[wp-trac] [WordPress Trac] #38474: wp_signups.activation_key stores activation keys in plain text
WordPress Trac
noreply at wordpress.org
Sat Oct 7 00:03:48 UTC 2017
#38474: wp_signups.activation_key stores activation keys in plain text
-------------------------+------------------------------
Reporter: tomdxw | Owner:
Type: enhancement | Status: new
Priority: normal | Milestone: Awaiting Review
Component: Security | Version: 4.6.1
Severity: normal | Resolution:
Keywords: has-patch | Focuses: multisite
-------------------------+------------------------------
Changes (by chriscct7):
* keywords: has-patch 4.9-early => has-patch
Comment:
The early tags are used to milestone events needing to occur early in a
cycle. WordPress 4.9 has reached Beta already, so this will not be making
the 4.9 release.
Aside from that, it doesn't appear anyone's yet answered how this patch
affects users who have already been issued an email to activate an
account, then the upgrade to this patch occurs, what happens to those
links? Do they continue working?
--
Ticket URL: <https://core.trac.wordpress.org/ticket/38474#comment:9>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list