WP admin username in page source
-
Hi,
We just installed the HubSpot Tracking Code for WordPress v 1.1.2. Thank you for creating it, as it will be very helpful.However, when examining the home page source code, I noticed that the username for wp-admin is in the source code, in cleartext.
Adjacent to the username is an email address related to our domain, also in cleartext.This is just really concerning. While we have a strong password, and will rotate it frequently, I simply cannot imagine why these information elements are in cleartext.
I strongly urge an upgrade so that these elements are either not used, or are encrypted, ASAP.
Is this security improvement possible? Any idea on timeframe?
Thank you.
<!– DO NOT COPY THIS SNIPPET! — HubSpot User Identification Code –>
<script type=”text/javascript”>
(function(d,w) {
w._hsq = w._hsq || [];
w._hsq.push([“identify”, {
“email” : “xxxxxx”,
“name” : “xxxxxxxxxx”,
“id” : “xxxxxxxxxx”
}]);
})(document, window);
</script>
<!– End of HubSpot User Identification Code — DO NOT COPY THIS SNIPPET! –>
- The topic ‘WP admin username in page source’ is closed to new replies.