WordPress security is one of those very important topics that many people talk about but few actually take seriously.
I understand why, most users just can’t visualise things enough in order to comprehend the value of taking the necessary steps to secure their site.
In this article I’ll explain how easy it might be to hack your WordPress site.
In June 2013, Checkmarx’s research labs ran multiple security scans against the source code of the most popular WordPress plugins. The result? More than 20% of the 50 most popular WordPress plugins are vulnerable to common Web attacks, such as SQL Injection. In total, 8 million vulnerable WordPress plugins were downloaded. This report presents the research findings as well as recommendations and mitigation measures for plugin developers, Web admins and platform providers when developing and installing third-party extensions. Here’s a summary of the findings: 20% of the 50 most popular WordPress plugins are vulnerable to common Web attacks. This amounts…