Stop Confusion


This plugin allows you to check your themes’ presence in WordPress remote repository.

Its aim is to give a simple solution to prevent severe security issues based on an attacker faking a theme update for your theme and taking over your WordPress installation and server.

Indeed, (WordPress 5.8 security fix)[] gave us a new Plugin header to help plugin developers prevent that kind of issue. However, the same solution cannot be applied to theme development at the time of developing this plugin, as there is no “Update URI” header for themes.

“Stop Confusion” checks your theme’s presence in WordPress SVN.

If your theme is not available at the time of the scan, the plugin prevents you from updating the theme from the WordPress admin panel.




以下人員參與了開源軟體〈Stop Confusion〉的開發相關工作。


將〈Stop Confusion〉外掛本地化為台灣繁體中文版


任何人均可瀏覽程式碼、查看 SVN 存放庫,或透過 RSS 訂閱開發記錄