Totally insecure.

  • I’ve been a professional wordpress for 10+ years now. Out of curiosity , I took a look at this plugin. What i saw was quite concerning: Raw unescaped sql statements littered throughout the code. The plugin publicly exposes sensitive information such as your sites .htaccess file. And finally the fact that it downloads 3rd party hosted code onto your site.

    I know this won’t mean much to joe or jane shmoe coming across this review, so let me just simply state: this plugin poses a threat to your sites security. I would absolutely not recommend using it.

Viewing 2 replies - 1 through 2 (of 2 total)
  • Plugin Author vuefront

    (@vuefront)

    Hi @lagdonkey thank you for your review, even though it’s low, it still means a great deal to us. We will fix these issues and let you know. We hope you can do another review after that.

    Regards, VueFront

    Hello there!
    So security is fixed now?

Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘Totally insecure.’ is closed to new replies.