Will WordPress username displayed somewhere in the site?

I would definitely not advise you to enforce this policy. For example, I can enumerate through your list of authors by simply entering yoursite.com/?author=1, yoursite.com/?author=2, etc into my browser. This will take me to your author pages. If your users were savvy enough, they might have set their public display name in Users/Your Profile to something other than their WordPress username. Good, but you’re still not safe. Some themes will use your unique WordPress username and embed that into the HTML for CSS styling purposes. Also, there are programs like WPScan that can get a list of your authors, though I’ll admit I’m not entirely sure how that program works.

In conclusion, to avoid the risk of divulging your author’s, private, personal emails, I would not take this route. If, however, their emails are company emails or are already being published on the website, then it really doesn’t matter.

Related Posts:

  1. How can i force Display names to be the same as Usernames?
  2. How to create custom LOGIN and REGISTRATION forms?
  3. Upload files programmatically to users
  4. How to expire all wordpress user passwords instantly?
  5. Average Account Age
  6. WordPress Central User Database
  7. wp_set_auth_cookie causes 403 error in the wooCommerce checkout
  8. Stop Plugin Enumeration [closed]
  9. How to create multiple users at once?
  10. Specific way to allow WordPress users to view their current password? And edit it?
  11. Searchable Semi Random Number Generator on User Profiles
  12. User / membership Plugin [closed]
  13. Users Ultra: Hide asterisk for required registration fields?
  14. User register hook can’t access form request
  15. WordPress User Registration/ Sign Up -> Able to take Paid Certification Courses & keep track of Completed Certificates
  16. Issues with creating user profile for a subscriber, but with different profile page and functionalities
  17. What security concerns should I have when setting FS_METHOD to “direct” in wp-config?
  18. I found this in a plugin. What does it do? is it dangerous?
  19. Disabled plugins are they security holes – rumor or reality?
  20. What could a hacker do with my wp-config.php
  21. How to have WordPress send a user confirmation/validation email on signup
  22. Should we use plugins that aren’t available from the official WordPress site?
  23. Why allow overriding crucial pluggable functions wp_verify_nonce and wp_create_nonce?
  24. How to get user-meta from Social Login registered users?
  25. Should I install plugins to my WordPress installation from web sites having in URL “nulled” or, “null”?
  26. Disabled plugins are security holes – rumor or reality?
  27. Should I use RIPS tool to test my themes and plugins?
  28. Prevent Brute Force Attack
  29. Upgrading WordPress 4.0 asks for FTP password
  30. How Restrict access to admin dashboard by specific static ip?
  31. When is it useful to use wp_verify_nonce
  32. Protecting against malicious code in WordPress plugin updates
  33. action-scheduler vs wp-background-processing
  34. How to show popup to a group of users?
  35. rms_unique_wp_mu_pl_fl_nm.php
  36. How can we deal with unmaintained plugins with vulnerabilities?
  37. Security issues with WP sites
  38. Escape when echoed
  39. update_user_meta add value on the top on existing value
  40. How to upload user profile image from frontend in wordpress ?
  41. How can I make uploaded images in the editor load with HTTPS?
  42. The safest way to automate WordPress backups
  43. wp_create_nonce function doesn’t work inside a plugin?
  44. New User Form – Custom Menu Page
  45. Does WordPress validate inputs to all functions? (such as get_user_meta and insert_user_meta)
  46. Nonce failing on form submission
  47. Should I encrypt the response that triggers an Ajax action? Is nonce sufficient?
  48. Why can’t I access my Intranet LDAPS with NADI?
  49. WordPress Integration with Google Groups
  50. Custom User meta field display
  51. Hack-Proof OR Security in WordPress — is it real?
  52. edit_user_profile and show_user_profile are not firing inside a class
  53. Is Timthumb still broken? What security measures should be taken?
  54. Prevent direct access to WordPress plugin assets?
  55. How do I have now a duplicated user entry if this is not allowed (and I cannot replicate it)?
  56. Multisite – maximum number of users with specific role
  57. Is there any pre-existing plugin to track and block IPs with suspicious activity on my site?
  58. How to prevent plugins from sniffing/stealing other plugins’ options?
  59. Using WordPress to build membership Page
  60. Custom API plugin to execute 3rd party API to retrieve data
  61. How to deal with Slow HTTP POST (slowloris) vulnerability
  62. Running multiple security plugins
  63. how do I secure my WP website from hackers? [closed]
  64. Remove specific administrator’s capability
  65. Personalized Author Area
  66. If I use an alternative login (e.g. CAS or other SSO) plugin, is my site protected from the recent brute force login attempts?
  67. Creating teams of users in WordPress
  68. WordPress plugin for Limited days user
  69. WP Insert Post If user refreshes override new post
  70. Can’t save changes or modify settings in Dashboard but Pages and Posts are fine
  71. Hide plugins and theme from public
  72. WordPress search shows protected content
  73. Content-Security-Policy implementation with WordPress W3Total Cache plugin installed
  74. Changing the Default New User Notification Email
  75. How to implement data residency in my WordPress site
  76. how to create user profile pages and display them based on users roles
  77. Clean old users
  78. User updating their profile wipes my custom fields
  79. “Fire Secure” menu item
  80. Securing a plugin pop-up window
  81. https rewrite not working for All in one security Brute force > rename login url
  82. Simulate Update User button click
  83. Update User Meta Via Ajax
  84. User Following System
  85. Every time I use wp_get_current_user() my plugin breaks
  86. How set role at registration based on email?
  87. Site is continuously accessing by several IPs
  88. using .htaccess only for wordpress security no plugins
  89. Private WordPress blog, requires user registration approval, and allowing users to login with OpenID
  90. Plugin De/Activation Not Firing On MultiSite install
  91. Buddypress Plugin for register user from other site’s [closed]
  92. Want to add post to user dashboard
  93. How to make wordpress backend mobile optimized.?
  94. Creating a full business website
  95. WordPress s2 member plugin not working [closed]
  96. How I can hide my wp folders from Inspect Element (Developer Tools)
  97. How to Find WordPress site has backdoor login Codes
  98. How to delete Password Protected posts cookies when a user logged out from the site
  99. how to embed a crop feature for cropping images uploaded by the user
  100. Stop the user if login from the cookies