Security risk checking of our WordPress plugins (7) and theme

  • Can anybody recommend any reputable developers/organisations to check the security risk of our plugins (7) and theme (and whether we need to do this at all).

    Over the years we have created a theme (complete with its own settings console) and a number of lightweight plugins for use on our 150 or so clients (ie they are not publicly available on www.ads-software.com)
    However we are not developers so have relied on a variety of freelancer developers to create these.
    We have never reviewed nor updated these plugins whenever a new version of WordPress is released but we do make tweaks and fixes from time-to-time (managed via Kernl).

    I am aware of these but lack the expertise to action anything in it:
    https://developer.www.ads-software.com/plugins/security/
    https://developer.www.ads-software.com/themes/theme-security/

    We would like piece-of-mind that our bespoke plugins and theme are not presenting any security risks for the websites that they are installed on by asking a reputable 3rd party to test, evaluate and recommend security fixes if required.

    PS: I am aware of Wordfence and other security measures to make WordPress more secure so I am not looking for more general solutions in this post.

Viewing 1 replies (of 1 total)
  • Moderator Steven Stern (sterndata)

    (@sterndata)

    Volunteer Forum Moderator

    I found an number of companies that do code reviews via a google search on “wordpress plugin security code review services”. You might also contact companies like WordFence and Sucuri for bespoke services like this.

Viewing 1 replies (of 1 total)
  • The topic ‘Security risk checking of our WordPress plugins (7) and theme’ is closed to new replies.