Hacking WordPress 4.7.0 – step-by-step

The guys from sucuri have recently published a blog post with details of a WordPress vulnerability which allows an unauthenticated attacker to easily edit any blog post of their liking by abusing a bug in the WordPress REST API. I am not going to write ab…

Read full article

Similar

Updates on WordPress security, Wordfence and what we’re cooking in the lab today

On April 21st, our Threat Intelligence team discovered a vulnerability in Site Kit by Google, a WordPress plugin installed on over 300,000 sites. This flaw allows any authenticated user, regardless of capability, to become a Google Search Console owner fo... (more…)

Mura punching above it’s weight against WordPress in latest G2 Crowd rankings

Compare WordPress.org vs Mura side by side via 1788 reviews by real users including features, pricing, support and more. (more…)

The Future of Plugin, Themes, and Services Purchases on WordPress.com

Recently we shared that you can now purchase six popular Automattic plugins right from your WordPress.com dashboard. We’re intentionally testing this out with our own products before opening … (more…)

WordPress VIP Buying Content Analytics Firm Parse.ly

Deal would be largest by cost and revenue for WordPress parent company Automattic. (more…)

Experimenting with magic return methods on WordPress filters

I was catching up on some of the specifics of the new default theme that shipped with WordPress 4.7, Twenty Seventeen. When I saw this: function childtheme_front_page_sections() { return 6; } a…...

Latest News

A24 Under Fire for Seemingly AI Generated Civil War Ads

A feature-rich, top open-source SaaS email editor based on React and MJML

AI startup Stability lays off 10% of staff after controversial CEO’s exit