WordPress is a free and open source content management. The application is built around PHP and MySQL. The main feature of WordPress includes a template system and plugin architecture. The primary users of WordPress include blogging, basic mailing list, forums, online store and many more. More than 60 million websites are using WordPress. WordPress is also used in other fields like PDS(Pervasive Display System).
An attacker can exploit a WordPress site that uses a vulnerable theme. A vulnerable theme might make the application vulnerable to attacks like XSS, SQL injection and many more. There are themes like BBE theme, swape theme and many more. These themes are vulnerable to stored XSS and many more attacks. The common method is:-
Beagle recommends the following fixes:-