David Kierznowski at BlogSecurity suggests that WordPress is “insecure by design.” What he means is that in general WordPress does not sanitize MySQL queries. He recommends that WordPress provide “a proper set of SQL safe functions (i.e. $wpdb->escape_int and $wpdb->escape_str” and “use mysql_real_escape_string(), and have clearly defined coding standards and security policies” like Drupal does. [...]
Recent Comments
- 20+ Great Wordpress SEO Plugins | Pulse2 Technology and Social Media News on Paged Comments and the SEO Problem: A Solution
- wordpress搜索引擎优化插件 | 九天博客 on Paged Comments and the SEO Problem: A Solution
- 20 Best Wordpress Seo plugin | kotakkata.com on Paged Comments and the SEO Problem: A Solution
- WordPress icin En iyi SEO Eklentisi | Seografi.com Kurumsal Seo Uzmanı on Paged Comments and the SEO Problem: A Solution
- 20个最好的WordPress搜索引擎优化插件 | 天空の城 on Paged Comments and the SEO Problem: A Solution
-
RSS Subscription Feeds