Wrong password at login shows information about account
-
On a site of a customer, WooCommerce is running. When a user tries to login in the store and accidentally mistypes their password, all information of that user is shown, while the user isn’t logged in. Looks to me as a security risk.
You can see points & rewards, address etc.
Any ideas?
- The topic ‘Wrong password at login shows information about account’ is closed to new replies.
