Updated WordPress Plugin Security Testing Cheat Sheet (markdown)

WordPress-Plugin-Security-Testing-Cheat-Sheet.md

@@ -30,7 +30,20 @@ When doing dynamic testing for XSS the following setting in the wp-config.php fi
 
 ```
 define( 'DISALLOW_UNFILTERED_HTML', true );
-``` 
+```
+
+### Enable error logging
+
+Add the following to your wp-config.php file:
+
+```
+define( 'WP_DEBUG', true );
+define( 'WP_DEBUG_LOG', true );
+```
+
+The PHP errors will be saved to the `/wp-content/debug.log` file.
+
+To do some logging yourself, you can use the `error_log( 'This is a log' );` function.
 
 ## Cross-Site Scripting (XSS)