Where to Start to Secure WordPress? Part 1
Secure WordPress is an everyday work. Discover 4 easy rules to do once to secure more your WordPress Website.
Read more
Don’t Use a Password Protection on wp-admin Folder
On the Internets you will find many posts that explain how to use a password protection on your back-end using a auth password. There is a problem But there is one big problem with that is it will break all your and requests. In the WordPress Codex you will find a page that will explains how to implement AJAX. You’ll read […]
Jetpack 4.0.3 Security Patch
Jetpack 4.0.3 just fixed a security flaw named Stored XSS. It allows a visitor to insert a shortcode containing some HTML attributes usually forbidden. The vulnerability According to Sam Hotchkiss, member of the Jetpack development team, this XSS vulnerability can be found in the shortcodes parsing method, a Jetpack’s one. A attacker could easily add some JavaScript code in your comments to hack your visitor’s […]
All In One WP Security & Firewall 4.0.9 Security Patch
On May 10th 2016, All In One WP Security & Firewall patched some SQL injection detected by our team. Those flaws allow any visitor to alter DB queries. This represent a high security risk.
iThemes Security 5.3.6 Security Fix
Recently around april, 19th 2016, iThemes Security got patched against a vulnerability discovered by our team, a lack of capability check, allowing any member with any role to perform an Administrator action.