https://thehackernews.com/2017/06/wordpress-hacking-sql-injection.html
Speaking of wordpress since we use that here 🙂 This site basically sums up how vulnerable sites that use
a WordPress plugin are potentially to sql injection related attacks. Hopefully our schools site doesn’t use this
plugin that is causing all sorts of problems.
Donald Hoxhaj says
Hi Brent,
Thanks for sharing your views. WordPress in fact also has many other vulnerabilities. I have personally used it and though it is widely preferred for web application and search development, its security practices are not strong enough to prevent such attacks and this was quite obvious as I read the article. There has to be a lot of stricter procedures that needs to be followed before accepting plugins from users
Younes Khantouri says
Bent,
I won’t be surprised with this number that shows how many websites are infected with SQL injection attacks. I believe these big umber reflects the number of different reasons why people attack sites:
– Money: The goal is collects revenues from people after injecting them with viruses
– Ability to collect sensitive information.
– Ability to damage other organizations or people IT resources in the goal of causing hams that can lead them to lose business or even personalities.