Learn
Learn
Close

What is 'They Ask, You Answer'?

A revolutionary approach to driving more sales from your inbound marketing.

Learn MoreLearn More

Free Courses in IMPACT+

Dozens of sales, marketing, and content courses inside IMPACT+. Start learning now.

See all coursesSee all courses
Events
Events
Close
IMPACT+ Membership
IMPACT+ Membership
Close
Services
Services
Close

Services Overview

See how you can dramatically increase your inbound leads and sales.

Services Overview

Digital Sales and Marketing Mastery

Fast track your team’s success with IMPACT's most popular service.

Digital Sales and Marketing Mastery

Web Design

Launch a beautiful website that consistently generates leads and revenue.

Web Design

Virtual Sales Training

Equip your sales team with comprehensive training designed to help them close more deals in today's virtual-first world.

Virtual Sales Training

HubSpot Training & Implementation

Train your company to take ownership of HubSpot and get the most out of your investment.

HubSpot Training & Implementation

Case Studies

See dozens of examples of companies succeeding with Digital Sales and Marketing Mastery and They Ask, You Answer.

Case Studies
Become a Certified Coach
Become a Certified Coach
Close

These 8 WordPress plugins are most vulnerable to hackers in 2020

These 8 WordPress plugins are most vulnerable to hackers in 2020 Blog Feature

Marc Amigone

Director of Sales, HubSpot Alumni, 8+ Years of Marketing & Business Development Experience

March 9th, 2020 min read

According to a report from ZDNet, February 2020 saw a noticeable increase in hacking attempts on WordPress websites.

Given WordPress’ ubiquitous presence across the internet (36% of all websites are built on WordPress according to W3Techs), hackers have lots of opportunities to exploit weaknesses and extract valuable information.

Being an open-source system, WordPress always has and always will be vulnerable to these types of incidents. It’s the ultimate trade-off of a system designed to open itself to developers and users all over the world with a very low barrier of entry. 

Individuals and businesses can build a robust website on the WordPress platform and utilize plugins developed for a wide variety of purposes, but maintaining those websites and especially the plugins is a labor-intensive, yet critically important, task.

So how do you know if your website is vulnerable to attack based off this information? It’s never a bad time to go into your WordPress setup and make sure all of your plugins are up to date — and if you’re not using a secure hosting platform like WP Engine, it’s also not a bad time to look into it. 

WordPress plugins most at risk

ZDNet focused its report on eight popular plugins that are providing hackers the most opportunities; so if any of these are installed on your website, stop what you’re doing and go update them:

Duplicator (1 million+ installs)

Duplicator successfully gives WordPress users the ability to migrate, copy, move, or clone a site from one location to another, and also serves as a simple backup utility.

Duplicator handles serialized and base64 serialized replacements. Standard WordPress migration and WordPress backups are easily handled by this plugin as are zero downtime migrations.

ThemeGrill Demo Importer (200,000 installs)

ThemeGrill Demo Importer allows users to import ThemeGrill official themes demo content, widgets, and theme settings with just one click.

Profile Builder Plugin (65,000 installs)

A plugin that generates shortcodes for creating front-end login, user registration, and edits profile forms making the process simpler and easier for end-users.

Flexible Checkout Fields for WooCommerce (20,000 installs)

With this plugin, you can edit the default WooCommerce checkout fields (change labels, hide, and delete) or add your own.

ThemeREX Add-ons

If you’re using a ThemeREX theme, check out any add-ons or plugins you’ve installed to make sure they’re up to date.

Async JavaScript (100K installs)

This plugin allows you to control when JavaScript loads or doesn’t load on your pages to protect load times and increase site performance.

10Web Map Builder for Google Maps (20k installs)

10Web Map Builder for Google Maps allows users to add unlimited maps to their website.

Modern Events Calendar Lite (40k installs)

Modern Events Calendar is an events management plugin used for displaying events calendars on websites.

WordPress site security

At IMPACT, we often recommend the HubSpot CMS to our clients to avoid vulnerabilities created by WordPress plugins. That being said, HubSpot isn’t a viable option for every business’ CMS, so we develop dozens of websites on WordPress each year as well.

