wordpress security

WordPress is the largest used CMS in the world. So as the most attacked Content Management System. Even though WordPress is open source and is maintained by highly ranked programmers, the WordPress plugin framework is used by 1000s of amateur developers . The chances of finding vulnerable code, and hence injecting malware to the code [...]

WordPress 5.2.4 Security Release Breakdown

Overview : WordPress released version 5.2.4 as a security release. According to WordPress, WordPress version 5.2.4 fixes 6 security issues. Affected Product(s) : WordPress released version 5.2.3 Vulnerability Details : CVE ID : CVE-2019-17675 WordPress before 5.2.3 does not properly consider type confusion during validation of the referer in the admin pages, possibly leading to […]

Changing WordPress Database Prefix to Improve Security

Before doing this take an entire backup of your WordPress file and Database You need to change an in option in wp-config.php file look for $table_prefix = 'wp_b45666_'; Replace it with a non standard prefix like mywpp_bvbvb Also you need to open phpmyadmin in your cPanel or any other control panel , and change all [...]

WordPress Firewall Security

Wordpress Firewall SecurityWordPress Security using AI powered Next Generation WAF How WAF Works ? Prophaze EagleEye is an Enterprise Grade Wordpress Web Application Firewall. Its sits in between your Visitors and your Existing Hosting or Dedicated server as depicted in the picture. What is a Wordpress Firewall Security? Wordpress security is a major aspect for [...]

XSS in WordPress Elementor Plugin 2.8.4

Overview : The Elementor plugin before 2.8.5 for WordPress suffers from a reflected XSS vulnerability on the elementor-system-info page. These can be exploited by targeting an authenticated user. Affected Product(s) : WordPress Elementor Plugin 2.8.5 Vulnerability Details : CVE ID : CVE-2020-8426 The plugin seems to be very well implemented but there is always a […]

Latest Security News about wordpress security