1. Pentest Reveals Raw Visitor IPs Stored Indefinitely in Contact & Analytics Tables
A recent penetration test has uncovered a significant privacy exposure: the application's database is storing raw, unhashed visitor IP addresses in at least two core tables with indefinite or poorly managed retention. This stands in stark contrast to the secure handling of IPs in the `login_attempts` table, where they ...