Hauv thaj teb ntawm WordPress kev ruaj ntseg, ”
WordPress Security State White Paper” tso tawm los ntawm
Patchstack tau qhia txog qhov kev txhawj xeeb – kev [In-depth Analysis] nce siab hauv XSS qhov tsis zoo hauv xyoo 2023,
tshwj xeeb tshaj yog qhov nce siab ntawm cov kev pheej hmoo tseem ceeb.
Qhov no yog undoubtedly ib tug wake-up hu rau cov neeg siv
uas tso siab rau WordPress los tsim cov websites los txhawb kev ruaj ntseg.
XSS Vulnerabilities: Qhov Zoo Tshaj Plaws Hauv 2023
Raws li kev txheeb cais, cross-site scripting (XSS) vulnerabilities account
rau ntau npaum li 53.3% ntawm kev tshawb pom tshiab WordPress kev ruaj ntseg vulnerabilities,
ua rau nws muaj feem ntau muaj kev ruaj ntseg txaus ntshai.
Cov kev tsis zoo no feem ntau tshwm 2024 hloov kho tus xov tooj sau los ntawm thoob ntiaj teb sim los ntawm qhov tsis txaus
“sanitization” ntawm cov neeg siv cov ntaub [In-depth Analysis] ntawv nkag, uas yog,
tsis ua haujlwm tiv thaiv cov ntaub ntawv tawm tswv yim uas tsis ua raws li qhov xav tau.
Ntawm lawv, Freemius lub moj khaum ,
kev lag luam e-lag luam tswj hwm los ntawm peb tus neeg sab nrauv,
tau dhau los ua lub hom phiaj ntawm kev thuam pej xeem.
Lub moj khaum koom nrog ntau dua 1,200 XSS qhov tsis zoo,
suav txog 21% ntawm qhov tsis txaus ntseeg XSS tshiab tau tshawb pom thoob plaws xyoo.
Freemius SDK tau siv dav hauv ntau dua 1,200 plugins, uas tau teeb tsa rau ntau dua 7 lab
WordPress qhov chaw, qhia txog qhov hnyav ntawm cov khoom lag luam kev ruaj ntseg teeb meem.
Thaum muaj qhov tsis zoo tshwm sim hauv Freemius lub moj khaum,
nws yuav tsis tsuas cuam tshuam rau
ib qho ze li ntawm ib nrab ntawm cov neeg siv social media uas qhia cov xov xwm tshaj tawm xov xwm cuav, kev tshawb fawb qhia plug-in nkaus xwb,
tab sis kuj cuam tshuam rau txhua tus plug-ins thiab lawv cov neeg siv uas siv lub moj khaum, tsim cov tshuaj tiv thaiv saw.
Qhov feem pua ntawm cov kev pheej hmoo [In-depth Analysis] txaus ntshai tau nce siab
Hauv 2023, qhov xwm txheej yuav hnyav heev.
42.9% ntawm qhov kev tshawb pom tshiab qhov tsis zoo tau raug ntsuas raws li qhov siab lossis qhov tseem ceeb piv rau 13% hauv 2022,
qhov kev dhia no nthuav tawm qhov kev nce ntxiv hauv kev puas tsuaj ntawm qhov tsis zoo rau xyoo no.
Qhov no txhais tau hais tias cov thawj tswj hwm lub vev xaib
ntsib tsis tau tsuas yog cov kev sib tw ntau, tab sis kuj muaj txiaj ntsig zoo.
Ntau tshaj li ib nrab ntawm cov vulnerabilities tsis xav tau kev lees paub
Dab tsi yog qhov kev txhawj xeeb ntau dua tr npe yog tias 58.9% ntawm
qhov muaj peev xwm tshiab [In-depth Analysis] tuaj yeem siv tau yam tsis muaj kev lees paub,
txhais tau hais tias cov neeg tawm tsam tuaj yeem yooj yim tawm tsam yam tsis muaj kev nkag mus rau lub vev xaib.
Qhov pib-dawb nres hom no tso cai rau txoj kev tawm tsam tsis zoo xws li cov neeg hlau phem kom pom tau yooj yim thiab siv cov kev tsis zoo no, ua rau muaj kev pheej hmoo ntawm lub vev xaib raug nyiag.