Stores password in plaintext
-
This plugin asks for you to input your Constant Contact password directly into WordPress, which it then transmits to Constant Contact. This is a huge gaping security hole. You should run far, far away from this plugin if you’re not willing to risk having your Constant Contact account compromised.
Look for other plugins that use OAuth or similar standards for safely authorizing your Constant Contact account without handing your password in plaintext to a plugin on your website.
- The topic ‘Stores password in plaintext’ is closed to new replies.
