[wp-trac] [WordPress Trac] #3316: Protected post password is plain
text in cookie
WordPress Trac
wp-trac at lists.automattic.com
Wed Nov 1 21:49:41 GMT 2006
#3316: Protected post password is plain text in cookie
----------------------+-----------------------------------------------------
Reporter: dosa | Owner: anonymous
Type: defect | Status: new
Priority: normal | Milestone: 2.0.5
Component: Security | Version: 2.1
Severity: normal | Keywords:
----------------------+-----------------------------------------------------
Once a password is entered for a protected post it is stored as plain text
in the cookie for all to see. Surely simply keeping some kind of hash
would be better?
--
Ticket URL: <http://trac.wordpress.org/ticket/3316>
WordPress Trac <http://trac.wordpress.org/>
WordPress blogging software
More information about the wp-trac
mailing list