WordPress blogs are complex pieces of software with a threat surface that expands with each plug-in or theme you install. Whenever I set up a new WordPress site, one of the first things I install is Wordfence - a security plug-in that provides a number of services that help me monitor and manage those sites. Wordfence has launched a WordPress Security Audit service.
Tagged With wordfence
Wordfence is one of the first plug-ins I install when I set up a Wordpress site. And their blog is a great source of information on current vulnerabilities and exploits. They have posted a list of 22 Abandoned WordPress Plugins with Vulnerabilities. And while the list is interesting, some of the other data they have unearthed is a cause of concern.