This video shows the most common method that hackers rely on to hack wordpress websites.

All of this is done on our lab, the zSecurity Comment CTF which can be accessed at the bottom of this page or from this page.