From 0f937748799da63c454bebc365d612a03fbb383e Mon Sep 17 00:00:00 2001 From: Benni Ledl Date: Thu, 18 Jan 2024 10:36:20 +0100 Subject: [PATCH 01/17] Remove administrator and editor from default_role selector and add security health check for a risky combination of users_can_register and default_role --- .../includes/class-wp-site-health.php | 36 +++++++++++++++++++ src/wp-admin/includes/template.php | 9 ++++- src/wp-admin/options-general.php | 12 ++++++- 3 files changed, 55 insertions(+), 2 deletions(-) diff --git a/src/wp-admin/includes/class-wp-site-health.php b/src/wp-admin/includes/class-wp-site-health.php index da6c81e985219..322c638ffa37f 100644 --- a/src/wp-admin/includes/class-wp-site-health.php +++ b/src/wp-admin/includes/class-wp-site-health.php @@ -1963,6 +1963,38 @@ public function get_test_available_updates_disk_space() { return $result; } + /** + * Tests if registration is open to everyone and the default role is privileged. + * + * @since 6.5.0 + * + * @return array The test results. + */ + public function get_test_privileged_default_role_with_open_registration() { + $users_can_register = get_option( 'users_can_register' ); + $default_role = get_option( 'default_role' ); + + $result = array( + 'label' => __( 'Open Registration with privileged default role' ), + 'status' => 'good', + 'badge' => array( + 'label' => __( 'Security' ), + 'color' => 'blue', + ), + 'description' => '

' . __( 'The combination of open registration and the default user role is acceptable.' ) . '

', + 'actions' => '', + 'test' => 'privileged_default_role_with_open_registration', + ); + + $privileged_roles = (array) apply_filters( 'site_status_over_privileged_role', array( 'editor', 'administrator' ) ); + if ( $users_can_register && in_array( $default_role, $privileged_roles, true ) ) { + $result['description'] = __( 'Registration is open to anyone, and the default role is set to a privileged role.' ); + $result['status'] = 'critical'; + } + + return $result; + } + /** * Tests if plugin and theme temporary backup directories are writable or can be created. * @@ -2780,6 +2812,10 @@ public static function get_tests() { 'label' => __( 'Available disk space' ), 'test' => 'available_updates_disk_space', ), + 'privileged_default_role_with_open_registration' => array( + 'label' => __( 'Open Registration with Default Administrator Privileges' ), + 'test' => 'privileged_default_role_with_open_registration', + ), ), 'async' => array( 'dotorg_communication' => array( diff --git a/src/wp-admin/includes/template.php b/src/wp-admin/includes/template.php index 90b375e882a3f..bc972f694babf 100644 --- a/src/wp-admin/includes/template.php +++ b/src/wp-admin/includes/template.php @@ -970,14 +970,21 @@ function parent_dropdown( $default_page = 0, $parent_page = 0, $level = 0, $post * Prints out option HTML elements for role selectors. * * @since 2.1.0 + * @since 6.5.0 Added $roles_to_exclude parameter * * @param string $selected Slug for the role that should be already selected. */ -function wp_dropdown_roles( $selected = '' ) { +function wp_dropdown_roles( $selected = '', $roles_to_exclude = array() ) { $r = ''; $editable_roles = array_reverse( get_editable_roles() ); + if ( ! empty( $roles_to_exclude ) && is_array( $roles_to_exclude ) ) { + foreach ( $roles_to_exclude as $role_to_exclude ) { + unset( $editable_roles[ $role_to_exclude ] ); + } + } + foreach ( $editable_roles as $role => $details ) { $name = translate_user_role( $details['name'] ); // Preselect specified role. diff --git a/src/wp-admin/options-general.php b/src/wp-admin/options-general.php index 490a138580c5f..9250827d32db9 100644 --- a/src/wp-admin/options-general.php +++ b/src/wp-admin/options-general.php @@ -179,7 +179,17 @@ - + + From af4f42cd0f07441eea968b82b70ab24721188798 Mon Sep 17 00:00:00 2001 From: Benni Ledl Date: Thu, 18 Jan 2024 