Tag: WordPress plugin Page 10/12

Log-in-related security measures alone are not enough to prevent WordPress hacking

Log-in-related security measures alone are not enough to prevent WordPress hacking

We understand that many sites have installed various security plug-ins to prevent WordPress hacking, but some plug-ins are specialized for the login screen only. These plug-ins do not provide much protection against WordPress hacking. We will explain why.

Read more

Log and visualize WordPress hacker attacks

Log and visualize WordPress hacker attacks

Here are some of the most common attack patterns recorded as hacking logs that we detect on a daily basis.

Read more

[Urgent] File Upload Vulnerability in Contact Form 7 v5.3.1 and Below

[Urgent] File Upload Vulnerability in Contact Form 7 v5.3.1 and Below

A file-uploadable (most dangerous) vulnerability was discovered in the Contact Form 7 plugin 5.3.1 and below, which is installed in 5 million sites.

Read more

Reasons for repeated hacker defacement and malware infection on WordPress sites

Reasons for repeated hacker defacement and malware infection on WordPress sites

Once a WordPress site has been defaced by hackers, embedded malware, or infected with a virus, the site may be repeatedly defaced even after you think you have removed the malware. We will explain how to deal with such cases.

Read more

Take a look at the logs of hackers' attacks on WordPress

Take a look at the logs of hackers’ attacks on WordPress

WordPress:Malware Scan & Security Plug-in [Malware and Virus Detection and Removal] has a function to log hacker attacks. We will introduce this feature in this issue.

Read more

Is it dangerous to include many plugins in WordPress for security reasons?

Is it dangerous to include many plugins in WordPress for security reasons?

WordPress is an extremely versatile CMS with over 50,000 free plug-ins that can be used to add functionality to your site. In this article, we will discuss the number and security of plug-ins.

Read more

Most Targeted Plugin Vulnerabilities in WordPress, November 2020 Edition

Most Targeted Plugin Vulnerabilities in WordPress, November 2020 Edition

WordPress Doctor is pleased to inform you of the commonly targeted plugin vulnerabilities in WordPress as of November 2020 that we detect on a daily basis.

Read more

Vulnerability in File Manager Plugin, which allows WordPress to operate like FTP software

Vulnerability in File Manager Plugin, which allows WordPress to operate like FTP software

The File Manager plug-in, which enables file manipulation on the administration screen like FTP software and has been installed on over 700,000 sites, has a very dangerous vulnerability in version 6.9 or lower.

Read more

Be careful if your WordPress theme or plugin contains class.plugin-modules.php!

Be careful if your WordPress theme or plugin contains class.plugin-modules.php!

We are seeing an increasing number of cases where WordPress themes and plugins that are available for free have a malware called class.plugin-modules.php embedded in them.

Read more

What to do when Google's ad review does not pass (disapproves) due to malware

What to do when Google’s ad review does not pass (disapproves) due to malware

Here is what to do if your Google ads suddenly stop appearing and your AdSence and Adwords screens show “malicious or undesirable software” and your ads are disapproved.

Read more

Example of database tampering with a redirect hack that causes a site to jump to another site

Example of database tampering with a redirect hack that causes a site to jump to another site

Redirect hacks that cause a site to jump to another site (often a malicious software download, a fake e-commerce site, or a site that makes you click on a robot authentication) are not only tampering with files, but also getting into the database. Here are some examples of databa

Read more

Vulnerability in WordPress theme OneTone to rewrite database without authentication

Vulnerability in WordPress theme OneTone to rewrite database without authentication

OneTone, which has a large number of users in Japan, has a vulnerability that rewrites the database without requiring authentication, and many sites have suffered from redirection hacks.

Read more

Find out the most dangerous vulnerabilities in your WordPress!

Find out the most dangerous vulnerabilities in your WordPress!

Common Vulnerability Assessment System CVSS Score Software vulnerabilities have an objective measure of severity called a CVSS score. The CVSS score is basically derived from the following criteria on a 10-point scale.

Read more

How to prevent spam comment posting by robots from HTACCESS files

How to prevent spam comment posting by robots from HTACCESS files

Comment spam (invalid string parties or links written in comments) is a very annoying problem if you have the comment function enabled in WordPress. In this article, we will explain how to prevent spam written via robots (which automatically write comments) from HTACCESS files.

Read more

Where is WordPress being hacked from? Find out the vulnerabilities of plugins and WordPress itself!

Where is WordPress being hacked from? Find out the vulnerabilities of plugins and WordPress itself!

If you have been a victim of WordPress defacement or hacking and have viruses or malware embedded in your site, or if you repeatedly find yourself in a similar situation, you may wonder where hackers are getting into your site. In this article, we will explain how to find vulnera

Read more

How to check individual WordPress plugins for vulnerabilities

How to check individual WordPress plugins for vulnerabilities

Hacking using plug-in vulnerabilities, which account for the majority of WordPress malware infections (tampering damage), has been increasing in recent years. Plug-in vulnerabilities are sometimes fixed by the creators of the plug-ins, so it is advisable to keep all plug-ins up-t

Read more

What to do when WordPress is repeatedly tampered with (infected with malware and viruses) due to hacking

What to do when WordPress is repeatedly tampered with (infected with malware and viruses) due to hacking

If you have gone to the trouble of removing viruses and tampering from your WordPress site, but are immediately reinfected (tampering due to hijacking), here are the causes and remedies.

Read more

Learn how hackers rewrite (alter) files on your WordPress site to increase security!

Learn how hackers rewrite (alter) files on your WordPress site to increase security!

As convenience and site functionality increases with the improved capabilities of programs on servers, not just WordPress, tampering with files on servers has become a major problem. In this article, we will explain how hackers rewrite WordPress files and consider ways to improve

Read more

Page 10/12