A news realase of WordPress has just been made available and is supposed to fix several security flaws, as explained here on the WP blog.
WordPress got so popular that any security update can actually be crucial, considering the amount of websites using it. Recently a well-known vulnerability allowed a worm to spread around affecting several blogs, according to this article. Still, there’s something more we can do to make our WordPress installation safer.
The WordPress Exploit Scanner extension can scan for well-known vulnerabilities and exploits which might affect your WordPress installation. In order to be used you just need to download, the extension, upload it on you server, active it by the extensions dashboard and a link will pop-up on your general dashboard.
Once you run the extension (it might need a few minutes to complete the task) the report you get is extensive. The plugin analyse in depth every single file, looking for malicious code embedded into standard file. It’s pretty useful, even if a standard report can require some programming knowledge to be fully understood. It’s a very neat tool, I guess it should be included in every WordPress standard setup.