The Square Bracket Hack Prevention plugin prevents a simple but very common exploit of WordPress, by adding in a .htaccess rule upon activation preventing hackers from adding a "[" to the URL.
A common attempt at a WPSOS exploit is to add a "[" to a URL, which can often break a site and expose an ability to inject code. This plugin stops it by banning all attempts at adding a "[" to the URL. It does so via adding code to the .htaccess file.
Additionally, upon the uninstallation of the plugin, the line is removed. And if the .htaccess file is not editable, then the admin user is warned.
If you have any suggestions let us know via
http://www.wpsos.io/wordpress-plugin-square-bracket-hack-prevention/
For more information and support, check out:
http://www.wpsos.io/wordpress-plugin-square-bracket-hack-prevention/
The installation and use is very straightforward. You should:
- Upload the folder
square-bracket-hack-prevention
to the /wp-content/plugins/
directory
- Activate the plugin through the 'Plugins' menu in WordPress
NB! If the .htaccess file wasn't writeable during the activation, please make .htaccess writeable, and deactivate and activate the plugin again.