Frequently asked questions about the WordPress database

/0 Comments/in ,

Frequently Asked Questions about the WordPress Database

  1. Does the WordPress database have a limit?
    No, there is no limit. You can store as many posts and pages as you want, just like any other database.
  2. Where are my posts stored in the database?
    All posts and pages are stored in the `_post` table.
  3. What is a prefix?
    A prefix is a prefix for a table. It is often set as `wp_`, but for security reasons, it is recommended to change it to a unique prefix.
  4. Are user accounts in the WordPress database secure?
    User passwords are stored using MD5 encryption, but note that other data is stored unencrypted in the database.
  5. Where can I find my database?
    Your web host stores the database in a separate location. To manage the database, you can access the “phpMyAdmin” tool through your hosting panel, cPanel, or DirectAdmin.
  6. What is my database username and password?
    You can find this information in the email you received from your web host when registering and/or purchasing the hosting package. If you no longer have that email, you can also look for a wp-config.php file on your website’s server, which contains the database name, username, and password.
  7. What is localhost?
    In 70% of web hosting packages, you can enter “localhost” as the address for the MySQL database. In some cases, it may be different or not defined, requiring you to use an actual address.
  8. How big is a database?
    Rough estimates for average database sizes are as follows:
    An informative WordPress website: 5-19 MB
    A website with 50 pages/posts: 30-45 MB
    An average WordPress WooCommerce shop: 50-60 MB
    A large WordPress WooCommerce shop: 95-150 MB
    A busy news site with daily articles: Grows by 70-125 MB per year
  9. Why does WordPress suddenly prompt for a new installation on my existing website?
    If WordPress doesn’t find any tables, it defaults to the installation page. This can also happen if the wp_ prefix (mentioned in point 3) is not set correctly, causing WordPress to be unable to locate the database tables.

We hope these questions have been answered. If you have a question that is not listed here, please let us know in the comments section at the bottom of this page. We will do our best to answer the questions posted in the comments, and who knows, we might even include the solution directly in our article!

Uptime monitoring

/0 Comments/in , ,

Uptime monitoring is one of the ways we keep an eye on your website. It allows us to track whether the server hosting your website is stable and if your website is consistently accessible. If any issues arise, we are notified.

We also receive reports on the website’s uptime over the past months. These reports help us identify server time-outs, instances when the server was offline and the website was inaccessible, errors that rendered the website completely unavailable, and more.

There can be various reasons why a website may experience periods of inaccessibility, such as plugins, an overloaded server, or an unstable data network.

If we notice frequent occurrences of downtime, we can work towards resolving the issue or provide guidance on how to approach your web host.

We have been utilizing uptime monitoring for all our clients for many years.

With our Package 2, uptime assistance is included by default. If your website experiences downtime due to a server issue, we assist you by communicating with your web host or providing you with the necessary information to address the problem.

Uptime assistance and monitoring are services that we consider standard practice, especially for critical business websites and online stores.

Does FSE have the future? A test with WordPress Full Site Editing

/0 Comments/in , , ,

What if you could style not only the content but the entire website using Gutenberg?

With Full Site Editing (FSE), which stands for Full Site Editing, this may be possible in WordPress 5.8.

I have been testing FSE with the beta theme called TT1 Blocks and the latest Gutenberg release to see if it is truly convenient.

Full Site Editing Beta test

I have installed the experimental theme called TT1 Blocks.
This TT1 Blocks theme is a variation of the default WordPress 2021 theme called Twenty Twenty-One.

With this TT1 Blocks theme, I can see if it is possible to create a “professional sample website” without using any other editor or theme builder.

tt1-blocks

You can edit both the content, header, and footer in the same way! No additional theme plugin, child theme, or settings page is required.

Ps: At the time of writing, the TT1 Blocks theme is still in development, which is why the build number is still 0.4.5. There will be changes in the final theme and the functioning of FSE and Gutenberg.

My current experience with the experimental theme and Gutenberg

I spent 20 minutes playing around with the theme to see if I can work with it.
I have only been using Gutenberg for 1 hour because I usually work with the Visual builder, Enfold builder, on other sites.

