Support » Plugin: Bounce Handler MailPoet 3 » Is this plugin safe? Why you create .txt sensible files on the server?

  • Resolved ELAN42///

    (@nokao)


    I saw that, using this plugin, some .txt files are created, like:
    /plugins/bounce-handler-mailpoet/includes/fired.txt

    That are publicly accessible (.TXT) and contains emails and also an encrypted password.

    Why … ?

    There is no reason to do this, you can save this into the database if you really need it.
    And if you really want to save to disk (discouraged) at least save in .php files !

    Is this a normal behaviour of the plugin or my website has been hacked ?

Viewing 2 replies - 1 through 2 (of 2 total)
Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘Is this plugin safe? Why you create .txt sensible files on the server?’ is closed to new replies.