-
Protecting your WordPress website against SQL injection attacks
If you own a WordPress website, then chances are you’ve heard of SQL injections in WordPress. These malicious attacks can wreak havoc on your website and leave it vulnerable to hackers. Fortunately, there are steps you can take to protect your website from the threat of a WordPress SQL injection attack. Let’s explore what is…
-
What to do about a blind SSRF vulnerability affecting WordPress Core
We have been hearing questions from WPScan clients about a long‑standing vulnerability that has been present in the WordPress software for some time, but we only recently added it to our threat database, so that’s why it has just appeared in results. However, the vulnerability is not new. There is not currently a fix or…
-
The Complete Checklist for WordPress Security Leaders
Automattic, the parent company to WPScan, hosts many of the biggest websites on the web, and security is one of our highest priorities. What follows is our checklist for security leaders. Best Practices for Your WordPress Website Essential Tips for WordPress Plugin Security General Password Hygiene Web Security Guidelines Computer Security Recommendations Guidelines for Phones and Tablets Phew. That’s it. Did…
-
Subscribe
Subscribed
Already have a WordPress.com account? Log in now.
WPScan 