A fun test to see if Full Site Editing with Gutenberg is easy to use and has potential, right?

A deep dive into FSE

I dive right in and create a homepage. In my imagination, I should be able to modify both the content and the header and footer. But that’s not the case.

edit page

I see a new button at the top in the black bar, Customize Site.

customize website

Now I can customize the header and footer using blocks and the standard Gutenberg editor.

customize entire website

Okay, we can design the site.

I envision a website with a “professional look.”
I go for a dark red header, not too tall, and a footer with a gray background. The overall page background should be predictably white or very light gray.

Let’s see if I can achieve that!

example website

The header

Adjust color – CHECK

Modify title and slogan – CHECK

Adjust header height – FAIL

Even though I set the padding/spacing to 10px and removed any space blocks in the header, it is still three times taller than desired due to empty space.

header color

column too tall

The column height in the header
It appears that the logo and slogan are contained within a column. At the time of writing, the column height is not adjustable.

With some CSS, it is possible to adjust it by adding a class name to the column, setting the height, giving the h1 a margin of -100, and so on.

But we don’t want to do that; we shouldn’t have to code!

Changing the H1 to a Paragraph doesn’t help much either; in fact, it makes the column even taller.

EPIC FAIL!

Tip: Don’t dwell too long on something that isn’t working, move on and come back to it later.

The content

Inserting content is a breeze. Adding a photo, text next to it, adjusting with the so-called “spacers.”

content

Ps: I’m not saying this is the easiest way to create content. But Gutenberg works in general and is used by many 😉

Styling the footer

Similar to the header, changing the color is easy, and being old-fashioned, I also want to add a widget, which is straightforward. GREAT!

WordPress and FSE: 1-0

add widget

Adjusting the page background

The page background is still light green, the (awful) default color of the theme.
The theme currently does not have a separate settings page where this can be modified. That is likely to remain the case as we move towards Full Site Editing with Gutenberg.

I’m using the CSS Customizer to adjust the body color (Go to your admin panel, navigate to Themes, click on the current theme, and then click the blue “Customizer” button).

background color

Result

I added some CSS, but ultimately, I managed to create a sample website that resembles what I had in mind. – Well, approximately, given the short timeframe of 1 to 2.5 hours that I wanted to dedicate to using Gutenberg in combination with the new FSE features.

idea

Using FSE already?

No! Currently, in April 2021, FSE is still in beta. The official version is yet to be released, and many changes still need to be made.

When FSE is officially launched, you can take a look, but I recommend waiting for another 2-3 months even then. Often, some necessary updates are made when something is widely used. Consider compatibility with certain plugins, widgets, alignment, etc. There are probably still some minor bugs that WordPress will address in the months following the official release, as was the case with Gutenberg when it was officially introduced into WordPress.

wordpress judgement

Final Verdict: Does FSE have a future?

Absolutely! We know that Automattic (the company behind WordPress) closely collaborates with WordPress users. It is highly likely that the theme or the Gutenberg editor will have the missing functionalities in the official release.

Why FSE?

  1. You can easily make various adjustments such as color without having to search for a theme editor or theme settings.
  2. You can easily add and rearrange elements in the header and footer.
  3. The base theme is well-supported and maintained by WordPress itself and is free, unlike premium themes.
  4. Fewer plugins are needed to achieve what you want.

Contrary to expectations!
I am not yet a fan of Gutenberg, but this works quite well and is simple. Once you can manage the blocks, you can basically do anything.

Note: Designing is a separate skill, and technical knowledge and experience are still required to create a website.

Using the DEBUG MODE of WordPress

/0 Comments/in ,

What is the debug mode?
The debug mode is a feature that is included in WordPress by default and is turned off by default.
You can turn on the debug mode if you want to display errors on the front end of your website.

The debug mode is mainly used by developers.

Enabling the debug mode

You can enable the debug mode by using a text editor to open the wp-config.php file.

