Latest posts by Anushree Sen (see all)
- In Focus – WordPress and Data Privacy (GDPR) - December 26, 2017
- 9 Steps for Enhanced WordPress Security - December 1, 2017
- 5 WordPress Security Best Practices To Watch Out For In 2018 - November 10, 2017
WordPress websites serve as prime hacker targets. In addition to the platform core, the hackers exploit vulnerabilities like backdoors, malware etc in the various plugins available for website protection. While the key measures to WordPress Security are known and illustrated here , listed below are some additional security checks to be incorporated at the file / directory code levels.
Deny automatic execution of all PHP files
All WordPress websites require new content to be uploaded, and hence the upload directory ‘wp-content/uploads’ usually has Write privileges. This leads to significant risk since malicious PHP files can be entered via this route. While the […]