10:59:06 +0100 Subject: [PATCH 02/17] Add action to new health check --- src/wp-admin/includes/class-wp-site-health.php | 8 ++++++-- 1 file changed, 6 insertions(+), 2 deletions(-) diff --git a/src/wp-admin/includes/class-wp-site-health.php b/src/wp-admin/includes/class-wp-site-health.php index 322c638ffa37f..b5378a9a0adfb 100644 --- a/src/wp-admin/includes/class-wp-site-health.php +++ b/src/wp-admin/includes/class-wp-site-health.php @@ -1986,10 +1986,14 @@ public function get_test_privileged_default_role_with_open_registration() { 'test' => 'privileged_default_role_with_open_registration', ); - $privileged_roles = (array) apply_filters( 'site_status_over_privileged_role', array( 'editor', 'administrator' ) ); - if ( $users_can_register && in_array( $default_role, $privileged_roles, true ) ) { + if ( $users_can_register && in_array( $default_role, array( 'editor', 'administrator' ), true ) ) { $result['description'] = __( 'Registration is open to anyone, and the default role is set to a privileged role.' ); $result['status'] = 'critical'; + $result['actions'] = sprintf( + '

%s

', + esc_url( admin_url( 'options-general.php' ) ), + __( 'Change these settings' ) + ); } return $result; From e95a5b1dde1cc7f5031c185fb483f50fee41d326 Mon Sep 17 00:00:00 2001 From: Benni Ledl Date: Fri, 19 Jan 2024 08:11:58 +0100 Subject: [PATCH 03/17] Added editor to excludes --- src/wp-admin/options-general.php | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/src/wp-admin/options-general.php b/src/wp-admin/options-general.php index 9250827d32db9..58eb0095b0337 100644 --- a/src/wp-admin/options-general.php +++ b/src/wp-admin/options-general.php @@ -187,7 +187,7 @@ * * @param array $roles_to_exclude Array of roles to exclude from the default_role dropdown */ - $roles_to_exclude = (array) apply_filters( 'default_user_dropdown_excluded_roles', array( 'administrator' ) ); + $roles_to_exclude = (array) apply_filters( 'default_user_dropdown_excluded_roles', array( 'administrator', 'editor' ) ); ?> From 9b64ac1f8c6eadce85acf6d6d7ae3962c231801d Mon Sep 17 00:00:00 2001 From: Benni Ledl Date: Sat, 27 Jan 2024 20:17:42 +0100 Subject: [PATCH 04/17] Fix docblock and coding standards --- src/wp-admin/includes/template.php | 5 +++-- src/wp-admin/options-general.php | 2 +- 2 files changed, 4 insertions(+), 3 deletions(-) diff --git a/src/wp-admin/includes/template.php b/src/wp-admin/includes/template.php index bc972f694babf..63fc6da84f87c 100644 --- a/src/wp-admin/includes/template.php +++ b/src/wp-admin/includes/template.php @@ -970,9 +970,10 @@ function parent_dropdown( $default_page = 0, $parent_page = 0, $level = 0, $post * Prints out option HTML elements for role selectors. * * @since 2.1.0 - * @since 6.5.0 Added $roles_to_exclude parameter + * @since 6.5.0 Added $roles_to_exclude parameter. * - * @param string $selected Slug for the role that should be already selected. + * @param string $selected Slug for the role that should be already selected. + * @param array $roles_to_exclude Array of roles to exclude from the dropdown. */ function wp_dropdown_roles( $selected = '', $roles_to_exclude = array() ) { $r = ''; diff --git a/src/wp-admin/options-general.php b/src/wp-admin/options-general.php index 58eb0095b0337..ca93178626c4e 100644 --- a/src/wp-admin/options-general.php +++ b/src/wp-admin/options-general.php @@ -185,7 +185,7 @@ * * @since 6.5.0 * - * @param array $roles_to_exclude Array of roles to exclude from the default_role dropdown + * @param array $roles_to_exclude Array of roles to exclude from the default_role dropdown. */ $roles_to_exclude = (array) apply_filters( 'default_user_dropdown_excluded_roles', array( 'administrator', 'editor' ) ); ?> From e60ac510afd094b83857db91040ee61488eff690 Mon Sep 17 00:00:00 2001 From: Benni Ledl Date: Sat, 27 Jan 2024 20:21:21 +0100 Subject: [PATCH 05/17] Changed message --- src/wp-admin/includes/class-wp-site-health.php | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/src/wp-admin/includes/class-wp-site-health.php b/src/wp-admin/includes/class-wp-site-health.php index b5378a9a0adfb..71ab33d0f5c30 100644 --- a/src/wp-admin/includes/class-wp-site-health.php +++ b/src/wp-admin/includes/class-wp-site-health.php @@ -1981,7 +1981,7 @@ public function get_test_privileged_default_role_with_open_registration() { 'label' => __( 'Security' ), 'color' => 'blue', ), - 'description' => '

