WordPress.org

Ready to get started?Download WordPress

Forums

Is there a particular place to discuss plugins that you think are malicious? (7 posts)

  1. Fishous
    Member
    Posted 1 year ago #

    Is there a particular place to discuss plugins that you think are malicious or have security problems?

    I've had problems in the past, cleaned out my system and didn't have any problems for a while (even seeing unsuccessful attempts from the hacker) but today I installed two plugins and within 6 hours he was back and successful.

    I don't want to name the plugins until someone official asks for the names. One was a lightbox plugin and one was a tiny mce plugin.

  2. ClaytonJames
    Member
    Posted 1 year ago #

    If you believe there may be an security or licensing issue with a specific plugin, the most effective form of communication would probably be to forward your concerns to plugins@wordpress.org

  3. mentalist3d
    Member
    Posted 1 year ago #

    You can also check files by submitting them to https://www.virustotal.com/, it will check the files with a variety of reputable scanning engines.

  4. kennethfrns
    Member
    Posted 1 year ago #

    I am beginning to think between malicious plugins and how unsecure the Wordpres PHP script is that I may just quit using WordPress altogether. I had 293 words with links and images on a post which was very close to completion when all of a sudden everything on that post is gone.

    All my hard work gone down the drain. I hadn't published it yet as it was in the draft stage. WordPress is beginning to look like a major disgrace to me. My host provider told me that the problem was in the WordPress PHP script.

    Kenneth

  5. esmi
    Theme Diva & Forum Moderator
    Posted 1 year ago #

    What makes you think that WordPress is any less secure than other open source applications?

    All my hard work gone down the drain.

    That's nothing to do with security. There are 1001 reasons why this could have happened.

    My host provider told me that the problem was in the WordPress PHP script

    I'm sorry but I think your hosting provider doesn't know what s/he is talking about. There is no "WordPress script". There are, however, currently 1025 scripts in a basic install of the WordPress application. :-)

  6. techonda
    Member
    Posted 1 year ago #

    You can use security and backup plugins like Vault Press for enhanced security.

  7. kiddychang
    Member
    Posted 1 year ago #

    Just a thought. I'm not a professional developer but I have had issues with hosts who are not as clued up as they probably should be! I've moved from Joomla to WordPress and have found it to be leaps ahead in terms of security etc.

    Have you checked the security section of the support pages - loads of useful tips. And there are a couple of great security plugins too.

    I've only experienced 'hacks' as a result of certain plugins which, unless you want to pay good money, is the result of getting all this stuff pretty much for free!

    Good luck and don't throw the baby out with the bath water as the saying goes!

Topic Closed

This topic has been closed to new replies.

About this Topic

Tags