WordPress Vulnerabilities Blocked by Sucuri Website Firewall (WAF)

By | Sucuri CloudProxy Website Firewall, WordPress | No Comments

WordPress 4.7.2 was released on January 26th and if you’re running your website with this popular CMS, we recommend that you check for updates ASAP.

To do this, login to your admin panel and select Updates

wordpress updates

You will see the version of WordPress you are running and the option to update (if you haven’t already done so).

We also recommend enabling automatic updates on your website.

Earlier in January, our partner Sucuri reported a security issue to the WordPress team – a severe content injection (privilege escalation) vulnerability affecting the REST API. This vulnerability allows an unauthenticated user to modify the content of any post or page within a WordPress site.

They worked closely with the team at WordPress and version 4.7.2 and the updates includes protection against this threat.

Sucuri WAF

If your version of WordPress is up to date, you are protected, however we recommend an extra layer of protection – we use it on all of our sites also.

For just $15 per month, your site will be protected from:

  • Zero-Day Exploits
  • Cross Site Scripting (XSS)
  • Remote File Inclusion (RFI)
  • Local File Inclusion (LFI)
  • SQL Injection Attacks
  • Cross Site Request Forgery (CSRF)
  • Login Form Bypassing
  • Out-Of-Date Software
  • Insecure Plugins
  • Vulnerable Themes
  • Bad GET or POST Methods
  • Insecure Direct Object Reference
  • Drupalgeddon
  • Heartbleed
  • Bash Bug / Shellshock
  • Malicious HTTP Requests
  • Remote Code Execution
  • Malformed Cookie Requests

Sucuri WAF works with any CMS or custom website. Learn how Sucuri protected our WordPress hosted site from 12,000+ attacks in just 6 months. Read More

Try Jelastic for Free. Install Popular Apps in One-Click

By | Jelastic, WordPress | No Comments

Jelastic-MarketplaceJelastic is the only zero code change PaaS that doesn’t require coding to proprietary APIs and it supports ANY app. Java, PHP, Ruby, Node.js or Python environments are rapidly and seamlessly created and you can mix and match your software stacks.

Choose between free Java (Tomcat, GlassFish, and Jetty) and PHP (Apache, NGINX) app servers, as well as SQL (MariaDB, PostgreSQL, MySQL), NoSQL (MongoDB, CouchDB) database servers, and memcached.

To make it easy, we have launched our Jelastic Marketplace where you can choose from hundreds of popular apps such as WordPress, Joomla, Drupal, Jenkins, Alfresco, Magento, SugarCRM, Cyclos 4 PRO, osCommerce, OpenCart and so much more.

Here’s how it works

You don’t need a Jelastic account and it’s FREE to test for 2-weeks. Simply select the app you want to install, type in your email address and click on the blue arrow. In this example, we will install WordPress. Read More