[wp-hackers] Developer portal
office at wpseek.com
Sat Dec 12 16:57:15 UTC 2009
Though it's not exactly a security checklist, there's a great resource
in the Codex, covering Data Validation, User input handling etc:
On 12.12.2009 17:07, Simon Blackbourn wrote:
> A whole section on plugin security (using wp_nonce, avoiding xss, things to
> be aware of when handling user input, etc.).
> A lot of this is not specific to WordPress of course, but I think a lot of
> self-taught coders (myself included) really first got to grips with PHP
> through writing WordPress plugins and themes.
> An easy to follow security checklist, plus other WordPress-specific info,
> plus links to existing security resources online would have been very
> wp-hackers mailing list
> wp-hackers at lists.automattic.com
More information about the wp-hackers