Page 3 of 3 FirstFirst 123
Results 21 to 27 of 27

Thread: Wordpress insecurities

  1. #21
    Shenron's Avatar
    Shenron is offline Administrator
    Join Date
    Dec 2008
    Location
    Portugal
    Posts
    1,900
    Blog Entries
    2
    Thanks
    561
    Thanked 548 Times in 368 Posts
    Cool!
    Make sure you check your posts for "injected content".

    Go to your mysql database - wp_posts and check the content there.

    I've had some problems before with hidden html code.

  2. Thanked by:

    Mike Dammann (3 January, 2009)

  3. #22
    Mike Dammann's Avatar
    Mike Dammann is offline Super Moderator
    Join Date
    Dec 2008
    Location
    Geographically flexible
    Posts
    964
    Blog Entries
    3
    Thanks
    237
    Thanked 182 Times in 148 Posts
    Thank you to everyone who has helped!
    For blood type dating go here. If your blood type is rhesus negative, go there. If you are bored and feel like liking a Facebook page, hit this one.

  4. #23
    elishevadpw's Avatar
    elishevadpw is offline Net Builder
    Join Date
    Dec 2008
    Location
    under the equator
    Posts
    120
    Thanks
    40
    Thanked 45 Times in 17 Posts
    Quote Originally Posted by Shenron View Post
    Cool!
    Make sure you check your posts for "injected content".

    Go to your mysql database - wp_posts and check the content there.

    I've had some problems before with hidden html code.
    What is "injected content"?

  5. #24
    Shenron's Avatar
    Shenron is offline Administrator
    Join Date
    Dec 2008
    Location
    Portugal
    Posts
    1,900
    Blog Entries
    2
    Thanks
    561
    Thanked 548 Times in 368 Posts
    SQL injection - Wikipedia, the free encyclopedia

    Typically hackers inject some hidden content into your posts body (usually at the begining)

    You can catch those by browsing your Mysql results and look for odd html tags

  6. #25
    5starpix's Avatar
    5starpix is offline Senior Net Builder
    Join Date
    Dec 2008
    Location
    Montreal, Quebec
    Posts
    1,710
    Blog Entries
    9
    Thanks
    158
    Thanked 227 Times in 164 Posts
    Quote Originally Posted by Shenron View Post
    SQL injection - Wikipedia, the free encyclopedia

    Typically hackers inject some hidden content into your posts body (usually at the begining)

    You can catch those by browsing your Mysql results and look for odd html tags
    Do you think there is a way to prevent that?

  7. #26
    Shenron's Avatar
    Shenron is offline Administrator
    Join Date
    Dec 2008
    Location
    Portugal
    Posts
    1,900
    Blog Entries
    2
    Thanks
    561
    Thanked 548 Times in 368 Posts
    Keeping your Wordpress and plugins updated it's the best recipe.

  8. #27
    thatsfine's Avatar
    thatsfine is offline Newbie Net Builder
    Join Date
    Jan 2009
    Location
    In Your Heart......
    Posts
    23
    Thanks
    6
    Thanked 0 Times in 0 Posts
    Hello,

    There is also one more major security issue with wordpress.

    /wp-contents/uploads have CHMOD 777

    Hackers Upload a Phishing site in there. So change the CHMOD to 755.

    Make Wordpress Better.

    Thanks

Page 3 of 3 FirstFirst 123

Similar Threads

  1. [Wordpress] - WordPress 3.0 Release Candidate
    By StephenM in forum Community Software
    Replies: 0
    Last Post: 28 May, 2010, 03:35 AM
  2. Replies: 5
    Last Post: 14 January, 2010, 04:58 AM
  3. [WTS] Hoover Wordpress Blog (Unquie Wordpress Theme)
    By Marcell Purham in forum Themes
    Replies: 0
    Last Post: 15 December, 2009, 21:36 PM
  4. Replies: 29
    Last Post: 18 September, 2009, 12:24 PM
  5. Replies: 14
    Last Post: 30 August, 2009, 03:33 AM

Tags for this Thread

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •