David Kierznowski at BlogSecurity suggests that WordPress is “insecure by design.” What he means is that in general WordPress does not sanitize MySQL queries. He recommends that WordPress provide “a proper set of SQL safe functions (i.e. $wpdb->escape_int and $wpdb->escape_str” and “use mysql_real_escape_string(), and have clearly defined coding standards and security policies” like Drupal does. […]
Recent Comments
- Paged Comments, Friend or Foe? Usability vs SEO | BestBlogBuzz on Paged Comments and the SEO Problem: A Solution
- 大陸志 » WordPress SEO教程-5: 20個最佳WordPress SEO插件 on Paged Comments and the SEO Problem: A Solution
- Disha Hosting » SEO Plugins for Wordpress on Paged Comments and the SEO Problem: A Solution
- 15个有用的Wordpress SEO插件 : 心情日记 on Paged Comments and the SEO Problem: A Solution
- Probort.net on Paged Comments and the SEO Problem: A Solution
-
RSS Subscription Feeds