Category: wordpress plugins security

Interview with Code Risk – A Free Source Code Analysis Service For WordPress Plugins

Vulnerabilities in WordPress plugins have been the cause of more site hacks than vulnerabilities in WordPress core. One of the reasons why this is happening is lack of resources. Software will always have vulnerabilities, though the WordPress core code is vetted by thousands of people. Also, the foundation has resources allocated to ensure that the […]

State of Security of WordPress Plugins

A source code analysis of several WordPress plugins shows that more than 20% of the 50 most popular WordPress plugins are vulnerable to common web attacks. In this blog post we present you with the facts and statistics of this one of a kind study and give recommendations to help WordPress owners choose secure plugins and to help WordPress plugins developers develop more secure plugins.