Skip to content

Check emails and password haveibeenpwned

18 votes

Check emails and password haveibeenpwned

Use the haveibeenpwned.com API to check the user emails and/or passwords have not been part of a breach.

Note: This will require setting up an intermediary API endpoint, since not possible to hide the HIBP key in the plugin.

troyhunt.com/authentication-and-the-have-i-been-pwned-api/

Lars Koudal shared this idea

Stay in touch

Articles about WordPress and Internet security

Please enter a valid email address.
Something went wrong. Please check your entries and try again.

WordPress Security made easy

Protect your website from hackers and malicious software.

10% OFF

Subscribe to our newsletter

* We do not spam or share your email

Discount on any Security Ninja plan

and get

Hi and welcome back :-)

We won't spam you. Unsubscribe any time.

Wait! Before you go!

Get 10% discount for any WP Security Ninja plan!

 

Subscribe to our newsletter for new releases, discounts and general WordPress Security news. Sprinkled with other interesting stuff :-)