How we closed almost 1000 plugins in a month - a story of the biggest WordPress bug bounty hunt #577
Labels
Comments
|
Crazy numbers. |
|
That moment when you realize that this is ~1.67% of all the plugins on wp.org repository 😱 |
|
Sounds Insane! |
|
October was an amazing month! |
|
Congrats folks! |
|
Crazy October! |
|
Love it! |
|
Accepted as OSDay25 talk! |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
In October 2024, our usual bug bounty hunt resulted in receiving 1570 valid reports and closing almost 1000 plugins from the official WordPress repository. This huge number looks scary and seems once again to prove the fact that WordPress ecosystem security is poor.But is it? Let's dive deeper into how it all happened, what were the consequences, and what we can learn from this.
The text was updated successfully, but these errors were encountered: