New to the community? Start here

SQL injection Protection in WordPress

Hi,
Does wordpress have protection against SQL injection attacks? Does Defender protect against this?

Thu, 3 Oct 2019 21:45:42
  • Nithin Ramdas
    • Support Wizard

    Hi cornelius_butler ,

    Does wordpress have protection against SQL injection attacks? Does Defender protect against this?

    There are many use case for SQL injection to occur, one common aspect for SQL injection to occur would be when there aren’t proper escaping or validation when saving the data to the database. WordPress by default ensure there isn’t any such codes or scripts running in the system and makes sure security patches are implemented asap for any use cases.

    In general, making sure WordPress core, plugins, and themes are updated to the latest version would be the initial step to prevent SQL injection.

    If you meant an SQL injection firewall, there aren’t any specific settings for a firewall in WordPress nor with Defender regarding this at the moment.

    Our team already looking forward to implementing firewall down the road for Defender, at the moment there isn’t any exact ETA regarding these.

    Regards,
    Nithin