Asif A Khan LONDON

Elite Member
Joined
Nov 10, 2012
Messages
14,988
Reaction score
43,888
Website
twitter.com
c3cccfe1dd7c929343204cdc9bceed70d38ceb83-hero.jpeg


WordPress is one of the most high-profile open source CMS's in use today. Being that 60% of all CMS websites use Wordpress, and 31% of all websites on the Internet use it, it's safe to say that it's a frequent target of security exploits.

The subject of whether WordPress is secure or not has been at the core of infosec discussions for several years. With hundreds of thousands of WordPress websites getting hacked annually, the question remains: "Is WordPress really secure?”

Good Read: https://securitytrails.com/blog/is-wordpress-secure?from=relatedposts
 

davids355

Super Moderator
Staff member
Moderator
Jr. VIP
Joined
Apr 25, 2011
Messages
17,535
Reaction score
21,669
Website
9amcrypto.com
I guess the answer is no. But that answer probably remains the same with any and every other cms platform.

Why? Because everything can be reverse engineers and because hackers are just as smart, if not smarter, than web developers- and probably have a greater motivation as well.

But the good thing about Wordpress is that it’s very well supported which probably makes it safer and more secure than most other alternatives.
 

blogzandstuff

Elite Member
Joined
Jan 1, 2015
Messages
10,762
Reaction score
6,872
Depends on what you do to secure it
Yes exactly right, I see so many people use admin to login lol!
I hide login page, theme , stop right click inspect etc. I also use three login stages, including secret question and answer. Get one part of the stage wrong and you're locked out
 

Veil123

Jr. VIP
Jr. VIP
Joined
Jun 13, 2012
Messages
1,586
Reaction score
2,686
Website
codevix.com
Yes exactly right, I see so many people use admin to login lol!
I hide login page, theme , stop right click inspect etc. I also use three login stages, including secret question and answer. Get one part of the stage wrong and you're locked out
Well, It is not about the login, but the plugin exploits from the creators. That is the one and only place where the exploits can "show up" every now and then.
Nowadays, only the newbies go through the login as those websites that you can get from there will be most likely not worth a penny.
 

p3n7357

Registered Member
Joined
Dec 10, 2016
Messages
82
Reaction score
14
nothing is secure on internet even wordpress
 

blogzandstuff

Elite Member
Joined
Jan 1, 2015
Messages
10,762
Reaction score
6,872
Well, It is not about the login, but the plugin exploits from the creators. That is the one and only place where the exploits can "show up" every now and then.
Nowadays, only the newbies go through the login as those websites that you can get from there will be most likely not worth a penny.
that's why you should only use trust paid for plugins and themes, keep them updated. Best make it difficult. Not just about logins, but common sense. nothing is really secure if they want to get in
 
D

Deleted member 813988

Guest
Yes exactly right, I see so many people use admin to login lol!
I hide login page, theme , stop right click inspect etc. I also use three login stages, including secret question and answer. Get one part of the stage wrong and you're locked out

I also use Sucuri!
 

whiteblackseo

Jr. VIP
Jr. VIP
Joined
Apr 11, 2015
Messages
2,992
Reaction score
1,144
There's a reason why security companies like Wordfence and Sucurii are thriving, the need for security in WP sites are detrimental right now.
 

Jake Gib

Registered Member
Joined
Feb 8, 2018
Messages
97
Reaction score
16
I think it is pretty secure but there are certain things you can do to even secure it more.
 

bmfuxia

BANNED
Joined
Oct 14, 2018
Messages
190
Reaction score
31
Honestly any site that provides a website build where you can just drag and drop things isn't secure, The only secured site is if you code it yourself from scratch, a good old html coding should do the job.
 

Mr Dingle

Jr. VIP
Jr. VIP
Joined
Sep 22, 2012
Messages
342
Reaction score
222
Age
61
A common feature of WP is the need to improve all the basic features.
The security is like locking the door and leaving the key under a brick
I know from experience that sorting a hacked WP website doesn't have a funny side
Now I use html with a live ftp connection from my desktop. Posting is quick and easy, also I could replace the entire website in minutes if I got hacked
 

bmfuxia

BANNED
Joined
Oct 14, 2018
Messages
190
Reaction score
31
A common feature of WP is the need to improve all the basic features.
The security is like locking the door and leaving the key under a brick
I know from experience that sorting a hacked WP website doesn't have a funny side
Now I use html with a live ftp connection from my desktop. Posting is quick and easy, also I could replace the entire website in minutes if I got hacked
pretty much the good thing about html if you get hacked its easy to replace or get things back, meanwhile things like WP you get hacked everything will be gone.
 

DanDD

Senior Member
Joined
Mar 10, 2014
Messages
847
Reaction score
248
better than other cms's and better than reinventing the wheel
 

crissdinesh

Regular Member
Joined
Jul 7, 2018
Messages
412
Reaction score
222
WordPress is not completely secured. Many WP sites are vulnerable.
 

Mr Dingle

Jr. VIP
Jr. VIP
Joined
Sep 22, 2012
Messages
342
Reaction score
222
Age
61
pretty much the good thing about html if you get hacked its easy to replace or get things back, meanwhile things like WP you get hacked everything will be gone.
True, and with AMP html you get a lot of ready made components with the javascript aspect taken care of. I've been giving it a go and absolutely love it
 
Top