Re: Is there a backdoor in WPMU/Buddypress?
Have to admit I had no idea there was another registration.php page and it would have never have occurred to me to look in the bbpress folder.
This kinda worries me really why is this required and also a password reset file, it feels as though it’s a bad hangover from earlier days and ought to be removed.
Is it not time that this bbpress thing be integrated fully or at least forum capabilities simply part of BP core .
I have deleted this registration file and will be interested to see if it clears up the remaining few spam signups still being received