[wp-hackers] Developer portal

Simon Blackbourn piemanek at gmail.com
Sat Dec 12 16:07:17 UTC 2009

A whole section on plugin security (using wp_nonce, avoiding xss, things to
be aware of when handling user input, etc.).

A lot of this is not specific to WordPress of course, but I think a lot of
self-taught coders (myself included) really first got to grips with PHP
through writing WordPress plugins and themes.

An easy to follow security checklist, plus other WordPress-specific info,
plus links to existing security resources online would have been very


More information about the wp-hackers mailing list