Open the wp-config file and find the following line of code:
define( 'WP_DEBUG', false );

To enable the debug mode, change FALSE to TRUE.
(Casing doesn’t matter.)

example wordpress debug mode

By default, the debug mode is set to FALSE. This is done for security reasons. Remember to set the debug mode back to FALSE after resolving the errors!
Errors can reveal information about your website that not everyone should see. Hackers and malicious scripts, in particular, should not have access to error messages.

Saving errors

You can also save the errors so that you can review them later. WordPress has a built-in feature called the Debug Log, which is already present in WordPress but needs to be activated.

To activate it, add the following line of code below the previously mentioned debug mode line in your wp-config.php file:

define( 'WP_DEBUG_LOG', true );

WordPress will now save ALL errors that occur on visited pages in a file called debug.log, which can be found in the wp-content directory.

If you want to view the errors in the log file, you need to visit the pages where the errors occur.

And if you suddenly see hundreds of errors, don’t panic. If you have many website visitors, all those errors will also be logged every time a page with errors is loaded. So it could be just “one simple error” that you need to address, but it appears multiple times in the log file.

example debug log wordpress

Whether you want to view the errors directly on the respective page or through a log file, it’s possible! Now, you just need to resolve the error.

Is Wordfence enough to secure your Web site?

/0 Comments/in ,

Many people install Wordfence and then happily continue developing their websites. Voila! Security is taken care of, right?!

However, I still have a few tips if you want to properly secure your website. Here are some important steps to take:

  1. Review Wordfence settings: When you first install Wordfence, not all settings are configured optimally. This is because different servers or websites may not work well with certain restrictions. You need to manually review the settings to secure your website as effectively as possible.
  2. Use one security plugin, not three at once!: It’s important to use one reliable security plugin. Using multiple security plugins can lead to conflicts. They essentially perform similar functions, such as logging and blocking IPs and attacks. Multiple security plugins will interfere with each other.
  3. Ensure you have a complete data backup: Do you rely on your web host to handle backups? Well, not all web hosts provide complete backups (data + database), and some may only perform them weekly. There may also be storage limitations. Make sure you have the ability to choose backups from at least the past 3 days and have backups available for at least 2-3 weeks. At minimum! If your host doesn’t offer this, you can use a plugin like UpdraftPlus to configure backups. For example, set it to create backups once a day or every two days, with a retention policy of 10 backups and a minimum of 4 weeks. (Keep in mind that you’ll need sufficient server disk space or consider storing backups externally.)
  4. Update in a timely manner: No matter how good the security is, keep your theme, plugins, and WordPress itself up to date. Certain vulnerabilities can provide hackers with ample opportunities that security measures cannot counteract, risking the functioning of your website.
  5. Host one WordPress installation on a hosting package: It’s common for a test installation or an old blog to remain active. Hack scripts test your domain name for old installations to gain access to the server. Examples of folder names they search for include “old,” “new,” “blog,” “wp,” and “wordpress.” Additionally, WordPress sites can easily show up in search engines like Google, including old sites and test installations. So, don’t leave them unattended!
  6. Ensure you have a reliable web host: Some web hosts lag behind in maintenance or use outdated PHP versions. Hackers frequently discover vulnerabilities that require regular updates to server software. Make sure your host applies updates in a timely manner.
  7. Use a strong password: It goes without saying, use a strong password. But how often do people use passwords that are in the dictionary, like “fridge7” or the name of a pet? Even worse, some people use the same password to log in to multiple websites. Don’t do that! If a website, not even yours, gets compromised, those usernames and passwords will be exposed. Scripts will pick them up and attempt to use them on any website they can associate with the username. Use a long and unique password or consider using a password manager like LastPass or Dashlane.

A chain is only as strong as its weakest link, so make sure there are no weak links in the security of your website!

WordPress Updates – 10 things you need to know

/0 Comments/in , ,

The 10 Crucial Points About WordPress Updates You Should Know

Every owner of a WordPress website is familiar with it: the frequent notifications about new updates. Although they may seem annoying, WordPress updates are essential for the security and functionality of your website. In this article, we will discuss the ten most important things you need to know about WordPress updates.

