Popunder in code source…. be careful - [When Last Login] Review | WordPress.org

klixtorg
(@klixtorg)

3 years, 6 months ago

This plugin has a popunder code inside. Be careful. Just delete it and the issues are resolved.

Viewing 2 replies - 1 through 2 (of 2 total)

Plugin Author Andrew Lima
(@andrewza)

3 years, 6 months ago
Hi @klixtorg

Thank you for taking the time to share a review, I’m not aware of any popunder code that was intentionally added to this plugin.

We previously had an admin notification that would nudge users to signup for our mailing list which we’ve done away with, I’m not sure if this is what you are referring to. We also leverage some libraries that we try to review to the best of our ability.

I do take security/malicious issues seriously, please can you email support@yoohooplugins.com with reference to the source code so I may review this code with highest priority and look into it further.

Thanks!
- This reply was modified 3 years, 6 months ago by Andrew Lima.
Plugin Author Andrew Lima
(@andrewza)

3 years, 6 months ago

I’ve spent a bit of time reviewing the code base and I don’t find any evidence of popunder (or malicious) code here is an open link to our repository – https://github.com/andrewlimaza/when-last-login/

If you need help with code or the plugin, do not hesitate to reach out here – https://wordpress.org/support/plugin/when-last-login/

Viewing 2 replies - 1 through 2 (of 2 total)

The topic ‘Popunder in code source…. be careful’ is closed to new replies.

2 replies
2 participants
Last reply from: Andrew Lima
Last activity: 3 years, 6 months ago