Title: wpbugfix's Replies | WordPress.org

---

# wpbugfix

  [  ](https://wordpress.org/support/users/wpbugfix/)

 *   [Profile](https://wordpress.org/support/users/wpbugfix/)
 *   [Topics Started](https://wordpress.org/support/users/wpbugfix/topics/)
 *   [Replies Created](https://wordpress.org/support/users/wpbugfix/replies/)
 *   [Reviews Written](https://wordpress.org/support/users/wpbugfix/reviews/)
 *   [Topics Replied To](https://wordpress.org/support/users/wpbugfix/replied-to/)
 *   [Engagements](https://wordpress.org/support/users/wpbugfix/engagements/)
 *   [Favorites](https://wordpress.org/support/users/wpbugfix/favorites/)

 Search replies:

## Forum Replies Created

Viewing 3 replies - 1 through 3 (of 3 total)

 *   Forum: [Plugins](https://wordpress.org/support/forum/plugins-and-hacks/)
    In
   reply to: [[3CX Free Live Chat, Calls & Messaging] Website still hijacked – After uninstall & update](https://wordpress.org/support/topic/website-still-hijacked-after-uninstall-update/)
 *  [wpbugfix](https://wordpress.org/support/users/wpbugfix/)
 * (@wpbugfix)
 * [6 years, 10 months ago](https://wordpress.org/support/topic/website-still-hijacked-after-uninstall-update/#post-11832046)
 * As I posted before, you must never ever install any plugin on your production
   site without first testing it “offline on a local server” — without connection
   to internet. So this way you can block and trap any vulnerabilities, look all
   over plugin and strip out any suspect code, and plug vulnerabilities. It shame
   many people just install plugins on their live sites without doing forensic look
   at the code. Huge mistake in this age of malware and exploits. Take your security
   in your own hands and trust no plugin.
 *   Forum: [Plugins](https://wordpress.org/support/forum/plugins-and-hacks/)
    In
   reply to: [[3CX Free Live Chat, Calls & Messaging] Malware detected on the last version](https://wordpress.org/support/topic/malware-detected-on-the-last-version/)
 *  [wpbugfix](https://wordpress.org/support/users/wpbugfix/)
 * (@wpbugfix)
 * [6 years, 10 months ago](https://wordpress.org/support/topic/malware-detected-on-the-last-version/#post-11832040)
 * As I posted before, you must never ever install any plugin on your production
   site without first testing it “offline on a local server” — without connection
   to internet. So this way you can block and trap any vulnerabilities, look all
   over plugin and strip out any suspect code, and plug vulnerabilities. It shame
   many people just install plugins on their live sites without doing forensic look
   at the code. Huge mistake in this age of malware and exploits. Take your security
   in your own hands and trust no plugin.
 *   Forum: [Plugins](https://wordpress.org/support/forum/plugins-and-hacks/)
    In
   reply to: [[3CX Free Live Chat, Calls & Messaging] Vulnerabilities fully fixed?](https://wordpress.org/support/topic/vulnerabilities-fully-fixed/)
 *  [wpbugfix](https://wordpress.org/support/users/wpbugfix/)
 * (@wpbugfix)
 * [6 years, 10 months ago](https://wordpress.org/support/topic/vulnerabilities-fully-fixed/#post-11832036)
 * Never ever install any plugin on your production site without first testing it“
   offline on a local server” — without connection to internet. So this way you 
   can block and trap any vulnerabilities, look all over plugin and strip out any
   suspect code, and plug vulnerabilities. It shame many people just install plugins
   on their live sites without doing forensic look at the code. Huge mistake in 
   this age of malware and exploits.

Viewing 3 replies - 1 through 3 (of 3 total)