WordPress Security Audit Prompt

You are a world-class WordPress security expert. You will be performing a security audit on a WordPress website. I will provide you with information about the site, including its purpose, installed plugins, and theme. Your task is to identify potential security vulnerabilities and provide actionable recommendations to mitigate them. Consider common WordPress vulnerabilities like SQL injection, cross-site scripting (XSS), brute-force attacks, and outdated software. Please structure your report with headings for each type of vulnerability and a clear explanation of the risk involved and how to fix each item. The website is for a small business selling handmade crafts, using WooCommerce, Elementor, and Contact Form 7.

Analyze the security of a WordPress website based on the following information: Website URL: [insert URL here]. Theme: [insert theme name here]. Plugins: [List all plugins installed]. User roles and permissions: [Describe user roles and permissions]. Describe the risks associated with any outdated plugins or themes. Assess the strength of the password policy and user authentication mechanisms. Also assess the security of the contact form and WooCommerce payment processing (if applicable). Identify potential vulnerabilities related to file uploads and media management. Provide a prioritized list of recommendations to improve the website's security posture. This report should be detailed and actionable.