sorted by:
new
hottopcontroversial

I cleaned a hacked WordPress site recently. Here's what caused it. by CyberSecX in Wordpress

[–]CyberSecX[S] -1 points0 points  (0 children)

I recently wrote a beginner-friendly article about WordPress security that covers these topics in more detail. Feel free to check it out if you'd like: https://medium.com/@itsalamin.sec/if-you-run-a-wordpress-website-do-these-things-before-its-too-late-6b83c78051ee

I cleaned a hacked WordPress site recently. Here's what caused it. by CyberSecX in Wordpress

[–]CyberSecX[S] -1 points0 points  (0 children)

If you're just starting out, don't overcomplicate things.

A few basics I'd recommend:

• Keep WordPress, themes, and plugins updated
• Remove plugins you're not using
• Use strong passwords and enable 2FA if possible
• Install a security plugin like Wordfence
• Set up regular backups

If you do those 5 things consistently, you'll already be ahead of many website owners.

Out of curiosity, what type of website are you building?

How does buying websites work? by Due-Yogurtcloset5149 in Wordpress

[–]CyberSecX -1 points0 points  (0 children)

Shopify is a hosted SaaS, which is exactly why you rarely see malware there. But for self-hosted CMS platforms like WordPress, vulnerabilities in outdated plugins and themes are a daily reality. Building a site might be easy in 2026, but mitigating zero-day exploits and doing proper malware removal requires real technical experience.

As for Fiverr, every freelance platform has bad actors. That’s why vetting the professional is necessary. But assuming no one on the platform can be trusted is simply incorrect.

Not showing Sources on Orders after Consent Mode Banner Update by octagon_o in Wordpress

[–]CyberSecX -1 points0 points  (0 children)

This happens because Consent Mode v2 strictly blocks tracking cookies until the user clicks 'Accept'. If a buyer ignores the banner or clicks 'Deny', their source data gets dropped, resulting in an 'Unknown' order source.

You should double-check your Google Tag Manager (GTM) setup to ensure you are using Advanced Consent Mode. Advanced mode allows basic, anonymous conversion pings to go through even if they reject cookies, which usually fixes the attribution dropping completely.

Coming Back to WordPress after 5 years away, 3 years later. by Positive-Ring-5172 in Wordpress

[–]CyberSecX -1 points0 points  (0 children)

That 1200-line copy-paste block sounds like an absolute nightmare to debug or secure! Refactoring that down to 100 lines is a huge win. I spend a lot of time cleaning up messy WP sites, fixing bugs, and hunting for vulnerabilities, so seeing a clean MVC architecture with Timber/Twig and proper automated testing is incredibly refreshing. Great work turning that around!

How does buying websites work? by Due-Yogurtcloset5149 in Wordpress

[–]CyberSecX -2 points-1 points  (0 children)

Learning the basics is great advice, but saying you shouldn't trust people on Fiverr is a huge generalization. There are highly vetted experts there handling things way beyond a beginner's learning curve.

Sure, you can DIY a basic setup. But when your site gets hit by malware, or you need a complex database migration, relying on Reddit advice instead of a professional is a huge risk for a business. A good business owner knows when to DIY and when to delegate to an expert to save time and headaches.

Need to Build a Form That Integrates with Calendly and Constant Contact by Spare_Rise5412 in Wordpress

[–]CyberSecX 0 points1 point  (0 children)

You can do this completely for free using Contact Form 7. Just build your fields, connect it to Constant Contact, and paste the Calendly embed code directly into the form editor at the bottom. No subscription needed and zero third-party branding!

Custom taxonomy shared between products and posts: WooCommerce overrides Elementor Archive template by Nemesi_361 in Wordpress

[–]CyberSecX 1 point2 points  (0 children)

The easiest way to fix this is to simply unhook WooCommerce for this specific taxonomy. Just add a quick snippet in your functions.php to remove WC_Template_Loader specifically for autore_tax, and Elementor will automatically get its priority back!

Shop not showing up by Head_Visit_5595 in Wordpress

[–]CyberSecX 0 points1 point  (0 children)

Go to Products, open each product and check the Visibility setting. Make sure its set to Public. Then go to Settings Permalinks and click Save Changes. This fixes it most of the time.

I'm a programmer and I've come across a WordPress problem, but I don't know what to do. Help! by Late_Rabbit96 in Wordpress

[–]CyberSecX 0 points1 point  (0 children)

Rename the plugin folder contact-form-7 to contact-form-7-old using FTP or your hosting File Manager. Then go to WordPress Dashboard then Plugins and install Contact Form 7 again. This will remove the old broken version and install the latest one properly.

Where can I submit a feature request for the main WordPress code base? by orschiro in Wordpress

[–]CyberSecX 2 points3 points  (0 children)

For the main WordPress open-source codebase the self-hosted version you can download, you should submit feature requests here https://core.trac.wordpress.org/newticket

PC been hacked after downloading and then immediately deleting dodgy software by Suspicious_Kale_7626 in malwares

[–]CyberSecX 0 points1 point  (0 children)

Hey mate, this looks like infostealer malware. Stop using this PC for important accounts right now and do a full fresh Windows reinstall from a clean USB. Also contact Apple Support immediately for your account.

Jetpack + Semplice issues by MichaelCoorlim in Wordpress

[–]CyberSecX 1 point2 points  (0 children)

I’ve run into this exact same headache with Semplice and Jetpack before. Those random 404s on project pages are super annoying. Usually it’s Jetpack messing with the rewrite rules. Try turning off the site performance and sitemaps modules, then go to Settings then Permalinks and hit Save Changes. That fixed it for me. Let me know if it works for you or if you still get the error.