Support » Plugin: Plugin Inspector » Very Cool !

  • Works as advertised. Very scary to see so many plugins have so many security issues. As long as WordPress allows unsafe themes and plugins to get activated, it will never be safe, no matter how much they secure the core.

Viewing 4 replies - 1 through 4 (of 4 total)
  • Plugin Author Gregory

    (@gioni)

    That’s a dark side of the WordPress. There is only one proven method: change owner and remove write permission for folders and files excluding uploads folder.
    P.S. Check out new version Plugin Inspector with code viewer.

    Yes, I saw that, and the code viewer is great.

    The next logical step would be to suggest how to fix the issues?

    Plugin Author Gregory

    (@gioni)

    No doubt, that is reasonable idea. And maybe someday we’ll go that way. But you need understand that in most cases fixing those issues is a hard task. Because it may be done only by the plugin author.

    Technically speaking, possibly it might be a difficult task. But if the authors refuse to do the right thing, we, as individuals can fix things, and apply the fixed plugins by:

    – Offering the fixed plugins to the original authors, so they can update their plugins, and if they don’t…

    – Create new plugins with the fixed versions.

    – Use the fixed plugins for our, and our customers sites.

    – Include the fixed plugins with our themes through the TGM Plugin Installer.

    Something must be done with all the poorly coded plugins, and the Plugin Inspector, is the only automated solution that I know of, that seriously does something about it, so thank you for that.

Viewing 4 replies - 1 through 4 (of 4 total)
  • The topic ‘Very Cool !’ is closed to new replies.