message from wordfence

Looks like he is not talking about WooCommerce itself https://www.wordfence.com/blog/2016/02/three-wordpress-plugin-vulnerabilities-fixes-released/

Hello Mike,
Thank you for the reassurance because I just feel so insecure sometimes with thhe different plugins.

I have had a bad experience with one and I am terrified to click on any links.

What do think is the best way to be secure for our sites and our clients who purchase on our sites?

thank you again,
Kathleen

Just keep up to date – most responsible developers will issue security patches before disclosure.

ok will do thank you.

How about some sort of logo on our sites to reassure buyers?

Should I put up wordfence’s logo and others?

thank you
K

It’s not really likely that most ‘buyers’ know what WordPress is – run your site over HTTPs, and you can use trustseals from the SSL certificate providers perhaps.

Will look at that.

Thank you Mike

K

Hi again Mike

I have run a Stop spammers scan and the scan came up with these threats concerning Woo Commerce ( there were others but I wont put them up here)

On this site I had a problem at Xmas with a bad plug in that created alot of spam emails and I noticed that some of them even tried to login to our site. https://www.thereddoorgallery.org

Does this code look strange to you?
On line 18 this is in red ‘$key(); `

and line 19 this is in red too $clazz(

18.	/home/thereddonv/www/wp-content/plugins/woocommerce/woocommerce.php ?144: return $this->$key();
	19.	/home/thereddonv/www/wp-content/plugins/woocommerce/includes/gateways/simplify-commerce/includes/Simplify/PaymentsApi.php ?137: $object = new $clazz();

I have just received an email from Jetpack saying this site went down and is back up again. It may have been my host site but I haven’t had any news from them yet.

thank you for your help,

K
thank you for looking at this.