WordPress Files

Don’t Help Pirates and Do Not Create index.php!

November 25, 2014 0 comments

In the same branch as Don’t help pirates and stop include all!, here comes a second one which is a following of the reflexion but with files. Which index? I’m talking about file containing the most of the time, either nothing, either a “Silence is golden”, even i’m talking about the plugin with the same name Silence is Golden Guard. […]

Read more
WordPress Files

Don’t Help Pirates and Stop to Include All!

October 31, 2014 0 comments

I told some people about this in an earlier WordCamp i think. I’m talking about a code that seems smart, allowing a script to auto-include all .php files from a plugin or theme’s folder. Smart code The goal of this kind of code is to auto-include all files from for example, and without adding any line […]

Read more
WordPress Flaws and Vulnerabilities

WordFence 5.2.5 Security Update

October 7, 2014 0 comments

WordFence was recently examined by hackers and security consultants. This allowed WordFence to improve its product in the discovery of critical security flaws.

Read more
WordPress Flaws and Vulnerabilities

Vulnerability in WooCommerce 2.1.6

May 12, 2014 2 comments

WooCommerce 2.1.6 contains a vulnerability capable to display any post title of any type. This is included since 2.0. It therefore becomes possible, modifying the purchase address directly in the address bar, to display post title from any type and any status. We can display titles from drafts, pendings, protected, et other Custom Post Type even if not designed to be displayed in front-end. Knowing that it exists […]

Read more