Login

Tag Archives: WP SEO TDK

23 Jul 2021

Closures of Very Popular WordPress Plugins, Week of July 23

While we already are far ahead of other companies in keeping up with vulnerabilities in WordPress plugins (amazingly that isn’t an exaggeration), in looking in to how we could get even better we noticed that in an instances where a vulnerability was exploited in a plugin, we probably could have warned our customers about the vulnerability even sooner if we had looked at the plugin when it was first closed on the Plugin Directory instead of when the vulnerability was fixed (though as far as we are aware the exploitation started after we had warned our customers of the fix). So we are now monitoring to see if any of the 1,000 most popular plugins are closed on the Plugin Directory and then seeing if it looks like that was because of a vulnerability.

During the week, two of those plugins were closed. [Read more]

20 Jun 2019

Checking the Security of Fast Growing WordPress Plugins Would Be a Good Idea

Right now the people on the WordPress side of things refuse to even discuss making easy changes to help avoid websites being unnecessarily hacked due to plugin vulnerabilities, but if that was ever to change there is plenty more that could be done to improve the security plugins. Based on some checking we have done over the last week looking at the security of plugins quickly growing in popularity could head off issues getting exploited before they become even more popular.

Earlier this week we noted that part of what had led to us taking a glance at the WordPress plugin Facebook for WooCommerce and finding it was vulnerable was that it was listed as one of the fastest growing plugins in terms of installs according to wptrends.net. Another fairly popular plugin, WP SEO TDK, had even faster growth at +77.35%. Like the other plugin that growth stands out against the fact that the plugin isn’t listed as being compatible with recent versions of WordPress: [Read more]