Why are updates necessary?

WordPress is an open-source CMS, which means that developers from all over the world are constantly working on improvements. Updates often include important features, bug fixes, and security updates that help your website run smoother and safer.

Types of updates

There are three types of WordPress updates: core updates, theme updates, and plugin updates. Each type has its own specific characteristics and requirements.

WordPress core updates

Core updates involve changes to the basic code of WordPress. They can include new features, bug fixes, or address security issues. It is always recommended to perform these updates to keep your website secure and efficient.

WordPress core updates are developed by a large group of selected programmers from Automattic (the company behind WordPress) in collaboration with the active WordPress community.

WordPress updates undergo extensive testing and are released in three variants:

  1. Quick patches
    If a security vulnerability is discovered, they quickly create an update that fixes it. These quick patches can be developed in 1 day (or night) and in case of high risk, even forcefully implemented!
  2. Minor releases
    These are additions to the versions. On average, they include between 10 and 20 minor adjustments.
  3. Major releases
    Also known as major releases. These incorporate innovative improvements. For example, activating the Gutenberg editor to replace the Classic editor or introducing new menu structures.
    These versions occur relatively infrequently; at the time of writing, we are on WordPress 6+, which corresponds to 6 major releases.

Theme updates

Theme updates usually add new features, improve compatibility with the latest version of WordPress, and address any issues. Since themes play a significant role in how your site looks and functions, it’s important to perform these updates in a controlled manner.

For example, we create backups, screenshots, or even a staging test environment before applying theme updates.

Plugin updates

Plugins are modules that add additional functionality to your website. Plugin developers regularly release updates, sometimes even weekly, to fix compatibility issues, add new features, or address security vulnerabilities.

Now you understand that with 20 to 30 plugins and the weekly updates of some plugins, you may easily see 20+ updates within a week when you log in to your WordPress website.

Automatic updates

WordPress has the option to enable automatic updates for both the core, themes, and plugins.

While this can be convenient, it is also risky – and not recommended for large, high-traffic websites – as automatic updates can sometimes lead to

compatibility issues or conflicts between different components.

Updating process

When performing updates, it is crucial to follow a well-defined process. This involves creating backups, testing updates on a staging environment, and then applying them to the live site.

Following a systematic update process helps you identify and fix any issues before they affect your website’s performance or security.

Keeping track of updates

To stay on top of updates, you can monitor notifications in your WordPress dashboard, subscribe to newsletters or blogs that provide updates on WordPress news, or use monitoring tools that notify you when updates are available.

Regularly checking for updates and staying informed about the latest changes is crucial for maintaining a secure and optimized website.

Conclusion

WordPress updates are vital for the security and functionality of your website. By staying informed about updates and following a proper update process, you can ensure that your WordPress site remains secure, up-to-date, and optimized for the best performance.

Leave Updates, Security, and Maintenance to Us

At WP Security, we understand how crucial WordPress updates are for the security and functionality of your website. Here are some compelling reasons why you should consider engaging our services to manage security and updates:

  1. Time and Convenience
    Performing updates can be time-consuming, especially if you are not technically inclined. At WP Security, we have years of experience and dedicate ourselves to the security and updates of WordPress websites seven days a week. We are highly skilled in this process and can easily take care of it for you, freeing up your time for what truly matters: your business, your hobbies, and your leisure time.
  2. Security Requires Specialization
    The world of security is constantly evolving at a rapid pace. Hackers and hackbots from around the globe are constantly engaged in brute-force attempts to gain control of countless websites for selfish purposes such as black-hat SEO and the sale of shady products that yield substantial profits. We stay up to date with the latest security patches and updates, vulnerabilities, and techniques used by online criminals. This allows us to promptly, proactively, and effectively apply updates and security solutions to your website. Additionally, we possess tools to monitor WordPress websites, which is crucial for ensuring security.
  3. Troubleshooting
    In the event of problems arising during an update, we can quickly identify and resolve them. With our in-depth knowledge of WordPress, we can proficiently address most issues, roll back updates if necessary, and expertly resolve errors.
  4. Advice and Support
    We can guide you through the update processes and provide advice on best practices for your specific site. We can also offer guidance on specific plugins and features.

