debug.log exposed | WordPress.org

Resolved TomCobbley
(@tomcobbley)

1 year ago

I scanned my site with another well known security plugin today and it flagged that my debug.log file is visible to anyone at [mysite]/wp-content/debug.log.

I am surprised that Solid Security doesn’t detect this issue. Is it on the roadmap?

Viewing 3 replies - 1 through 3 (of 3 total)

Plugin Support Brent Wilson
(@bwbama)

11 months, 4 weeks ago

Hello Tom

Glad you reached out here!

We did not have this on our roadmap but I have went ahead and created this request for you here: https://solidwp.featureos.app/admin/p/enable-solid-security-to-report-if-wp_debug-is-enabled

Feel free to give it an upvote and a comment if you have more to add!

Thread Starter TomCobbley
(@tomcobbley)

11 months, 4 weeks ago

Thanks Brent,
The link you’ve given is for admin users. The correct one is
https://solidwp.featureos.app/p/enable-solid-security-to-report-if-wp_debug-is-enabled

Plugin Support chandelierrr
(@shanedelierrr)

11 months, 2 weeks ago

Great catch @tomcobbley!

We’ll mark this post resolved for now. Feel free to reopen or start a new topic if you need further help!

Viewing 3 replies - 1 through 3 (of 3 total)

The topic ‘debug.log exposed’ is closed to new replies.

3 replies
3 participants
Last reply from: chandelierrr
Last activity: 11 months, 2 weeks ago
Status: resolved