Why are abandoned plugins a major risk?

They may never receive patches for known vulnerabilities

They increase site loading time

Which of the following is NOT a prevention method against brute-force login attacks?

Using the username "admin" with a weak password

Two-Factor Authentication (2FA)

An attacker tries thousands of passwords on a WordPress login page until he guesses the correct one. What is the best protection?

Enable 2FA and rate-limiting login attempts

WordPress Security Quiz

Authored by esmael mamdouh

Information Technology (IT)

Professional Development

Used 1+ times

AI Actions

Add similar questions

Adjust reading levels

Convert to real-world scenario

Translate activity

More...

Content View

Student View

12 questions

Show all answers

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Which of the following is a typical WordPress Core vulnerability?

Outdated REST API exposing sensitive data

Missing alt text in images

CSS not rendering properly

Theme not loading correctly

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What sensitive file in WordPress Core must be protected to avoid database credential leaks?

style.css

functions.php

wp-config.php

index.php

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

A WordPress site has not been updated for over 2 years. Attackers successfully used a known exploit to gain admin access. What caused the breach?

Zero-day vulnerability

Misconfiguration of SSL

Outdated Core not patched

Strong password policy

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Why are free themes from untrusted sources dangerous?

They cannot be customized

They may contain hidden malicious code or backdoors

They slow down the website only

They use too many colors

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Which of the following is considered poor coding practice in WordPress themes?

Escaping HTML output

Using wp_kses() for filtering

Hard-coded admin credentials in PHP files

Validating input before saving

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

A student downloads a free theme. After installing, attackers upload malicious PHP files through the theme’s unsecured file upload function. Which vulnerability is this?

Cross-Site Scripting (XSS)

Remote File Inclusion (RFI)

SQL Injection

Directory Traversal

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Which plugin vulnerability was exploited in the famous Slider Revolution attack?

CSRF

File Upload vulnerability

SQL Injection

XSS

Access all questions and much more by creating a free account

Create resources

Host any resource

Get auto-graded reports

Continue with Google

Continue with Email

Continue with Classlink

Continue with Clever

or continue with

Microsoft

Apple

Others

Already have an account?

Similar Resources on Wayground

15 questions

Simulação da Prova

Quiz

•

Professional Development

15 questions

Microsoft IT Pro Meetup - July

Quiz

•

Professional Development

15 questions

Understanding BOM in JavaScript (11R)

Quiz

•

Professional Development

9 questions

Kuis

Quiz

•

Professional Development

9 questions

[FE] Ice Breaking - Introduction to Next JS and Routing

Quiz

•

Professional Development

10 questions

Keamanan Siber-Pre Test

Quiz

•

Professional Development

10 questions

KPPKE-SOC

Quiz

•

Professional Development

15 questions

Pre-test Quiz

Quiz

•

Professional Development

Popular Resources on Wayground

10 questions

5.P.1.3 Distance/Time Graphs

Quiz

•

5th Grade

10 questions

Fire Drill

Quiz

•

2nd - 5th Grade

20 questions

Equivalent Fractions

Quiz

•

3rd Grade

15 questions

Hargrett House Quiz: Community & Service

Quiz

•

5th Grade

20 questions

Main Idea and Details

Quiz

•

5th Grade

20 questions

Context Clues

Quiz

•

6th Grade

20 questions

Inferences

Quiz

•

4th Grade

15 questions

Equivalent Fractions

Quiz

•

4th Grade

Discover more resources for Information Technology (IT)

16 questions

Parallel, Perpendicular, and Intersecting Lines

Quiz

•

KG - Professional Dev...

35 questions

World War Two 8th G

Quiz

•

6th Grade - Professio...

7 questions

DOL REC: Solutions & Solubility Curves

Quiz

•

Professional Development

20 questions

Block Buster Movies

Quiz

•

10th Grade - Professi...

20 questions

NCAA Logo Quiz

Quiz

•

Professional Development

WordPress Security Quiz

Which of the following is a typical WordPress Core vulnerability?

What sensitive file in WordPress Core must be protected to avoid database credential leaks?

A WordPress site has not been updated for over 2 years. Attackers successfully used a known exploit to gain admin access. What caused the breach?

Why are free themes from untrusted sources dangerous?

Which of the following is considered poor coding practice in WordPress themes?

A student downloads a free theme. After installing, attackers upload malicious PHP files through the theme’s unsecured file upload function. Which vulnerability is this?

Which plugin vulnerability was exploited in the famous Slider Revolution attack?

Why are abandoned plugins a major risk?

A developer’s WordPress.org account was hacked, and attackers uploaded a backdoored update to a popular plugin. Thousands of websites got compromised after updating. What type of attack is this?

What is the main target of brute-force attacks in WordPress?

Access all questions and much more by creating a free account

Similar Resources on Wayground

Popular Resources on Wayground

Discover more resources for Information Technology (IT)