Of course, you are now interested and eager to engage our services to secure, maintain, and update your WordPress website!

Please contact us, and we will discuss the best options for your WordPress website!

Elementor – is that still something?

/0 Comments/in , ,

Elementor is a so-called Page Builder. You create complete pages with it.

Yeah but, that’s what we have Gutenberg for, right? That comes standard in WordPress these days!
Well, Gutenberg came about in the 2020s, and elementor in 2016. You notice that tremendously, Elementor currently works even more pleasantly than the (meanwhile built into WordPress) Gutenberg editor.

Installing Elementor

You can simply find Elementor in the list of plugins from WordPress.org
Installing it is a piece of cake.

In your admin > Plugins > New plugins – Enter elementor in the search box. Click Install Now and then Activate.

elementor installeren

Using Elementor

Once activated, you can go to a page or post and start using the Elementor content builder.
– Click “Edit with Elementor” if the Elementor layout does not appear immediately.

elementor aanzetten

Drag and go!

If Elementor’s description is to be believed, it is a matter of dragging and dropping elements, modifying them and saving them.

elementor voorbeeld

Does elementor really work that easily? Um, YES!
This just works incredibly well and easily.
I have been using Elementor for no more than 10 minutes, and I get all the elements exactly the way I want them. Width, height, etc. Text in, image next to it. It works tremendously intuitively.

I’m a website nerd, keep in mind that you need to take some time to do it yourself if you don’t already have basic experience with page builders 🙂

Tip

If you want to put elements next to each other you first use a column.
It’s called an “inner Section” in Elementor.

columns in elementor

Conclusion – The elementor page builder, is it still something?

Yes, this works well. I must admit that I am positively surprised.

[press-graphic]I use this pagebuilder when a website requires a lot of customization, I’m used to this builder and can’t live without it. It’s just which one you started using first if you ask me[close-press-graphic].

If you have any tips or suggestions about the Elementor page builder – let me know in the comments below!

Customize styling through WordPress’ CSS Customizer

/0 Comments/in , ,

What is WordPress’ CSS customizer?

The CSS customizer allows you to add CSS to your website.

What on earth is CSS!

CSS, Cascading Style Sheet … that name doesn’t really make it clear.
STYLING!

With HTML elements you display data in your website, and with CSS you style those elements.

So you want to make changes to the style of your website? Then you write a piece of CSS.

Why would I do that with the CSS Customizer?

The Customizer has color-coding that makes it easier to see if your code is written correctly. The Customizer also provides a LIVE preview view where you can see the changes immediately, so you can pre-view it before you Publish it.
You can instantly see if your CSS styling code is working!

The screenshot below shows a piece of CSS written in the Customizer.
You can see here the ID, Class and an H2 title element that I made red with the CSS for example.

customizer

Wanneer gebruik je de CSS Customizer van WordPress?

  1. Als je de vormgeving van je website snel wilt aanpassen
  2. Als je huidige thema geen beheerpaneel heeft waar je styling kunt aanpassen
  3. Als je geen Child thema wilt aanmaken
  4. Als je geen toegang hebt tot de styling & Serverbestanden

Let op!

When do you use WordPress’ CSS Customizer?

  1. If you want to quickly change the styling of your website
  2. If your current theme does not have an admin panel where you can customize styling
  3. If you do not want to create a Child theme
  4. If you do not have access to the styling & Server files

Notice!

To use WordPress’ CSS Customizer, it is important that you have experience with CSS.
CSS is the code language used to define the design, color and dimensions of a website.

The CSS you write in the Customizer will be loaded inline at the top of your website’s code. As a result, this CSS overrides the styling used by your theme.

You can also kill your website graphically with it, in which case it’s just a matter of deleting the written CSS, but keep in mind.

