WordPress.org

Ready to get started?Download WordPress

Forums

Mail Subscribe List
[resolved] Violation of privacy (4 posts)

  1. Martin Stanek
    Member
    Posted 11 months ago #

    This plugin violates personal privacy by sending data about activation to http://www.webfwd.co.uk/_other/pluginactivate.php. Since this behavior is not documented and the URL is base64 encoded, it is obviously malicious. Incriminated function is "getdata" in sml.php.

    http://wordpress.org/extend/plugins/mail-subscribe-list/

  2. esmi
    Theme Diva & Forum Moderator
    Posted 11 months ago #

    Please send these details to plugins [at] wordpress.org.

    Thanks.

  3. Richard Leishman
    Member
    Plugin Author

    Posted 11 months ago #

    Sorry as I am not storing any information about your website I did not realise this would be in violation of the privacy policy.

    The code is there for me to keep track of how many users are actively using the plugin instead of just number of downloads. I do not keep/store any information, It does send other information to my server such as website name but this is only to distinguish one install from another. There is nothing malicious about this.

    I will ensure that this is displayed on the read me from today.

  4. Richard, that is direct violation of our guideline that says no phoning home. Please remove it from your plugin ASAP.

Reply

You must log in to post.

About this Plugin

About this Topic

Tags