Sonicwall Signatures

Application: WordPress

WordPress (wordpress.org) is the most widely deployed Content Management System (CMS) in the world with 60 Million deployments reported. It is based on PHP and MySQL. It is free and open-source. The first version was released in 2003. There are many security vulnerabilities reported over its history. WP is allows amateur technologists to deploy their own self-publishing platform. Unfortunately amateurs will often be unaware that the software needs to be kept up-to-date with the latest security patches, or fail to implement best practices for public-facing Web Services, like validating user input, adding insecure plugins, not updating plugins after vulnerabilities have been disclosed, and other security precautions. WP sites can be vulnerable to CSRF, LFI, RFI, XSS, SQL Injection, User Enumeration and other attacks.