' . __( 'The combination of open registration and the default user role is acceptable.' ) . '

', + 'description' => '

' . __( 'The combination of open registration setting and the default user role may lead to security issues.' ) . '

', 'actions' => '', 'test' => 'privileged_default_role_with_open_registration', ); From 8f5c64204001b167a1a0ea9ae1dd852ce475af26 Mon Sep 17 00:00:00 2001 From: Benni Ledl Date: Wed, 31 Jan 2024 15:19:30 +0100 Subject: [PATCH 06/17] correct label --- src/wp-admin/includes/class-wp-site-health.php | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/src/wp-admin/includes/class-wp-site-health.php b/src/wp-admin/includes/class-wp-site-health.php index 71ab33d0f5c30..eaf2535e5166b 100644 --- a/src/wp-admin/includes/class-wp-site-health.php +++ b/src/wp-admin/includes/class-wp-site-health.php @@ -2817,7 +2817,7 @@ public static function get_tests() { 'test' => 'available_updates_disk_space', ), 'privileged_default_role_with_open_registration' => array( - 'label' => __( 'Open Registration with Default Administrator Privileges' ), + 'label' => __( 'Open Registration with privileged default role' ), 'test' => 'privileged_default_role_with_open_registration', ), ), From c9c4b28053dd78ad26f6e4cb4ca35572c8da528a Mon Sep 17 00:00:00 2001 From: Benni Ledl Date: Wed, 7 Feb 2024 14:37:25 +0100 Subject: [PATCH 07/17] changed to --- src/wp-admin/includes/template.php | 14 ++++++++------ src/wp-admin/options-general.php | 8 ++++---- 2 files changed, 12 insertions(+), 10 deletions(-) diff --git a/src/wp-admin/includes/template.php b/src/wp-admin/includes/template.php index 63fc6da84f87c..7bb1540b40f22 100644 --- a/src/wp-admin/includes/template.php +++ b/src/wp-admin/includes/template.php @@ -970,19 +970,21 @@ function parent_dropdown( $default_page = 0, $parent_page = 0, $level = 0, $post * Prints out option HTML elements for role selectors. * * @since 2.1.0 - * @since 6.5.0 Added $roles_to_exclude parameter. + * @since 6.5.0 Added $roles_to_include parameter. * * @param string $selected Slug for the role that should be already selected. - * @param array $roles_to_exclude Array of roles to exclude from the dropdown. + * @param array $roles_to_include Array of roles to include in the dropdown. Defaults to all roles that the current user is allowed to edit. */ -function wp_dropdown_roles( $selected = '', $roles_to_exclude = array() ) { +function wp_dropdown_roles( $selected = '', $roles_to_include = array() ) { $r = ''; $editable_roles = array_reverse( get_editable_roles() ); - if ( ! empty( $roles_to_exclude ) && is_array( $roles_to_exclude ) ) { - foreach ( $roles_to_exclude as $role_to_exclude ) { - unset( $editable_roles[ $role_to_exclude ] ); + if ( ! empty( $roles_to_include ) && is_array( $roles_to_include ) ) { + foreach ( $editable_roles as $editable_role => $details){ + if ( !in_array( $editable_role, $roles_to_include ) && $editable_role !