Just noticed this on one of my sites. Following the sitemap link first goes to the page and shows the sitemap_index.xml file. Clicking on it to expand it then shows https://My-Domain.com/author-sitemap.xml. Clicking on that goes to https://My-Domain.com/author/my user login identity. This gives away my login name. In my user (admin) for wordpress my display details for myself are set to my name, not my user login identity. All my authored content on pages and posts displays as my name – not my login ID name. This is a serious issue. This may be since WordPress 5.5 or a configuration conflict, BUT I NEED TO RESOLVE IT.
Also if I were to click on the sitemap that shows my author name, it redirects me to my site frontend showing content written by me. Each item shows my full name (not my masked user name) but the damage is already done. Anyone calling up my sitemap finds my hidden user name.
The ticket ‘sitemap_index.xml opens sitemap-author.xml and exposes user name’ is closed to new replies.