Category: WordPress Security Page 9/15

What to do if a large amount of malware (malformed JAVASCRIPT) is embedded in a WordPress post

What to do if a large amount of malware (malformed JAVASCRIPT) is embedded in a WordPress post

If you have been infected with a type of WordPress malware that embeds malformed JAVASCRIPT code (which causes malformed redirects and other behavior) in a large number of posts, we will explain how to remove this code.

Read more

What is a Web Application Firewall WAF?

What is a Web Application Firewall WAF?

WAF stands for Web Application Firewall.

Read more

What is the unique key for the certificate in wordpress wp-config.php used for and what is it used for?

What is the unique key for the certificate in wordpress wp-config.php used for and what is it used for?

This section describes the unique key for certificates in wordpress wp-config.php.

Read more

Why does the WordPress theme or plugin includes "if ( ! defined( 'ABSPATH' ){" ?

Why does the WordPress theme or plugin includes “if ( ! defined( ‘ABSPATH’ ){” ?

If you look at the PHP source code of a WordPress theme or plugin, you will see in many of its files that if ( ! defined( ‘ABSPATH’ )) at the top. I would like to explain the reason for this statement and its effect.

Read more

Redirect hack that sends you to a malicious site when you click on a screen or link on a WordPress site.

Redirect hack that sends you to a malicious site when you click on a screen or link on a WordPress site.

This section describes a type of malware that is spreading to a large number of files on a very large number of sites these days, in which clicking on various elements of a site sends the user to a different malicious site.

Read more

eval function used in over 50% of WordPress malware (tampering and viruses)

eval function used in over 50% of WordPress malware (tampering and viruses)

We will explain the process called eval, which is used in more than half of the malware files detected by WordPress Doctor, and how to stop eval.

Read more

Security Concerns When Automatic WordPress Updates Fail

Security Concerns When Automatic WordPress Updates Fail

The automatic update of WordPress has failed. Please try updating again.” This page explains what kind of security concerns there are and how to deal with them.

Read more

What security experts recommend in the WordPress security plugin

What security experts recommend in the WordPress security plugin

There are many security plugins released for WordPress. The following is a list of features that you should have when selecting a security plugin.

Read more

What to do if you have multiple WordPress sites on your server and find that they are infected with malware

What to do if you have multiple WordPress sites on your server and find that they are infected with malware

If you have multiple WordPress sites on your server and find that they are infected with malware, here is what to do.

Read more

Top 5 most commonly used vulnerable plugins as of WordPress 2022

Top 5 most commonly used vulnerable plugins as of WordPress 2022

We would like to inform you of the top 5 most commonly used vulnerable plugins as of 2022. If you are using any of these plug-ins, please update your site as soon as possible.

Read more

Powerful waf 6G firewall that can be done by simply writing in htaccess in wordpress

Powerful waf 6G firewall that can be done by simply writing in htaccess in wordpress

Introducing the powerful waf (web application firewall) 6G firewall, which you can simply write into htaccess.

Read more

Characteristics and decoding methods of malware code infecting WordPress

Characteristics and decoding methods of malware code infecting WordPress

We will explain the characteristics of malware code embedded by WordPress tampering and how to make the code readable and analyze its contents.

Read more

Checklist for Improving WordPress Security

Checklist for Improving WordPress Security

WordPress Doctor helps hundreds of sites a year clean up malware and create secure sites. Based on this experience, we have created a checklist for running WordPress securely according to its level of importance. We hope you find it helpful.

Read more

Passwords that should not be used in WordPress users

Passwords that should not be used in WordPress users

This section describes the types of passwords that should not be used in WordPress.

Read more

Percentage of WordPress being hacked

Percentage of WordPress being hacked

This section will explain the percentage of causes of WordPress being hacked.

Read more

What is a 0Day attack that exploits a WordPress vulnerability?

What is a 0Day attack that exploits a WordPress vulnerability?

About 60% of WordPress tampering damage is caused by vulnerabilities in the old WordPress itself and plugins. Some of these are 0-day attacks. This is explained here.

Read more

What to do for your site users when WordPress is hacked, tampered with, or hijacked.

What to do for your site users when WordPress is hacked, tampered with, or hijacked.

This page explains how to respond to users (those who use the site) when there is a possibility of damage to users who visit the site, such as being redirected to another site, being sent to a sweepstakes site, or downloading malicious files due to WordPress tampering. This page

Read more

WordPress malware, heck.php showing fake Google login screen

WordPress malware, heck.php showing fake Google login screen

Recently, many websites have been defaced to display fake Google login screens, and we will provide examples and explanations of these defacements.

Read more

Page 9/15