• Join ShoutMeLoud on Google+
    • X
    Sign-up for FREE weekly Newsletter.

    wordpress security

    9 Steps To Secure WordPress Blog

    January 23, 2012
    Secure WordPress Blog

    In recent time, WordPress has been highly targeted by bloggers. Since WordPress uses MySQL and Php, it’s not tough to find a vulnerability in WordPress. Here I’m sharing some newbie tips to Secure WordPress blog. These are basic tips but some time missing these basic tips, may lead to losing your WordPress blog by some hacker. WordPress is probably the best CMS out there for blogging. I can quite confidently say that, being a user ...

    Continue Reading →

    8 Essential Settings after Installing WordPress

    October 6, 2011
    default-thumb

    I have already written a detailed post on How to install self hosted wordpress blog, this is the second post extending the WordPress series on settings to do after installing WordPress. This is the list of essential WordPress settings one should follow after installing WordPress. WordPress changes like updating WP ping list, WP permalink, WP threaded comment. Before we will start with how to start with basic WordPress set up, you should read this post: Checklist ...

    Continue Reading →

    [WordPress] Timthumb Vulnerability Scanner Plugin Checks & Fixes Vulnerable Timthumb script

    September 4, 2011
    default-thumb

    In last couple of days I have seen many websites getting hacked due to vulnerability and we have already discussed about the same in the past. If you are still not aware of timthimb hack and running a WordPress blog, you should refer to these 2 posts: WordPress Sites using Timthuimb Script is prone to hacking How to remove counter-wordpress.com from hacked WordPress blog Usually any blogger/webmaster will look into the theme folder and update ...

    Continue Reading →

    How I Removed Malware Counter-WordPress.com on my Hacked WordPress blog

    September 3, 2011
    default-thumb

    This is a guest post by Arunii who blogs at arunii. If you would like to write for ShoutMeLoud, check our guest posting guidelines. I have read ShoutMeLoud post on WordPress sites using Timthumb.php is Prone to Hacking couple of days back, and after 2-3 days back I encountered a very strange problem on Chrome browser. When ever I opened my WordPress blog on Chrome browser, it shows following message: “www.abc.com contains content from counter-wordpress.com, a site known to distribute ...

    Continue Reading →

    WordPress sites using Timthumb.php is Prone to Hacking [Almost Every Themes]

    August 25, 2011
    default-thumb

    Today one of my Client pinged me and told me that he is unable to login to his Wp-admin. His wp-admin was giving some error as mentioned below: “warning: Cannot modify header information – headers already sent by (output started at /home/stony/public_html/wp-settings.php:748) in /home/stony/public_html/wp-includes/pluggable.php on line 868” When I logged into client site via FTP, I see some of the files were modified and some weird php files were added. The first weird code was ...

    Continue Reading →

    Stop WordPress Spam Registration with Sabre WordPress Plugin

    July 31, 2011
    default-thumb

    These days almost every 1 out of 5 professional blog is offering guest posting and to automate the process most of them allow registration for everyone and one can submit post for review. Though this also created a problem for such blogs as spammers are using automated way to register and submit posts for review. In fact 2 weeks back I had almost 300+ registration in 48 hrs. at ShoutMeloud and almost 70 spam posts ...

    Continue Reading →

    Security Alert: WpPhpMyAdmin WordPress plugin Can Expose your Site to Hacker

    July 23, 2011
    default-thumb

    At ShoutMeLoud, I keep writing about various WordPress plugin and in some of the post I mentioned about phpMyadmin plugin, which used to be one useful plugin to open phpmyadmin from WordPress dashboard. Personally I used to have this plugin on couple of my blogs until today. Today couple of my blogs like CallingAllgeeks and Thesiscustomizationservice were giving some weird error and even my Antivirus Nod32 was showing HTML/iframe Trojan alert when ever I opened ...

    Continue Reading →
    `