The benefits of the CSS Customizer

  • You immediately see what changes on the frontend of your website
  • The styling remains, even with theme updates
  • You don’t need to have server access or a code editor
  • The CSS code has clear code formatting in color
  • You can switch views: desktop, tablet and smartphone format
  • HTML styling with CSS in practice

I can see you thinking: HOW do I know WHAT to style!

In order to customize the HTML elements of your website with CSS, you obviously need to know what the elements are called. After all, you grab them by ID or CLASS name.

Therefore, open your website using an Element Inspector.
Most browsers (chrome, Firefox and more) have that option, you right-click on a particular part of your website and then choose Inspect Element – Sometimes you have to repeat this 2x to get a particular element.

Tip: You can of course open the Element Inspector in a different tab, or preferably on a different monitor because then you simply see more. After all, you only want to know the name of an element.

The screenshot below shows the CSS Customizer and the Element Inspector open on the far right.

element-inspector

Okay, you now know that there is a CSS Customizer in WordPress. You know that you can put CSS in there that you can use to customize the design of your website.

Now to write the CSS!
By now, of course, every programmer has long clicked away from this article and is happily adding CSS.

But I can’t write CSS!

Are you an enthusiastic website owner who has no idea how to write CSS?
Then you can commission us to modify a certain element with CSS. In fact, we write CSS as easily as the ABC.

Click here to put us to work*.
* please note, sometimes we are busy so we cannot provide the service. Security and recovery of hacked WordPress websites is our priority.

I want to learn how to write CSS

You can do that at w3schools.com
Currently there are free classes to learn CSS. (In english)
Click here to learn how to write CSS.

Saving changes in the CSS Customizer

Only when you click “Publish” – is the CSS saved in your website and displayed for new visitors! So don’t forget to press that button after writing CSS.

opslaan

Do you also need to upgrade from PHP 7.4?

/0 Comments/in

Did you get an email from your hosting company telling you to raise the current PHP version? Or that they are raising the PHP version for you soon?

What does this mean for you? Is raising the PHP version really necessary? What now if your website crashes on php 8 and higher?

We are going to answer this for you!

Is raising PHP version really necessary?

Yes, the reason is that PHP 7.4 is no longer supported as of November 28, 2022. Thus, there will be no more security updates for PHP 7.4 from this date.

How big an impact does PHP have on your website?

PHP is a programming language in which most of WordPress is written.
Every element in WordPress, every piece of information in your website is processed by PHP. And additionally a bit by html, css and some ajax/jQuery.

What should you do with PHP version 7.4 or lower?

If your web host expects you to increase the php version on the server, it is a matter of logging into your hosting panel, or directadmin/cpanel or plesk and going to the php settings there.
You will often see a dropdown that shows 7, 7.4 or in the worst case even 5.6.
Set it to 8.0 or preferably the latest one like 8.4 or higher.

Can’t figure it out? Consult the hoster’s documentation, contact their support department or hire a professional to do it for you.

But what if your site doesn’t work on PHP 8.0 or higher?

Some themes and plugins are not updated by the developers. Those themes and plugins then still work on PHP 7 but crash when you switch to PHP 8 and above….

How do you know if your website is not ready for php 8.0 and higher?

If there are plugins or themes on your site that have not been fully updated, chances are that this will cause the following error message on one of your pages:

What to do with this critical error?

This error message that WordPress shows you by default will not help you any further.

To understand where the error is occurring, you can look in the logs:

  1. The error log at your host
    Consult the error log at your host. What is the error log? The error log is the log file that contains the PHP errors. This contains not only the information about the specific error and where it specifically goes wrong, but also the path in that error code then tells you where it goes wrong.
  2. The WP Debug mode
    Another option is to set WP_DEBUG to “true” in the wp-config.php file. This file is located in the folder where your WordPress is installed on the server. You can access the files via (S)FTP or if your host’s control panel has a file management option, you can also make changes that way.

The error usually comes from a theme or plugin… that hasn’t been updated yet.

