As the most popular content management system on the web, WordPress is no
stranger to security vulnerabilities - and as anyone who’s been following
the news will tell you, there’s been some downright nasty ones over the
years. Thing is...it’s not usually core WordPress that puts users at risk.
One of the greatest strengths of WordPress is its diverse plugin ecosystem.
Even a cursory glance at official directories will show you scores of
different tools, each designed to fit a specific need. Here’s the thing
about those tools - they aren’t all designed by veteran developers.
As a matter of fact, plenty of them are designed by novices or hobbyists. And
while they might be perfectly capable of putting together a seamless,
perfectly-architected plugin, they also make mistakes. And those mistakes
frequently pertain to security.
Maybe they aren’t aware of Wo... (more)