nexcc's Replies | WordPress.org

Forum Replies Created

Viewing 2 replies - 1 through 2 (of 2 total)

Forum: Plugins
In reply to: [Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin] Plugin stores users password in clear text
nexcc
(@nexcc)

5 years, 8 months ago
Yes, it has, even in the latest update (2.1.7).

When you export user personal data, you can see all members password in plain text at the column meta title called “single_user_password”.

These passwords are those who reset it after login, I would say about 30% of the passwords are open to administrator’s eyes.

This issue was unresolved for many years, you can see the topic owner posted 3 years ago in another topic.

I would love to use this plugin in my another websites, but due to security reason, I backed off.

Kindly please resolve it asap. Thank you!
- This reply was modified 5 years, 8 months ago by nexcc.
- This reply was modified 5 years, 8 months ago by nexcc.
Forum: Fixing WordPress
In reply to: Why my users automatically get deleted after 7 days?

Thread Starter nexcc
(@nexcc)

6 years, 2 months ago

Hi there, thanks for asking.

I just found a solution after reading from this page https://wordpress.org/support/topic/automatically-delete-users/

It was due to Woocomerce automatic clear inactive users of the site, I’ve manage to solve it here:
Woocommerce => Settings => Account and privacy => Personal data retention.

Viewing 2 replies - 1 through 2 (of 2 total)