== $selected ){ + unset( $editable_roles[ $editable_role ] ); + } } } diff --git a/src/wp-admin/options-general.php b/src/wp-admin/options-general.php index ca93178626c4e..6693fa9833c1e 100644 --- a/src/wp-admin/options-general.php +++ b/src/wp-admin/options-general.php @@ -181,15 +181,15 @@ - + From 6c8e5ca36202a9365f15dbd7479140d214c99be6 Mon Sep 17 00:00:00 2001 From: Benni Ledl Date: Wed, 7 Feb 2024 14:41:59 +0100 Subject: [PATCH 08/17] fix coding standards --- src/wp-admin/includes/template.php | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/src/wp-admin/includes/template.php b/src/wp-admin/includes/template.php index 7bb1540b40f22..895e446eb54c9 100644 --- a/src/wp-admin/includes/template.php +++ b/src/wp-admin/includes/template.php @@ -981,8 +981,8 @@ function wp_dropdown_roles( $selected = '', $roles_to_include = array() ) { $editable_roles = array_reverse( get_editable_roles() ); if ( ! empty( $roles_to_include ) && is_array( $roles_to_include ) ) { - foreach ( $editable_roles as $editable_role => $details){ - if ( !in_array( $editable_role, $roles_to_include ) && $editable_role !== $selected ){ + foreach ( $editable_roles as $editable_role => $details ) { + if ( ! in_array( $editable_role, $roles_to_include ) && $editable_role !== $selected ) { unset( $editable_roles[ $editable_role ] ); } } From 3115fb249f635b6b845122cdb89eb93f92332762 Mon Sep 17 00:00:00 2001 From: Benni Ledl Date: Wed, 7 Feb 2024 18:15:49 +0100 Subject: [PATCH 09/17] changes --- src/wp-admin/includes/template.php | 18 ++++++------------ src/wp-admin/options-general.php | 18 ++++++++++++++---- 2 files changed, 20 insertions(+), 16 deletions(-) diff --git a/src/wp-admin/includes/template.php b/src/wp-admin/includes/template.php index 895e446eb54c9..c9443b9f4b4d4 100644 --- a/src/wp-admin/includes/template.php +++ b/src/wp-admin/includes/template.php @@ -970,22 +970,16 @@ function parent_dropdown( $default_page = 0, $parent_page = 0, $level = 0, $post * Prints out option HTML elements for role selectors. * * @since 2.1.0 - * @since 6.5.0 Added $roles_to_include parameter. + * @since 6.5.0 Added $editable_roles parameter. * - * @param string $selected Slug for the role that should be already selected. - * @param array $roles_to_include Array of roles to include in the dropdown. Defaults to all roles that the current user is allowed to edit. + * @param string $selected Slug for the role that should be already selected. + * @param array $editable_roles Array of roles to include in the dropdown. Defaults to all roles that the current user is allowed to edit. */ -function wp_dropdown_roles( $selected = '', $roles_to_include = array() ) { +function wp_dropdown_roles( $selected = '', $editable_roles = null ) { $r = ''; - $editable_roles = array_reverse( get_editable_roles() ); - - if ( ! empty( $roles_to_include ) && is_array( $roles_to_include ) ) { - foreach ( $editable_roles as $editable_role => $details ) { - if ( ! in_array( $editable_role, $roles_to_include ) && $editable_role !== $selected ) { - unset( $editable_roles[ $editable_role ] ); - } - } + if ( null === $editable_roles ) { + $editable_roles = array_reverse( get_editable_roles() ); } foreach ( $editable_roles as $role => $details ) { diff --git a/src/wp-admin/options-general.php b/src/wp-admin/options-general.php index 6693fa9833c1e..6e7f183c0e903 100644 --- a/src/wp-admin/options-general.php +++ b/src/wp-admin/options-general.php @@ -181,15 +181,25 @@ $details ) { + if ( in_array( $role, $excluded_roles, true ) && $role !== $selected ) { + unset( $editable_roles[ $role ] ); + } + } ?> - + From 59315f95f9130ba47bbf259ab3fbe1b90e7b9430 Mon Sep 17 00:00:00 2001 From: Benni <109149472+at-benni@users.noreply.github.com> Date: Wed, 7 Feb 2024 18:32:52 +0100 Subject: [PATCH 10/17] Update src/wp-admin/options-general.php Co-authored-by: Pascal Birchler --- src/wp-admin/options-general.php | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/src/wp-admin/options-general.php b/src/wp-admin/options-general.php index 6e7f183c0e903..25a9a5f80e4a4 100644 --- a/src/wp-admin/options-general.php +++ b/src/wp-admin/options-general.php @@ -187,7 +187,7 @@ * * @param array $roles_to_exclude Array of roles to exclude from the dropdown. Defaults to administrator