Plugins? Don’t!

Plugins? Don’t!
datum-geschreven 9 Nov 2023

That plugins are vulnerabilities for hackers, we have known for a long time. Right? And that plugins are constantly being hacked is well-known among WordPress users.


Then, this is a wake-up call…

  1. WP Super Cache
    Hacked 10 times in 2 years!
    Screenshot_29 Jun. 09 14.20
  2. All in one SEO pack
    Hacked 5 times in 2 years.
    Screenshot_29 Jun. 09 14.19
  3. BB-press
    Hacked every year: 2014, 2015, 2016.
    Screenshot_29 Jun. 09 14.21
  4. WooCommerce
    The list is too long to put down, hacked 21 times in a few years.
    Screenshot_30 Jun. 09 14.24
  5. Nextgen Gallery
    Who hasn’t used it for photo albums?
    Screenshot_30 Jun. 09 14.25
  6. Bonus: Jetpack
    Used by millions of websites but often found vulnerable!
    Screenshot_32 Jun. 09 14.30

And the list of hacked plugins goes on…

There are many plugins that have been hacked, see

Both unknown and the most popular plugins fall victim. Hackers target popular plugins because they know that way they can affect many websites.

Note: Hackers write a script that automatically scans websites on the internet for vulnerable plugins. This happens with hundreds of websites per hour; the hacker is, of course, not manually hacking each website.

What Does This Mean for My WordPress Website?

Use as few plugins as possible and don’t leave them deactivated on the server!

Keep the plugins up-to-date or ensure good security.

Have a backup! This way, you can restore the website to a point before the hackers got in and then update or remove the plugins.

Have You Been Hacked?

If your WordPress website has been hacked, you will need to thoroughly examine WordPress and all files on the server to remove the backdoors and scripts. Then, you’ll need to work hard to secure the website.

Alternatively, you can leave it to us:
Let us restore your hacked WordPress website.

De meeste artikelen worden geschreven door Mathieu Scholtes, de eigenaar van WPBeveiligen. Op de hoogte blijven van het laatste WordPress nieuws? WordPress tips? WordPress aanbiedingen?
Connect dan op Linked-in!

Heb je een vraag? Tip of gedachte? Deel die!

Breng me op de hoogte
0 Reacties
Inline Feedbacks
Bekijk alle reacties