WORDPRESS: SECURITY PRACTICES FOR THEMES

Nonces are your friends First and foremost, a nonce can be defined as a “number used once” to help protect URLs and forms from misuse. WordPress nonces are made up of hash numbers and letters, but they have a limited lifetime after which they expire. They help protect against several types of attacks. For example,