Title: Security implementation
Last modified: February 27, 2024

---

# Security implementation

 *  Resolved [Steve Szmidt](https://wordpress.org/support/users/steveszm/)
 * (@steveszm)
 * [2 years, 2 months ago](https://wordpress.org/support/topic/security-implementation/)
 * I just discovered that Ultimate Member has a big design flaw in that it will 
   actually tell you if your login or password is bad, which greatly improves the
   odds for a break in. Standard practice is to not indicate which is incorrect.
   Now I need to find a replacement or write my own.
 * Then there are things such as escaping quotes to avoid SQL-injection and so on(
   [https://developer.mozilla.org/en-US/docs/Learn/Server-side/First_steps/Website_security](https://developer.mozilla.org/en-US/docs/Learn/Server-side/First_steps/Website_security))
   is a good start.
 * PHP, for example, currently have hard to hack but still doable bug which interestingly
   is how FBI broke in to an illegal hacker (cracker) site. Security is largely 
   an unknown subject in-spite of how often it is discussed.
 * Do you have any plans on implementing any of these in your plugin?

Viewing 1 replies (of 1 total)

 *  Plugin Author [Mej de Castro](https://wordpress.org/support/users/mej/)
 * (@mej)
 * [2 years, 2 months ago](https://wordpress.org/support/topic/security-implementation/#post-17461720)
 * Hi [@steveszm](https://wordpress.org/support/users/steveszm/),
   Our team will 
   carefully review your request, and we’ll bring it up with our developer for consideration
   in future releases. We’ll keep you updated on our progress. Thanks,Mej

Viewing 1 replies (of 1 total)

The topic ‘Security implementation’ is closed to new replies.

 * ![](https://ps.w.org/peters-login-redirect/assets/icon-256x256.png?rev=2597671)
 * [LoginWP (Formerly Peter's Login Redirect)](https://wordpress.org/plugins/peters-login-redirect/)
 * [Frequently Asked Questions](https://wordpress.org/plugins/peters-login-redirect/#faq)
 * [Support Threads](https://wordpress.org/support/plugin/peters-login-redirect/)
 * [Active Topics](https://wordpress.org/support/plugin/peters-login-redirect/active/)
 * [Unresolved Topics](https://wordpress.org/support/plugin/peters-login-redirect/unresolved/)
 * [Reviews](https://wordpress.org/support/plugin/peters-login-redirect/reviews/)

## Tags

 * [sql injection](https://wordpress.org/support/topic-tag/sql-injection/)

 * 2 replies
 * 2 participants
 * Last reply from: [Mej de Castro](https://wordpress.org/support/users/mej/)
 * Last activity: [2 years, 2 months ago](https://wordpress.org/support/topic/security-implementation/#post-17461720)
 * Status: resolved