Why Is Wordpress Easy To Hack

Tracy Perry

Opinionated asshat
Joined
May 25, 2013
Messages
4,991
Why because it is wordpress? Wordpress is really easy to update.
And it's really easy to hack it if not kept up to date.. that's why I am obsessive about keeping it updated - it's the one that I do religiously - checking it every day or so for updates to it and the plugins.
 

CarpCharacin

Habitué
Joined
Aug 19, 2016
Messages
1,352
And it's really easy to hack it if not kept up to date.. that's why I am obsessive about keeping it updated - it's the one that I do religiously - checking it every day or so for updates to it and the plugins.
So many people use wordpress. What makes it easy to hack?
 

Danielx64

Developer
Joined
Nov 8, 2009
Messages
3,330
So many people use wordpress. What makes it easy to hack?
Put it this way: attackers are going to target scripts that has the most users - what's the point in trying to break something that one one or 2 people use?

Just like how Windows have security issues. Yes macs and Linux has issues but not as many people use then so they are less of a target (for now but that can change).
 

Tracy Perry

Opinionated asshat
Joined
May 25, 2013
Messages
4,991
As Danielx64 states, WordPress has a wider target based to hit, and WAY to many of the idiots running blogs on it don't keep it updated - much less disable the WP-Pingback feature that is so frequently used to perform DDOS attacks.
 

CarpCharacin

Habitué
Joined
Aug 19, 2016
Messages
1,352
As Danielx64 states, WordPress has a wider target based to hit, and WAY to many of the idiots running blogs on it don't keep it updated - much less disable the WP-Pingback feature that is so frequently used to perform DDOS attacks.
What is the WP pingback feature?
 

Tracy Perry

Opinionated asshat
Joined
May 25, 2013
Messages
4,991
It honestly should be disabled unless you have a specific use for it. If it was up to me, it would be totally stripped if they can't get it so that it can't be abused. One site that I was assisting with had over 100 connections each doing pingbacks from several remote IP's.
 

GTB

Tazmanian
Joined
Nov 24, 2005
Messages
4,038
If it was up to me, it would be totally stripped
I feel same way, Pingbacks and Trackbacks always got disabled on my WP site. Too easy to be taken of advantage off by other sites trying to get traffic, or comments - nothing good comes out enabling either of them.
 
Top