I’ve decided to dedicate all 8 Worthwhile Weekly Bits of Information that I found this week to the topic of Security.
First of all, I want to thank all Plugin writers for making our blogging life easier by donating your time and your skills to the WordPress community. But on the other hand I’d like everyone to be more cautious when installing a new plugin, be aware of potential security vulnerabilities and know how to identify if the code in the plugin addresses all possible security attacks.

I’ve already talked about the two most common security vulnerabilities on the internet in my post The Secret Truth About The Plugins Security, and provided you with some links to learn more about XSS and SQL injections. Today I’m listing 8 more sites where you can find out which plugins and applications are vulnerable, and how to protect your sites from the security attacks.

  1. Vulnerability – This is a comprehensive tutorial on various vulnerabilities from Wikipedia.
  2. Security Corner: SQL Injection – one of the many valuable articles from Chris Shiflett. Make sure to check his blog that targets topics on PHP and Web Application Security.
  3. XSS and SQL Injections from user input – More examples that show how vulnerable HTML forms can be.
  4. Cross Site Scripting : Skinning Flickr with MSIE – an illustrative example of how an attacker can transform your site with XSS.
  5. Community Creators, Secure Your Code! – A List Apart talks about XSS and how to protect your site from the attacks. If you’re not a programmer, you may find the demonstrated code quite overwhelming, but I’m still posting it here for those who want to know more technical details.
  6. Armorize Vulnerability Database – a “comprehensive library that allows you to effectively search web application vulnerability” by category, by programming language, by year and keywords.
  7. Security Focus and Bugtraq – this site reveals security flaws in different applications, and Bugtraq is an archived collection of all security reports. You can also perform a search with the application or plugin name to see there are any security bugs associated with it. It has a report on WordPress source code compromised to enable remote code execution.
  8. Secunia – Vulnerability and Virus Information. Another site where you can search for the interested plugin or application and find any related bugs associated with it if any.

If you know of any other helpful security resources, please share them with us here.

Recent Bits
Related Bits
8 Questions to Ask about WordPress Plugins
The Best WordPress Plugin Ever
The Secret Truth About The Plugins Security
Practical Information About WordPress Plugins
Migrating Bit
8 Bits Of Perfect Geometry In Classic Logos
8 Bits From The Past
Best Inspiration Bits in 2007
Comment Bits

No Intelligent Bits in response to “8 Security Bits”

Sorry, comments are closed on posts older than 90 days.

Selected Bits





Hi, I'm Vivien. Thanks for visiting my Inspiration Bit. I often find myself scouring the internet looking for either answers to many questions I have or websites that inspire me, sites that I can learn from. On what topics you might ask — any topics that interest me, anything from web design to typography and art, from blogging to entrepreneurship, from programming to open source.
read more…
When I'm not blogging, I design web sites, teach, play with my daughter and try to balance family, work, friends and a somewhat active social life on