WP-JSON: Cross Origin Resource Sharing Vulnerability?
WP-JSON: Cross Origin Resource Sharing Vulnerability?
security
How can I give someone server access to only duplicate and modify a site?
Well, you can use a plugin like Duplicator to create an installer package of the complete site including database etc. which the user then can install in a new database & website path.
checking the form submit in right order
checking the form submit in right order
Directory to store secure file
You are comparing two different things. Your ASP security is really IIS security. To get similar things in wordpress you will need to configure your web server in similar ways.
Move data from wp-config to another file
Move data from wp-config to another file
How to get real password (before encrypt) when register a user?
Not sure what research you are doing, but you can hook into user_register and get submitted password using $_POST variable.
Bank account number and Sort Code in a form [closed]
This sounds like bad news. There are many technical and legal hurdles involved in collecting bank info online. It is easy to mess up. All SSL does is protect information in transit between a browser (person filling the form) and the server. Once it gets to the server you need to handle it properly. If … Read more
WordPress Hacks/Defacing [closed]
Even when WordPress is running version 3.1, sites are still being defaced. Even? There had been one major and five security releases since that version. If you are implying that 3.1 should be reasonably secure – it is not. but the only answer seems to be outdated WordPress sites What had you done to exclude … Read more
Competitor is somehow accessing MetaData on a hidden WordPress site
Well we found one reason anyway – it looks like you can bring up a list of authors using ?author=1 query, which I hadn’t even known existed. Here’s an article that explains how and how to fix it: https://www.wp-tweaks.com/hackers-can-find-your-wordpress-username/
nginx + wordpress: Best practices for configuring it to be secure, reliable, and fast? [closed]
What permissions should I set on each of wp folders? Users will need to upload various assets (images, pdfs, office docs, audio, video). I found this article here that seems helpful, but would like to get some input from folks having done this? This will be the same as any other web server. Whatever user … Read more