As I see so many scripts trying out wordpress vulnerabilities, it is just a matter of time until one bot will succeed. The only chance I see is to remove those unused themes and plugins, autoupdate wordpress and run weekly backups.<\/p>\n
Another option is to monitor file integrity with this short php script<\/p>\n
\r\n$cmd='find .\/wordpress -type f -exec md5sum {} \\;> .\/hidden\/wordpress.md5';\r\nexec($cmd,$ret);\r\necho "<pre>"; print_r($ret); echo "<\/pre>";\r\n<\/pre>\nResults can be seen with<\/p>\n
\r\n$cmd='md5sum -c .\/hidden\/wordpress.md5 | grep -oh ".*FAILED.*"';\r\n<\/pre>\n\n <\/p>\n
\n CC-BY-NC Science Surf , accessed 06.04.2026<\/span>\n <\/div>","protected":false},"excerpt":{"rendered":"As I see so many scripts trying out wordpress vulnerabilities, it is just a matter of time until one bot will succeed. The only chance I see is to remove those unused themes and plugins, autoupdate wordpress and run weekly backups. Another option is to monitor file integrity with this short php script $cmd=’find .\/wordpress … Continue reading WordPress Integrity: A simple intrusion detection<\/span>