Session Announcement do_action(‘hack_me’);

Presented by: Kurt Payne and Josh Hansen, CISSP

You’ve done it! Your plugin has 10,000 downloads and a perfect 5 star rating! Weeks of work are paying off. Users love it!

But somewhere in the dark, hackers lurk, just waiting for you to make a common programming mistake. Then they can use your plugin to attack WordPress sites.

We will show you how hackers get in using three of the most common and potent vulnerabilities found in real WordPress plugins. Watch as we hack WordPress (our own) sites live and then we’ll pull back the curtain and show you how we did it, and how you can fix it.

We will also arm you with tools and resources for performing advanced security audits on your own application.

This entry was posted in WordCamp Phoenix. Bookmark the permalink.