and editor. */ - $excluded_roles = (array) apply_filters( 'default_user_dropdown_excluded_roles', array( 'administrator', 'editor' ) ); + $excluded_roles = (array) apply_filters( 'default_role_dropdown_excluded_roles', array( 'administrator', 'editor' ) ); $editable_roles = array_reverse( get_editable_roles() ); From 56823bfc2262175ca4e30ae184ce6ec424e1bfb3 Mon Sep 17 00:00:00 2001 From: Benni <109149472+at-benni@users.noreply.github.com> Date: Tue, 2 Apr 2024 08:03:12 +0200 Subject: [PATCH 11/17] Update class-wp-site-health.php --- src/wp-admin/includes/class-wp-site-health.php | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/src/wp-admin/includes/class-wp-site-health.php b/src/wp-admin/includes/class-wp-site-health.php index eaf2535e5166b..c1529eefde1a4 100644 --- a/src/wp-admin/includes/class-wp-site-health.php +++ b/src/wp-admin/includes/class-wp-site-health.php @@ -1966,7 +1966,7 @@ public function get_test_available_updates_disk_space() { /** * Tests if registration is open to everyone and the default role is privileged. * - * @since 6.5.0 + * @since 6.6.0 * * @return array The test results. */ From 4362a57a13a598d4430f9cf9718b3254bce0fd04 Mon Sep 17 00:00:00 2001 From: Benni <109149472+at-benni@users.noreply.github.com> Date: Tue, 2 Apr 2024 08:03:48 +0200 Subject: [PATCH 12/17] Update template.php --- src/wp-admin/includes/template.php | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/src/wp-admin/includes/template.php b/src/wp-admin/includes/template.php index c9443b9f4b4d4..8012e33c35c64 100644 --- a/src/wp-admin/includes/template.php +++ b/src/wp-admin/includes/template.php @@ -970,7 +970,7 @@ function parent_dropdown( $default_page = 0, $parent_page = 0, $level = 0, $post * Prints out option HTML elements for role selectors. * * @since 2.1.0 - * @since 6.5.0 Added $editable_roles parameter. + * @since 6.6.0 Added $editable_roles parameter. * * @param string $selected Slug for the role that should be already selected. * @param array $editable_roles Array of roles to include in the dropdown. Defaults to all roles that the current user is allowed to edit. From 08eacf481c1e9f64dd296d36a9a6c46b2ff0c73e Mon Sep 17 00:00:00 2001 From: Benni <109149472+at-benni@users.noreply.github.com> Date: Tue, 2 Apr 2024 08:04:03 +0200 Subject: [PATCH 13/17] Update options-general.php --- src/wp-admin/options-general.php | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/src/wp-admin/options-general.php b/src/wp-admin/options-general.php index 68f66ff296cf4..8b84415720b3e 100644 --- a/src/wp-admin/options-general.php +++ b/src/wp-admin/options-general.php @@ -295,7 +295,7 @@ class="" /** * Filters the roles to be excluded from the default_role option. * - * @since 6.5.0 + * @since 6.6.0 * * @param array $roles_to_exclude Array of roles to exclude from the dropdown. Defaults to administrator and editor. */ From e67a2126587616f952c4741ff8bfb02209f58c6c Mon Sep 17 00:00:00 2001 From: Benni <109149472+at-benni@users.noreply.github.com> Date: Tue, 25 Jun 2024 11:06:54 +0200 Subject: [PATCH 14/17] Update class-wp-site-health.php Update docblock to 6.7 and rename the test --- src/wp-admin/includes/class-wp-site-health.php | 14 +++++++------- 1 file changed, 7 insertions(+), 7 deletions(-) diff --git a/src/wp-admin/includes/class-wp-site-health.php b/src/wp-admin/includes/class-wp-site-health.php index cdf82e6d925d5..d131896e6c9bd 100644 --- a/src/wp-admin/includes/class-wp-site-health.php +++ b/src/wp-admin/includes/class-wp-site-health.php @@ -1860,11 +1860,11 @@ public function get_test_available_updates_disk_space() { /** * Tests if registration is open to everyone and the default role is privileged. * - * @since 6.6.0 + * @since 6.7.0 * * @return array The test results. */ - public function get_test_privileged_default_role_with_open_registration() { + public function get_test_insecure_registration() { $users_can_register = get_option( 'users_can_register' ); $default_role = get_option( 'default_role' ); @@ -1877,7 +1877,7 @@ public function get_test_privileged_default_role_with_open_registration() { ), 'description' => '