For any website we build on WordPress, we stipulate that our clients have to use WP Engine as their hosting platform to protect against attacks.

WP Engine offers security features such as monitoring plugins, ensuring any that are out of date are updated and notifying their customers of vulnerabilities as they emerge.

It’s never a bad time to do an analysis of your website’s security, whether you use WordPress or not. The internet can be a dangerous place, so following best practices to protect your business’ data is never a bad idea.

Want to learn more about digital sales and marketing?

Master digital sales and marketing when you join IMPACT+ for FREE. Gain instant access to exclusive courses and keynotes taught by Marcus Sheridan, Brian Halligan, Liz Moorehead, Ann Handley, David Cancel, Carina Duffy, Zach Basner, and more.

Sign up for free
Take a peek

Access hundreds of FREE courses and keynotes

Free Course
Digital Sales & Marketing Framework for Today’s Buyers
By: Marcus Sheridan
View Course Preview View Course Preview
Free Keynote
A New Way to Compete & Win
By: Brian Halligan
View Course Preview View Course Preview
Free Virtual Keynote
How To Genuinely Feel Confident, Be Likable, And Build Trust On Camera
By: Liz Moorehead
View Course Preview View Course Preview
Free Keynote
The Future of Marketing is Conversational​
By: David Cancel
View Course Preview View Course Preview
Free Deep Dive
HubSpot On a Budget: Getting Started with HubSpot Starter Hubs
By: Courtney Caldwell
View Course Preview View Course Preview
Free Course
Assignment Selling: Content is Your Greatest Sales Tool
By: Marcus Sheridan
View Course Preview View Course Preview
Free Keynote
The Big, Bold, Brave New World of Marketing​
By: Ann Handley
View Course Preview View Course Preview
Free Course
Investing in Incredible Digital Sales and Marketing Results
By: Chris Duprey
View Course Preview View Course Preview
Free Course
How To Show Your Content Makes Money With HubSpot Marketing and Sales Hubs
By: Liz Moorehead
View Course Preview View Course Preview
Free Virtual Keynote
The Visual Sale
By: Marcus Sheridan & Tyler Lessard
View Course Preview View Course Preview
Free Keynote
Marketing Tech: What’s Now, What’s Near and What’s Not Anytime Soon?​
By: Dharmesh Shah
View Course Preview View Course Preview
Free Course
Inbound Lead Generation & Conversion Optimization
By: Carina Duffy
View Course Preview View Course Preview
Free Virtual Keynote
Fundamentals of Videography: You Can Be a Great Videographer Too
By: Zach Basner
View Course Preview View Course Preview
Free Deep Dive
The Ultimate Customer Service Toolkit for Any Budget
By: Andriti Gulati
View Course Preview View Course Preview
Free Course
6 Topics Subject Matter Experts Need to Address
By: Kevin Phillips
View Course Preview View Course Preview
Free Keynote
Fanocracy: The Power of Making Business Personal​
By: David Meerman Scott
View Course Preview View Course Preview
Free Keynote
The Power of Pillar Content
By: Liz Moorehead
View Course Preview View Course Preview
Free Keynote
SEO for the Future
By: Franco Valentino
View Course Preview View Course Preview
Free Course
Fundamentals of Social Media Marketing
By: Stephanie Baiocchi
View Course Preview View Course Preview
Free Deep Dive
A Practical Guide To Video Graphics
By: Colton Trcic
View Course Preview View Course Preview
Free Session
How To Get Your Community To Know, Like, And Trust You With Video
By: Marki Lemons Rhyal
View Course Preview View Course Preview
Free Course
Video Sales and Marketing Strategy
By: Zach Basner
View Course Preview View Course Preview
Here Are Some Related Articles You May Find Interesting

Want to Contribute Content to impactplus.com? Click Here.

IMPACT+ Sign Up
A FREE online learning community with on-demand courses, hundreds of expert-led sessions, thousands of your peers ready to support you, and much more.
Check it out
The tools, education, and community you
need to master They Ask, You Answer.
Check it out
The tools, education, and community you need to master They Ask, You Answer.