via pluginvulnerabilities.com => original post link
When it comes to determining if a WordPress plugin is secure or not, there is a lot of bad advice out there, much of it coming from security companies you should be able to trust to give good advice. For example, a plugin not having been updated for a certain period of time doesn’t mean it isn’t secure, as someone recently suggested might be the case with a plugin:
Please, can you update the plugin and check is all good? my site is hacked may is cause your plugin don’t update for 2 years. [Read more]