Edit product


WordPress Plugin Security Handbook

Are you a web developer that creates plugins or themes for WordPress? Want to make sure you are creating code that is secure? Then this handbook is for you.

"Security can’t be an afterthought in your application, it must be a design principal." -- Cal Evans, Nomad PHP.

We'll take a look through the 10 most common types of security vulnerability affecting WordPress code, and show you what measures you can take to avoid them. 

We'll look at common flaws like Cross Site Scripting (XSS) and SQL Injection (SQLI), and less common flaws like Unvalidated Redirects.

Each type of vulnerability is described with code samples take from real world plugins.

Actionable examples are given that you can apply to your own code to give you the confidence you are creating a secure solution.

The code samples in the guide can be used in your own plugins or themes -- regardless of whether they are free, or premium.

Package includes PDF file containing guide and example code snippets.

Whether you are creating plugins or themes for a living, or just creating them as side projects, this guide is for you.

Here's what people are saying about the guide:

“The handbook looks really good! Really like the way it uses real world examples so that the vulnerabilities are not abstract concepts.” — Ryan Dewhurst, WPScan.

You've purchased this product

See it in your library

View in Library
Sorry, this item is not available in your location.
Sold out, please go back and pick another option.
  • PDF file
  • Size297 KB
  • Length27 pages


WordPress Plugin Security Handbook

Enter your info to complete your purchase


···· ···· ···· 4242
Test card



Use a different card?


pp paypal

or pay with

We do not keep any of your sensitive credit card information on file with us unless you ask us to after this purchase is complete.

or pay with

You'll be charged US$9.

Your purchase was successful!

We charged your card and sent you a receipt

    Gumroad Library

    Download from the App Store or text yourself a link to the app

    Good news! Since you already have a Gumroad account, it's also been added to your library.

    Powered by Gumroad