Category: WordPress Security Page 8/15

Vulnerability CVE-2023-22622 in WordPress 6.1.1 and below

Vulnerability CVE-2023-22622 in WordPress 6.1.1 and below

Recently, the international vulnerability database NIST has released CVE-2023-22622 as a vulnerability in WordPress 6.1.1 and below. The following is an explanation of the results of our investigation.

Read more

5 operations that are at high risk of WordPress sites being hacked and tampered with.

5 operations that are at high risk of WordPress sites being hacked and tampered with.

We will explain the five most dangerous ways to operate a WordPress site that can lead to it being hacked, defaced, sent to another site, or in the form of embedded malware. We hope that you will use this information as a lesson to the contrary.

Read more

A case of malware embedding where WordPress sends you to another site without your permission for robot verification.

A case of malware embedding where WordPress sends you to another site without your permission for robot verification.

There has been a recent increase in cases of redirect hacks where WordPress sites are redirected to another site for robot verification without permission. Here are some examples of this malware embedding and how to deal with it.

Read more

What to do when a red warning appears in the browser when accessing your (your company's) WordPress site

What to do when a red warning appears in the browser when accessing your (your company’s) WordPress site

Here is what to do when the browser screen turns red when accessing your (your company’s) site and a warning appears on that screen. Suddenly a warning screen appears when accessing the company’s website. When accessing your company’s website, the browser screen

Read more

What is a web shell, a type of WordPress malware?

What is a web shell, a type of WordPress malware?

There have been an increasing number of cases of web shells, a type of WordPress malware, becoming more sophisticated in recent years. We will explain about web shells.

Read more

Example of backdoor to plant malware code in $_HEADERS in WordPress

Example of backdoor to plant malware code in $_HEADERS in WordPress

We will explain about the type of backdoor that puts the main body of malware code in $_HEADERS, which has been increasingly detected in recent years.

Read more

If WordPress may be infected with malware (virus or tampering), use the plugin for quick malware inspection and removal.

If WordPress may be infected with malware (virus or tampering), use the plugin for quick malware inspection and removal.

When WordPress may be infected with malware (virus or tampering), you can easily use a plugin to inspect and remove malware. The following is a list of the main types of malware behavior on websites and malware scanning and disinfection plug-ins.

Read more

Small.php malware proliferating in various WordPress servers

Small.php malware proliferating in various WordPress servers

We will explain about small.php, a malware that has been expanding recently.

Read more

WordPress is not a dangerous CMS if managed properly

WordPress is not a dangerous CMS if managed properly

WordPress is hacked more often than other CMSs, but this is due to the overwhelming popularity of WordPress itself.

Read more

How to protect wp-config.php and security

How to protect wp-config.php and security

We will explain the contents of wp-config.php, the danger of this file being leaked, and how to protect it.

Read more

Clickjack to hijack link clicks on WordPress sites

Clickjack to hijack link clicks on WordPress sites

There has been an increase in the number of malware victims, such as WordPress sites that suddenly send you to another site with a certain probability when you click on a link, the link does not work, or a new window opens and an advertisement appears. We will explain this type o

Read more

Case of tampering and embedding of ois.is/images/logo.png loading scripts in multiple WordPress files

Case of tampering and embedding of ois.is/images/logo.png loading scripts in multiple WordPress files

We will introduce an example of a type of malware in which an image file of ois.is is illegally embedded, which has been increasing greatly in recent years.

Read more

What to do if you can no longer rewrite or delete HTACCESS due to wordpress tampering

What to do if you can no longer rewrite or delete HTACCESS due to wordpress tampering

Here is what to do when you can no longer rewrite or delete HTACCESS due to WordPress malware infection (tampering).

Read more

How to find hidden malware (tampering) in WordPress

How to find hidden malware (tampering) in WordPress

If WordPress redirects you to a different site or disables some features of the administration panel, you may have been infected with malware. In this case, if the malware has been removed and the site keeps re-infecting itself, it is possible that a backdoor, or malicious progra

Read more

How to create a folder in the wordpress uploads folder via a PHP program.

How to create a folder in the wordpress uploads folder via a PHP program.

Here is the code to create a folder via a PHP program in the uploads folder where WordPress images, etc. are uploaded.

Read more

Types of malware infecting WordPress

Types of malware infecting WordPress

The types of malware that can infect WordPress will be explained, including viruses, worms, spyware, adware, Trojan horses, ransomware, phishing, SEO spam, etc.

Read more

WordPress malware Random one-byte alphanumeric folders with large numbers of HTML files hosted illegally

WordPress malware Random one-byte alphanumeric folders with large numbers of HTML files hosted illegally

This article describes this type of tampering, as there have been an increasing number of cases in which WordPress has been hacked and a large number of malicious files have been hosted in random one-byte alphanumeric folders without permission.

Read more

Benefits and How to Change the Database Prefix (wp_) in WordPress

Benefits and How to Change the Database Prefix (wp_) in WordPress

A prefix is a common prefix used for table names in the WordPress database. We will explain the benefits of changing this and how to do so.

Read more

Page 8/15