' . __( 'The combination of open registration setting and the default user role may lead to security issues.' ) . '

', 'actions' => '', - 'test' => 'privileged_default_role_with_open_registration', + 'test' => 'insecure_registration', ); if ( $users_can_register && in_array( $default_role, array( 'editor', 'administrator' ), true ) ) { @@ -2807,14 +2807,14 @@ public static function get_tests() { 'label' => __( 'Available disk space' ), 'test' => 'available_updates_disk_space', ), - 'privileged_default_role_with_open_registration' => array( - 'label' => __( 'Open Registration with privileged default role' ), - 'test' => 'privileged_default_role_with_open_registration', - ), 'autoloaded_options' => array( 'label' => __( 'Autoloaded options' ), 'test' => 'autoloaded_options', ), + 'insecure_registration' => array( + 'label' => __( 'Open Registration with privileged default role' ), + 'test' => 'insecure_registration', + ), ), 'async' => array( 'dotorg_communication' => array( From 81341be22bd58775668fca6c2602673e80772bc5 Mon Sep 17 00:00:00 2001 From: Benni <109149472+at-benni@users.noreply.github.com> Date: Tue, 25 Jun 2024 11:07:22 +0200 Subject: [PATCH 15/17] Update template.php update docblock to 6.7 --- src/wp-admin/includes/template.php | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/src/wp-admin/includes/template.php b/src/wp-admin/includes/template.php index 9e3bbcade6e64..6024d5d8e03cd 100644 --- a/src/wp-admin/includes/template.php +++ b/src/wp-admin/includes/template.php @@ -970,7 +970,7 @@ function parent_dropdown( $default_page = 0, $parent_page = 0, $level = 0, $post * Prints out option HTML elements for role selectors. * * @since 2.1.0 - * @since 6.6.0 Added $editable_roles parameter. + * @since 6.7.0 Added $editable_roles parameter. * * @param string $selected Slug for the role that should be already selected. * @param array $editable_roles Array of roles to include in the dropdown. Defaults to all roles that the current user is allowed to edit. From d4a80fc24ff60104628126d17522324f26595ce9 Mon Sep 17 00:00:00 2001 From: Benni <109149472+at-benni@users.noreply.github.com> Date: Tue, 25 Jun 2024 11:08:00 +0200 Subject: [PATCH 16/17] Update options-general.php update docblock to 6.7 --- src/wp-admin/options-general.php | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/src/wp-admin/options-general.php b/src/wp-admin/options-general.php index 61b74bc6d46c7..598870dbc1f39 100644 --- a/src/wp-admin/options-general.php +++ b/src/wp-admin/options-general.php @@ -295,7 +295,7 @@ class="" /** * Filters the roles to be excluded from the default_role option. * - * @since 6.6.0 + * @since 6.7.0 * * @param array $roles_to_exclude Array of roles to exclude from the dropdown. Defaults to administrator and editor. */ From 9e121c1ef2bd252c824c80957894e6c915ddf8da Mon Sep 17 00:00:00 2001 From: Benni Ledl Date: Tue, 25 Jun 2024 11:31:41 +0200 Subject: [PATCH 17/17] fix coding standards --- src/wp-admin/includes/class-wp-site-health.php | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/src/wp-admin/includes/class-wp-site-health.php b/src/wp-admin/includes/class-wp-site-health.php index d131896e6c9bd..75d25f1d378a5 100644 --- a/src/wp-admin/includes/class-wp-site-health.php +++ b/src/wp-admin/includes/class-wp-site-health.php @@ -2811,7 +2811,7 @@ public static function get_tests() { 'label' => __( 'Autoloaded options' ), 'test' => 'autoloaded_options', ), - 'insecure_registration' => array( + 'insecure_registration' => array( 'label' => __( 'Open Registration with privileged default role' ), 'test' => 'insecure_registration', ),