’><h3>As A Mark Of Respect To Endangered Bengal Tigers, We Don’t Allow Access To Comments From Here ;-)</a></h3></div>”;

echo “<div class=’wrap’><h3>Please go <a href=’’>back. </a> </h3></div>”;

// include(‘admin-footer.php’);



add_action(‘init’, ‘check_user_capabilities’);


If you run a multi user blog, I would be interested to know how you take care of this issue.

    6 Responses to “Fixing Potential Privacy Breach In Collaborative WordPress”

    1. Greg says:

      The site which is posting commenters ip addresses is a major security breach. I wonder why they have still not plugged this serious breach. Even the commenters are not bothered about it!!

    2. Heya i am for the first time here. I found this board and I find It truly useful & it helped me out a lot. I hope to give something back and help others like you aided me.

    3. Along with everything which appears to be developing throughout this subject matter, many of your points of view tend to be quite refreshing. However, I appologize, because I can not subscribe to your entire plan, all be it refreshing none the less. It looks to everyone that your commentary are generally not totally rationalized and in actuality you are generally your self not even entirely confident of the assertion. In any case I did take pleasure i examining it.

    4. Interesting write-up and a single which needs to be more extensively known about in my view. Your level of detail is very good and also the clarity of writing is excellent. I have bookmarked it for you personally so that others are going to be in a position to see what it is advisable to say.

    5. Hello, Neat post. There’s an issue together with your web site in internet explorer, may test this… IE nonetheless is the market chief and a huge component to other people will pass over your great writing because of this problem.

    6. Fantastic website. Lots of useful info here. I’m sending it to some pals ans also sharing in delicious. And certainly, thanks for your sweat!


    Leave a Reply

    You must be logged in to post a comment.