Hacking 27% of the Web via WordPress Auto-Update

At Wordfence, we continually look for security vulnerabilities in the third party plugins and themes that are widely used by the WordPress community. In addition to this research, we regularly examine WordPress core and the related wordpress.org systems. …

Read full article

Similar

Using a GitHub Action to downgrade a WordPress plugin from PHP 7.4 to 7.1

PHP developers want to have access to the latest features of the language, but for various reasons, they may not be able to. It could be that the client’s server runs on an older version and can’t be upgraded, or the CMS must support legacy code, or the u... (more…)

A Curated List of WordPress and WordPress.com REST API Apps

List of WordPress REST API applications, for WordPress or for WordPress.com. REST API apps can be written in javascript, php, ... (more…)

WordPress to automatically disable Google FLoC on websites

WordPress announced today that they plan on treating Google's new FLoC tracking technology as a security concern and plans to block it by default on WordPress sites. (more…)

Editing Images in the Block Editor – WordPress Core

As most people that follow core development already know, a new feature in WordPress 5.5 is editing of images right in the block editor. The new image editor looks a lot better and is much easier t… (more…)

WordPress 4.7.2 post mortem

A few weeks ago, WordPress released version 4.7.2 to address several security vulnerabilities, including one critical one. This vulnerability allowed a remote, unauthorised attack to update web pages via the REST API. Since then, hundreds of thousands of ... (more…)

Latest News

Survey: Machine Learning Algorithms for Detecting Ransomware Encryption Activity

State of AI Report 2021

AI Playing Perfect Tetris