Before change the thumbnails size (important), make you site secure.
It is insecure.
If I inject a string of code in your site url I've your login user name.
If I search the admin aerea is available. Please hidden it asap, and with the username I can attempt to force login.
Directory listing is disabled?
Do you have a strong .htaccess file?
Do you block bot/spiders or other scanner?
Do you block advanced code injection in you url?
What about files and directories permissions (please set asap 444 permissions to wp-config and htaccess file)?
Work on security.
And...
Minify your html/css/js files.
Disable pingback.
Remove meta generator tag from source code... And so so on...
|