Level Up

A collection of resources for WordPress Developers, written and curated by experts

Posts tagged: Security

Security Releases Regarding the Use of unserialize() in Delicious Brains Plugins

We were recently contacted by Wordfence and Patchstack regarding PHP Object Injection vulnerabilities related to the use of unserialize() in Better Search Replace and WP Migrate, respectively. An additional internal… Read more

Kevin Hoffman

Feb 8, 2024

Delicious Brain Bytes: State of the Word 2023, PHP_CodeSniffer Needs Support, and HTML Hacks

In this issue of Delicious Brain Bytes, we dive into changes with PHP_CodeSniffer, report on the WP Awards 2023, look at HTML hacks that helped build the modern web, and… Read more

Mike Davey

Dec 11, 2023

WordPress Security Fundamentals: How to Not Get Hacked

WordPress has come a long way towards its stated goal of democratizing publishing, powering roughly 43% of the websites on the web. However, that status makes it a prime target… Read more

Mike Davey

Apr 20, 2023

Best Ways to Encrypt Passwords, Keys, & More with PHP in 2022

A few years ago I attended Laracon EU where Marcus Bointon gave a great talk on Crypto in PHP 7.2. I left the talk having a much greater appreciation for… Read more

Ashley

Sep 29, 2021

An Introduction to WordPress Penetration Testing

Recently I had Tim Nash, the WordPress platform lead at 34SP.com, speak at the local WordPress meetup I help run. It’s the third time Tim has spoken at the meetup,… Read more

Iain Poulson

Nov 20, 2018

HTTP/2, HTTPS, Let’s Encrypt and WordPress

TL;DR — HTTP/2 is awesome, but requires HTTPS, which is hard to setup. Let’s Encrypt and WordPress can make HTTPS setup simple and help achieve a faster web sooner. My… Read more

Brad

Dec 8, 2015