Security researchers at Wordfence detailed a critical security flaw in the MW WP Form plugin, affecting versions 5.0.1 and earlier. The vulnerability allows unauthenticated threat actors to exploit the plugin by uploading arbitrary files, including potentially malicious PHP backdoors, with the ability to execute these files on the server. MW WP Form Plugin The MW … Read more
Accelerated Mobile Pages WordPress plugin, with over 100,000 installations, patched a medium severity vulnerability that could allow an attacker to inject malicious scripts to be executed by website visitors. Cross-Site Scripting Via Shortcode A cross-site scripting (XSS) is one of the most frequent kind of vulnerability. In the context of WordPress plugins, XSS vulnerabilities happen … Read more
WordPress released a maintenance release on Wednesday evening to fix problems discovered shortly after WordPress 6.4 was released to the public on Tuesday November 7th. Two of issues were somewhat serious in that they affected the operation of certain plugins and could cause issues for sites encountering either of the two problems. The third one … Read more
Many publishers and developers have been reporting that updating to WordPress 6.4 triggered a fatal error, bringing their websites down. A search for solutions began and within hours developers discovered a bug in the page builder they all used. Sites Crashing After Updating To 6.4 One of the first reports happened not long after WordPress … Read more
WordPress 6.4, code named Shirley was released, featuring a new default theme with many incremental but important enhancements that taken together make WordPress an easier and more intuitive content management system. Josepha Haden Chomphosy, Executive Director of WordPress, described WordPress 6.4 best. She wrote: “Many of the features and enhancements in WordPress 6.4 fall in … Read more
Astra, the makers of the worlds most popular WordPress templates, announced it is investing in LatePoint, one of the most advanced online booking solutions and in the process is advancing WordPress as the go-to platform for businesses. This move brings the powerful scheduling, booking and payment management capabilities of LatePoint to all users, especially those … Read more
The popular Fluent Forms Contact Form Builder plugin for WordPress, with over 300,000 installations, was discovered to contain a SQL Injection vulnerability that could allow database access to hackers. Fluent Forms Contact Form Builder Fluent Forms Contact Form Builder is one of the most popular contact forms for WordPress, with over 300,000 installations. Its drag-and-drop … Read more
WordPress released the latest version of their website builder Gutenberg, introducing numerous features that make it easier to create websites with more control over the layout. Version 16.9 of Gutenberg adds incremental improvements that together add up to an easier to use site editor. WordPress Gutenberg 16.9 Gutenberg is the next generation WordPress website editor … Read more
The popular LiteSpeed WordPress plugin patched a vulnerability that compromised over 4 million websites, allowing hackers to upload malicious scripts. LiteSpeed was notified of the vulnerability two months ago on August 14th and released a patch in October. Cross-Site Scripting (XSS) Vulnerability Wordfence discovered a Cross-Site Scripting (XSS) vulnerability in the LiteSpeed plugin, the most … Read more
WordPress 6.4, releasing on November 7th, is packed with over 100 improvements to site performance which promises to make this release one of the most important ones to get right away. This new release continues the solid upward performance trend which to date has nearly doubled the average core web vitals performance in the two … Read more
The latest update to WordPress, version 6.4, includes changes to how scripts are loaded on the front end that will improve page load times and performance for many sites. Script loading strategies are now incorporated into the core and bundled themes of WordPress, improving the performance of loading scripts with defer and async attributes. These … Read more
Jetpack WordPress plugin by Automattic released an updated version that expands on AI-based features and the ability to earn more from email subscriptions. Jetpack WordPress Plugin 12.7 Jetpack is a modular all-in-one plugin that brings virtually every important functionality that a website or business may need. Because it’s modular a user only needs to select … Read more
WordPress announced it was publishing a maintenance and security release that patches multiple vulnerabilities including one that could lead to a full site takeover. Maintenance and Security Release WordPress 6.3.2 WordPress 6.3.2 delivers 41 bug fixes but more importantly it ships with patches for eight vulnerabilities. The following eight vulnerabilities were recently discovered and patched: … Read more
The opportunity to tell WordPress what you need out of the CMS only comes around once a year. This year, WordPress wants to hear from SEO professionals, affiliates, recipe bloggers, small business owners, advertisers and others who depend on WordPress. What Is The 2023 WordPress Survey? The people who build WordPress conduct an annual survey … Read more
If you‘ve got an opinion to share, you’ll need a blog to reach the right audience. However, choosing the right free WordPress blog theme can be a challenge. I’ve chosen the wrong theme in the past. That decision left me frustrated, searching for support so I could create the blog of my dreams. Let’s help … Read more
Whether you’re a blogger, editorial writer, journalist, or any other type of writer, there are a number of different WordPress themes that allow you to share your content with the visitors on your website. Newspaper WordPress themes — despite their name — work for all types of writing. No matter your content type, the layout … Read more
The HTTP Archive Core Web Vitals (CWV) report shows that the performance benchmarks of the top seven CMS have all improved in 2023. Of the top performers, one CMS in particular stands out with unexpectedly strong CWV scores. All seven content management systems improved their CWV scores, which means that all seven have something to … Read more
Over 49% of the US population listens to podcasts. Globally, this figure stands at 383.7 million people. If you’re looking to reach these people, and more of your audience, a website can help. Having a website also helps you manage your podcast content easily. This is where WordPress comes in. In this post, we’ll show … Read more
