Replies: 0
I am using User Registration to provide a “forget password” function, however there seem to be a small bug.
I am using Cream Blog Pro theme, with WordPress and all plugins updated to their latest version up to this moment.
Steps to reproduce:
1. perform a “forget password” request normally
2. receive the link in the email (e.g. XXX/?action=rp&key=H8NwX43bJVQJHPMg6zyP&login=UserName)
3. open the link and enter a new password to finish resting the password
4. logout current user(or in incognito mode) and access the reset password link again
5. plug-in shows “key not correct/found” error, which is the expected behaviour
6.->Bug here<-
PHP error:
Warning: Cannot modify header information – headers already sent by (output started at C:\SiteRoot\wp-includes\class.wp-styles.php:287) in C:\SiteRoot\wp-content\plugins\user-registration\includes\shortcodes\class-ur-shortcode-my-account.php on line 390
I looked into the my-account.php and it seemed to be removing the reset-password key cookie. But it was executed after the header was sent!