Support » Plugin: WordPress Gallery Plugin - NextGEN Gallery » Data breach – NextGen Gallery on google

  • Resolved bladetwick

    (@bladetwick)


    Hi
    We received a customer report of data breach via our wordpress plug-in fivestar booking system https://en-gb.wordpress.org/plugins/restaurant-reservations/

    Next gen was able to read the booking name, email, phone number and booking details and published on google under the following link: https://brouge.co.uk/ngg_tag/brouge-twickenham which sent you to a list of our images and it opened a pop up to print those images automatically.

    We have since removed the NextGen galley plug-in and blocked access to the ngg_tag file – awaiting google update of our site index, hopefully those details will disappear.
    We found other customer details on the same breach on google. We have image of this to prove the breach.

    We sent the image to FiveStarPlugins and their response was to make the bookings private (not available on the free version) and to make the WP page private – which is not possible as data is stored on the plug in. We will follow this up further.

    Can you please tell us how these details were published on google via NextGen Gallery however?
    Is there a possible breach that needs looking at?

    We look forward to your response

    The page I need help with: [log in to see the link]

Viewing 1 replies (of 1 total)
  • Plugin Support gabyimagely

    (@gabyimagely)

    Hello @bladetwick,

    Thank you so much for sharing.

    NextGEN Gallery does not read or edit or share information on other plugins.
    The images were probably visible on google because it is required for most of our clients to allow crawling to images thumbnails, even inside tags (whenever a gallery includes keywords)

    Nevertheless, that option could be controlled with plugins like Yoast, for example.

    We are really focused on making our product secure.
    The developers already created an issue that will allow the users to block the crawling of those images tags.

    Thank you so much again for sharing.
    We will keep you posted.

Viewing 1 replies (of 1 total)
  • You must be logged in to reply to this topic.