WordPress.org

Ready to get started?Download WordPress

Forums

[resolved] Are Plugins Safe? (11 posts)

  1. Odinkinder
    Member
    Posted 5 years ago #

    This is probably a dumb question, but are the themes and plugins on the site checked for malicious code before being offered for download? I had never thought too much about it until a friend mentioned the possibility. I am just learning PHP and CSS and would not be able to spot a problem if there was one.

  2. Samuel B
    moderator
    Posted 5 years ago #

    the themes and plugins on wordpress.net are checked
    anywhere else and you are on your own

  3. Odinkinder
    Member
    Posted 5 years ago #

    Thank you Sam,
    I am new to WordPress, and there are many things I do not know. I had discovered this blog http://www.stuffbysarah.net and a related blog http://www.bloggingtips.com. There was a post on there about spammers using contact form plugins to send spam. Naturally this got me and my friend wondering about security. I thought that plugins and themes on here were checked for malware, it's good to know they are. Right now I do not have an active WordPress site except for my personal blog. My plan is to convert my site over to a WordPress CMS, but there are some issues I am working out before going live. A secure contact form is one issue, a good gallery system is the next, and I am also looking a Google cart feature for the site, of course, THAT needs to be secure! LOL!

  4. Samuel B
    moderator
    Posted 5 years ago #

    am also looking a Google cart feature for the site, of course, THAT needs to be secure!

    not sure about this but the other stuff is there to be had without spam or malware

  5. Odinkinder
    Member
    Posted 5 years ago #

    Thanks Sam,

    At the moment, the Google Cart is a future issue. Right now I am more focused on the gallery and contact form features. I am looking at using a plugin called "Slidezoom", it's a Highslide JS plugin, I am using Highslide with success on my site at the moment, here's a page. http://www.timage.com/wedding-photography-gallery-three.html I want to keep my gallery the same on the new site, so far, the other plugins don't work the same. I'm hoping "Slidezoom" will work. I'll look at the contact form plugins on here and see if I can find one with strong security.

    This is the post I found about secure contact forms. http://www.bloggingtips.com/2008/08/24/create-a-contact-page-i/

  6. Samuel B
    moderator
    Posted 5 years ago #

    that is an excellent post

  7. Odinkinder
    Member
    Posted 5 years ago #

    Yes it was, there is a lot of good stuff on her blog, she seems to know what she is doing. What did you think of her code for the contact form? You know, it's kinda odd, I mention security issues in contact forms and a little later I notice a post about security issues with Contact Form 7. Those spammers are relentless! :(

  8. Samuel B
    moderator
    Posted 5 years ago #

    What did you think of her code for the contact form?

    excellent way of doing it without a huge hassle
    once something gets popular - it gets attacked

  9. Odinkinder
    Member
    Posted 5 years ago #

    In her post Sara is saying her contact page can be modified to work with most templates. At the moment it does not work so well with the template I am looking at using which is Elegant Grunge. I like the template and the author's a good guy so I am leaning toward using it. When I tried Sara's page on it, it looks odd, I just hope I can work out the code, like I said, I not much of a coder. I had also been looking at Contact Form 7 as an alternative till this last problem.

    So you are saying Contact Form 7 was singled out for attack because it's popular?

  10. Samuel B
    moderator
    Posted 5 years ago #

    So you are saying Contact Form 7 was singled out for attack because it's popular?

    definitely
    with the latest release the security hole was closed, though.

  11. Odinkinder
    Member
    Posted 5 years ago #

    Good to know Sam, thanks!

Topic Closed

This topic has been closed to new replies.

About this Topic