Security risks

  • ello, I’ve installed the WP fail2ban plugin on my new site. We ran the plugin through our security software and were flagged for several security risks. Who can I send the security report to so they may review? Please advise.

    Thank you.

Viewing 3 replies - 1 through 3 (of 3 total)
  • Thread Starter bfarrellcx

    (@bfarrellcx)

    Following up here. Who can I send the security report to so they may review? Please advise.

    Thank you.

    Yes this plugin is a giant security risk it for one uses “Freemius” as a framework that will transmit back home data even if you select NO.

    Not to mention all the other risks this plugin includes.

    All in all there is over 3mb of trash data added to this plugin!

    • This reply was modified 3 years, 2 months ago by Webzzz.
    • This reply was modified 3 years, 2 months ago by Webzzz. Reason: Correction
    Plugin Author invisnet

    (@invisnet)

    Yes this plugin is a giant security risk it for one uses “Freemius” as a framework that will transmit back home data even if you select NO.

    Neither of those statements are true.

    1. The report from @bfarrellcx showed no actual issues in both my code and the Freemius library.
    2. The Freemius library does NOT “phone home” without permission; see here for full details.

    Not to mention all the other risks this plugin includes.

    You can report any security issues in the normal way; I look forward to receiving yours.

Viewing 3 replies - 1 through 3 (of 3 total)
  • The topic ‘Security risks’ is closed to new replies.