A web application firewall (or WAF) filters, monitors, and blocks HTTP traffic to and from a web application. A WAF is differentiated from a regular firewall in that a WAF is able to filter the content of specific web applications while regular firewalls serve as a safety gate between servers. By inspecting HTTP traffic, it can prevent attacks stemming from web application security flaws, such as SQL injection, cross-site scripting (XSS), file inclusion, and security misconfigurations.
WordPress (WordPress.org) is a content management system (CMS) written in PHP paired with a MySQL, MariaDB, or SQLite database. Features include a plugin architecture and a template system, referred to within WordPress as Themes.