WordPress.org

Ready to get started?Download WordPress

Forums

[Plugin: AskApache Password Protect] Error log (2 posts)

  1. Stahn
    Member
    Posted 6 years ago #

    It's a wonderful plugin, but why this file is even created? It stores passwords in plain text, unencoded. Anyone that forgot to delete it, might get his/her blog hacked, because he/she maybe used the same password. It's a huge security risk.

    http://wordpress.org/extend/plugins/askapache-password-protect/

  2. askapache
    Member
    Posted 6 years ago #

    thanks stahn, fixed for 4.3.2

Topic Closed

This topic has been closed to new replies.

About this Topic