Woocommerce reveals itsec-hb-token

  • Resolved overylewdeneliva

    (@overylewdeneliva)


    1 year, 2 months ago

    Hello,

    I’ve noticed that Woocommerce “wc-settings-js-before” script is showing within the website’s source code a wpLoginUrl parameter with the itsec-hb-token included.

    Could you or could I do something about it?.

    Thank you!

    The page I need help with: [log in to see the link]

Viewing 1 replies (of 1 total)
  • Plugin Support chandelierrr

    (@shanedelierrr)

    Hi @overylewdeneliva, apologies for the delayed response! I’m afraid there is nothing we can do about the wpLoginUrl parameter with the itsec-hb-token?showing on the WooCommerce script.

    This is one of the reasons why we don’t recommend the Hide Backend feature because plugins (WooCommerce, for instance) can still reveal the login URL if they ever want to. Hiding the backend relies on “security through obscurity,” and we’d recommend using other security methods such as Two-Factor, Strong Passwords, and CAPTCHA to protect your site from brute force attacks.

    Hope this helps!

Viewing 1 replies (of 1 total)
  • The topic ‘Woocommerce reveals itsec-hb-token’ is closed to new replies.