Are you a web developer that creates plugins or themes for WordPress? Want to make sure you are creating code that is secure? Then this handbook is for you.
"Security can’t be an afterthought in your application, it must be a design principal." -- Cal Evans, Nomad PHP.
We'll take a look through the 10 most common types of security vulnerability affecting WordPress code, and show you what measures you can take to avoid them.
We'll look at common flaws like Cross Site Scripting (XSS) and SQL Injection (SQLI), and less common flaws like Unvalidated Redirects.
Each type of vulnerability is described with code samples take from real world plugins.
Actionable examples are given that you can apply to your own code to give you the confidence you are creating a secure solution.
The code samples in the guide can be used in your own plugins or themes -- regardless of whether they are free, or premium.
Package includes PDF file containing guide and example code snippets.
Whether you are creating plugins or themes for a living, or just creating them as side projects, this guide is for you.
Here's what people are saying about the guide:
“The handbook looks really good! Really like the way it uses real world examples so that the vulnerabilities are not abstract concepts.” — Ryan Dewhurst, WPScan.