Some questions!

  • fwu

    (@fwu)


    10 years, 10 months ago

    hello,

    Despite all my precautions, my site sometimes is hacked. I use wordfence scans, and I have some questions about it:

    – where is the database source of vulnerabilites used by Wordfence when scanning? Is this databse always updated? For instance, if a new threat arises, when the wordfence database will cintemplate this threat? (or wordfence uses an external live database?);

    – Reagrding the first question, is wordfence able to scan my wordpress files (core, themes, plugins) to search for instance for the such vulnerability (that most plugins still have):
    in your plugin or theme, you need to make sure that you are escaping these functions properly”

    – I realize Wordfence can see if a file was chnaged. That is nice. However, the last time my site was hacked, a lot of files were
    “If you use the add_query_arg() and/or remove_query_arg() functions deleted by the attackers. Im talking about wordpress standard files. Shouldnt Wordfence be able to see these kind of differences: core deleted files; or even added files not distribitued with the core files?

    thank you!

    https://wordpress.org/plugins/wordfence/

Viewing 1 replies (of 1 total)
  • WFSupport

    (@wfsupport)

    10 years, 10 months ago

    The vulnerabilities are updated as we find them and sent to you when a scan starts manually or automatically. They are pulled directly from our servers. This way when we make an update to the signatures, they are available to your scans immediately.

    Scanning your wordpress files, themes, and plugins is what we do, yes.

    Make sure you have these options checked

    • Scan core files against repository versions for changes
    • Scan theme files against repository versions for changes
    • Scan plugin files against repository versions for changes

    We do a comparison against what the files in the wordpress repository has. Some commercial plugins or themes can’t be compared because their developers do not make those files available. We do scan them for known malware signatures though.

    tim

Viewing 1 replies (of 1 total)

The topic ‘Some questions!’ is closed to new replies.