WordPress Needs Its Own Delete Plugins Routine

  • I installed a lot of plugins and later deleted them. They left behind tables, fields and plugin options where I had to manually delete because my options file was over 30 MB.

    The problem is that WordPress is allowing plugin developers the option of deleting their plugins. Some developers are NOT doing this.

    This slows down websites. My pages were taking 32 seconds to load each page before deleted plugin data.

    This causes security problems. Left behind plugin data can be exploited by hackers.

    Please fix this WordPress.

    I am not sure who at WordPress handles this issue so I am posting it here. If I am missing it, please direct me to the correct forum for complaints and improvements to WordPress.

    The page I need help with: [log in to see the link]

Viewing 3 replies - 1 through 3 (of 3 total)
  • Moderator Samuel Wood (Otto)

    (@otto42)

    www.ads-software.com Admin

    Plugins can do a wide ranging variety of different things. So only they can clean up after themselves properly, because they are the ones who know what they’re doing.

    Also having leftover options is not really a risk factor for “hacking”.

    Thread Starter Dietrich

    (@murphylas)

    Totally untrue.

    You can require plugin developers to document all changes to a website. In other words, a log. That log can be used to delete the plugin. Any plugins that do not COMPLETELY remove their plugins should be penalized. Warn them and then ban them from WordPress. There is NO excuse for the sloppy coding of some developers.

    Yes, it is a security problem. My security company scans plugins on my website and is constantly flagging plugins with dodgy behavior.

    So what is your solution?

    You can require plugin developers to document all changes to a website.

    No, you can’t.

    WordPress is an open-source software. Anyone can write and install a plugin on their own site without needing any “blessing” or authorization.

    You can have such requirements as condition for inclusion of the plugin in the official WordPress plugins directory, but it’s technically impossible to enforce any such requirements when people go to 3rd-party sites to download and install a plugin.

    Any plugins that do not COMPLETELY remove their plugins should be penalized. Warn them and then ban them from WordPress. There is NO excuse for the sloppy coding of some developers.

    Sigh.

    You obviously have no idea how open source software like WordPress works.

Viewing 3 replies - 1 through 3 (of 3 total)
  • The topic ‘WordPress Needs Its Own Delete Plugins Routine’ is closed to new replies.

Tags