Welcome to ManageWP.org

Register to share, discuss and vote for the best WordPress stories every day, find new ideas and inspiration for your business and network with other members of the WordPress community. Join the #1 WordPress news community!

×

How Yoast Can Become an Attack Vector for Hackers, and How to Stop It - Joe Youngblood

joeyoungblood.com | Jul. 12, 2019 | 12 min read

Consultant Joe Youngblood talks about a default setting in Yoast that makes it easier for hacker to harvest usernames, which means hackers have one-half of the combination for automated brute force attacks.

27 votes   Flag
Eric Karkovack

The fact that it's so easy to grab someone's username in WordPress is baffling to me. Why is this never tightened up?

Reply
John Locke

This should have been changed a long time ago.

Reply