Concurrent Login & Password sharing are a security issue

  • The plugin unfortunately does not provide any safeguards against concurrent logins, thus allowing password sharing and posing significant challenges, especially for those who aim to monetize their memberships.

    Remarkably, this issue has persisted since 2018, and it is astonishing that despite numerous user complaints, a solution has not been implemented. Regrettably, the 3rd party solutions proposed by the plugin’s author in the forum have proven ineffective with this specific plugin.

    Addressing this security concern would undoubtedly be a substantial enhancement. Despite this drawback, it should be acknowledged that the plugin is otherwise exceptional in its performance.

Viewing 2 replies - 1 through 2 (of 2 total)
  • Plugin Support mbrsolution

    (@mbrsolution)

    Thank you for spending the time to write a review.

    Remarkably, this issue has persisted since 2018, and it is astonishing that despite numerous user complaints, a solution has not been implemented. Regrettably, the 3rd party solutions proposed by the plugin’s author in the forum have proven ineffective with this specific plugin.

    At present we have the following addon that provides the type of security to prevent the sharing of user logins credentials. Let me know if this is what you are looking for.

    https://simple-membership-plugin.com/swpm-two-factor-authentication-addon/

    Kind regards.

    Thread Starter vivobook

    (@vivobook)

    Thanks, but how does this prevent a concurrent login as the 2fa code also can be shared as there is no time limit to enter the code. This is not a solution, especially not for a price of $40.

Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘Concurrent Login & Password sharing are a security issue’ is closed to new replies.

Tags