dad4all

I'd suggest to call it "backdoor" which enables fishing? For me, there is no difference to routers listening at hidden telnet/rpc/you name it ports and hard-coded passwords. It's not a bug, since it's documented - it's no feature either since 100% of all users don't use it - users are unaware of the functionality and it compromises security => it's a backdoor.

I think, it's as realistic to expect a hacker to modify the Keepass-Config-file to export all passwords... ...than any hacker would modify a "win.ini"-file allowing to export all Windows-AD-Passwords without prompting any user. I wonder, why Microsoft didn't invent that feature. We shouldn't discuss about this backdoor in keepass, we should fix it.