Security of a web application is a critical issue. A secure application not only prevents a developer's efforts from going into vain, but also establishes a reliable repo of your application amongst users. You may choose the most reliable platform to support your web venture, security threats are always going to give you nightmares. Even robust and secure content management systems like Wordpress face threat of being infected by malware. If you are working with a PSD to Wordpress template, there might be several security errs that can endanger your online application. In order to safeguard your Wordpress application, you must know about the common malwares that can be threatening and establish a basic understanding of how they can harm your application. Here's a comprehensive listing of some common malware infections that pose danger for your Wordpress application:

1. 
   Drive-By-Downloads: If you have heard of drive-by shooting, you can consider drive-by download to be the web equivalent of it. This malware is put into your application via some form of script injection, which can be linked to a link injection. If your system is affected by this malware, it is likely to download an additional play load onto the user machine. A common play load informs you that your Wordpress portal has been infected and you need to install some anti-virus software in order to get rid of it. The most common reasons behind the initiation of this infection are compromised credentials, out dated software and SQL injection.
   
2. 
   Backdoors: As the name suggests, this malware allows illegal access to your system through backdoors, where backdoors refer to abnormal methods such as SFTP, FTP, and WP-ADMIN etc. Backdoors are potential threat for your Wordpress system. If they are left untreated they can create havoc on your web server. The main cause of this infection is cross-site contamination wherein two sites on the same server infect each other.
   
3. 
   Malicious Redirects: Evident from its name, malicious Redirects, redirects and takes a user to a malicious website. As of 2011, 55,294 malicious domains were detected on the World Wide Web, and this count excludes the count of their sub domains. When your user is redirected to a site other than your main site, that website may or may not be malicious. If the website contains some play load, it may harm your user's system, but if the site contains nothing but advertisements, it can be considered to be harmless.
   
4. 
   Pharma Hacks: Pharma hack is a form of SPAM that is most commonly encountered by PSD to Wordpress template users. It is the most prevalent amongst all major malwares. If you are found to be distributing or promoting SPAM content, Google can flag your website with the following alert: "This site may be compromised."
   

These are the four most common malwares that create havoc across most Wordpress installations present on the web today. Getting hacked might not be a good idea, but this knowledge will help you face the hack attack with confidence, as you will know all about the problem you will be facing.