If you have access to the PHPMyAdmin login and access:
- The wp_users table from the list of tables.
- Then locate your username under the user_login column and click edit.
- The user_pass is a long list of numbers and letters which is the MD5 hash encrypted version of your password.
- Select and delete the hash and type in your new password (it is case sensitive!).
- Once you have done that, click the dropdown menu indicated, and select MD5 from the menu.
- Save the changes and attempt to login.
Since it sounds like your site is very old I would recommend updating the themes and plugins as needed.
Related Posts:
- Where to securely store API keys and passwords in WordPress?
- Why are passwords exportable as plain text in WordPress?
- How is password strength calculated?
- Make password invalid once logged out of password-protected page
- Is the “lost password” feature truly a vulnerability?
- Frontend Password change
- Is it possible to reduce the minimum character length for passwords?
- Is there any point setting the keys and salts in wp-config.php?
- When is wp_set_password() called or how to capture a password
- Moving away from MD5: Where to declare the custom global $wp_hasher?
- How to get WordPress to send Password Reset Link Email instead of New Password?
- Basic password protection without using users and roles
- How can I force a specific password?
- Can a WordPress administrator see other users’ passwords?
- After limiting the access to my wp-login.php by IP through .htaccess, all my password-protected posts stopped working. What’s the best solution now?
- Password-protect feed and make it usable in major aggregators
- Could a user account with a stolen password compromised entire WP site?
- How to set custom validation for WordPress Passwords?
- Is my WP site being hacked?
- How to get real password (before encrypt) when register a user?
- Directory to store secure file
- Can you alter the default wordpress strong password requirements?
- what is a auth_user_file.txt?
- How to view PHP on live site
- Is moving wp-config outside the web root really beneficial?
- Hide the fact a site is using WordPress?
- Verifying that I have fully removed a WordPress hack?
- Can I Prevent Enumeration of Usernames?
- Best way to eliminate xmlrpc.php?
- If a hacker changed the blog_charset to UTF-7 does that make WordPress vulnerable to further attacks?
- Are Nonces Useless?
- What is the difference between esc_html filter vs attribute_escape filter?
- Which KSES should be used and when?
- How do WordPress Nonces Work?
- How can I easily verify a core or plugin update has not broken anything?
- Disable comment windows for all existing posts (pages/blogposts)
- Generate WordPress salt
- Stop wordpress automatically escaping $_POST data
- how can i embed wordpress backend in iframe
- Handling nonces for actions from guests to logged-in users
- Can I force a password change?
- How brute-forcer knows that the password is cracked for target username?
- wp_insert_post disable HTML filter
- Can someone (Support of my themeprovider) get access to my server If I send them my admin login?
- Completely remove the author url
- Restricting access to content
- About WordPress site security
- password protected post policy
- Relative security of different releases of WordPress
- How can I safely use $_SERVER[‘REQUEST_URI’] to avoid XSS?
- Using HTACCESS for Secret Access
- Definitive wordpress directory ownership and permissions on linux
- Dangers to allowing Access-Control-Allow-Origin: * for Feeds only?
- Changing Table Prefixes – once done, am I good to go going forward?
- Force user to change their password on the frontend at the first login and password policy
- How do I protect user_activation_key?
- wordpress website host price and security [closed]
- Are there security risks in working directly in the themes folder that builds into a theme folder?
- Secure WordPress: Change admin
- how much information can we hide when using wordpress cms?
- Is it safe to use a global wp nonce per user instead of a nonce per action?
- System setting changed by system user
- Password minimum length in personal subscription [closed]
- Does meta-data need to be sanitized?
- Will there be security updates for WordPress 4.9.9
- Need help for WordPress User Session Management?
- Specific way to allow WordPress users to view their current password? And edit it?
- Any known bugs that could cause disappearance of the wp_users table?
- On new server, site got hacked, permissions a bit strange? Please help
- Are SVG image files safe to upload? Why WP defines them as a security risk? [duplicate]
- Restrict Access without Creating Users
- How to obfuscate wp-config.php or code
- Security issue with ‘paged’ and ‘posts_per_page’ parameters taken directly from a POST request?
- How to prevent to direct access of my custom plugin folder/files
- Checking for origin of a xmlrpc request
- RESTRICT EDIT of PHP files?
- wp-content – permissions for files/folders created by apache
- How can I restrict access to specific parts of a page, not just the page itself?
- Using password protection to load different page elements?
- User generated content and security
- Are major WordPress updates mandatory for security?
- i moved wp-config.php outside of public html and this broke my website
- Monitor wordpress all external calls
- Securing WordPress running on Azure platform
- Verifying that I have fully removed a WordPress hack?
- Spam Registrations
- How can I have more confidence that WP plugins aren’t getting and storing user data?
- Standard Method for Securing a WordPress Site
- Avoid ‘uploads’ 777 permissions: Potential threat or clean solution?
- Any way to disable /wp-login.php redirecting to the site folder?
- Step by Step Instructions for Making Media/Uploads Private to Only Logged-In Users
- Secure a WordPress website in 2019: one plugin or a combinations of them?
- What are the different types of firewall protections available for a WordPress website?
- Is this a WordPress security bug?
- Competitor is somehow accessing MetaData on a hidden WordPress site
- WordPress Hacks/Defacing [closed]
- How to delete Password Protected posts cookies when a user logged out from the site
- Move data from wp-config to another file
- Heartbleed: What is it and what are options to mitigate it?
- OpenVPN vs. IPsec – Pros and cons, what to use?