Make sure all plugins and your theme are updated. And when possible, only perform the PHP update after that. If everything in your website is up to date, but still errors occur due to 1 of the plugins or theme…. Contact the developer of the plugin or theme.

If they do not respond, do not offer a solution, or indicate that the problem is not caused by them, you can contact a professional who may be able to solve the error for you.

What is an SQL injection in WordPress?

/0 Comments/in ,

An SQL injection targets the WordPress database. In the process, data is added, modified or just retrieved – by hackers! What is the danger of an SQL injection? How does a hacker earn from an SQL Database injection? What is the danger in an SQL injection? And what can you do against an SQL injection? You can read about it in this article!

What is the danger of an SQL injection?

  1. An SQL injection allows a hacker to add data to the database
    The hacker injects a new WordPress user, an administrator.
    This allows him to log into your website’s backend and do anything he wants.
  2. Through an SQL injection a hacker can modify information in your database
    The hacker can thus modify the existing administrator accounts, the password is changed and thus the hacker can simply log into the back-end of WordPress.
  3. A hacker can delete information from your database
    This may not be the biggest problem of the 3. In fact, it is rare because there is nothing to gain for the hacker. But if you lose your posts and pages … and you don’t have a backup … you still have a huge problem!

How does a hacker earn from an SQL Database injection?

When you know why a hacker does this, you understand that the risk of an SQL injection is something you absolutely must avoid.

Here we discuss some types of websites, and the common injections:

Suppose you have a web shop
Then an SQL injection can cause your payment details to be changed TO THOSE OF THE HACKER!
The consequences
> Malware enters the website that you have to remove.
> The customer has paid so you have to deliver your product or service.
> You don’t get paid a dime.
> The scumbag (the hacker) gets the money deposited into his account.

Suppose you have a small business website
Small business owners are so not easily aware of the danger, but also underestimate what it costs if visitors refer the website to another unsavory website.
The consequences.
> Malware gets into the website that you have to remove (or have removed)
> The hacker redirects visitors with a redirect script.
> You lose your visitors, who can no longer purchase services from you. Visitors have absolutely no idea why your website is off their screen.
> Visitors no longer return to your website.
> The hacker has a website., web shop or an SEO client where all the visitors go.

In the case of a large corporate website
It took a lot of time to set up a business with a good reputation, there are a lot of visitors. An advertising (SQL database) injection unfortunately changes.
The consequences.
> Malware enters the website that you have to remove (or have removed).
> Visitors get to see advertisements or are redirected.
> You have lost your new potential customer.
> The established customer experiences that you don’t have your “online business” in order.
> Your reputation (ranking) in Google goes down, resulting in fewer visitors.

The risk calculator!

I haven’t added this before in the previous 300+ articles, but to add nuance and put the risks in perspective, herewith THE RISK CALCULATOR.

You have:

  • 5 plugins – Don’t worry, but keep them up to date and WordPress of course too!
    10 plugins – Pay close attention to which ones you use (wpscan.com)
    15 plugins – No problem yet, watch wpscan.com, update them, delete plugins that are no longer updated by plugin builders.
    20 plugins – I hope you have a web shop? For an informative website, limit the number as much as possible. Keep plugins up-to-date, check monthly wpscan.com to see if they are still safe.
    25 plugins – Then get someone to maintain your website. You run a lot of risk at 25 plugins and more. Reduce the number, or hire a security person who will check everything for you, update, check your website status in Google, scan your website regularly.
    30 plugins and more – Can be done, but get someone to maintain your website intensively!!!

What can you do against an SQL database injection?

  • BACKUP – Make sure you have daily, weekly or MINIMUM monthly backups.
  • SCAN – It is always recommended to scan your website monthly with the Sucuri malware scanner & Isithacked.
  • EXPERT – You’re going to forget to scan, hire someone to do that 7 days a week. (WPProtect, or another).
  • INSTALL A SECURITY SPLUGIN – Not 2, no. Just 1. Think WordFence, iThemes, Sucuri. And configure those properly according to your website.