WordPress 4.7.2 post mortem

A few weeks ago, WordPress released version 4.7.2 to
address several security vulnerabilities, including one critical one.
This vulnerability allowed a remote, unauthorised attack to update web pages via
the REST API. Since then, hundreds of thousands of … Read more

Read full article

Similar

AMP -Setup Cloudflare for WordPress on AWS

We can help you to set up CloudFlare with WordPress on AWS. This will keep your site safe, fast and available at any time. (more…)

Backdooring WordPress with Phpsploit

As many of you know, WordPress is written in PHP. Finding backdoors in PHP and WordPress code can be quite tricky and sometimes almost impossible: Since backdoors could be hidden anywhere in the code and look like regular code with human coding errors, an... (more…)

Hacking 27% of the Web via WordPress Auto-Update – Wordfence

At Wordfence, we continually look for security vulnerabilities in the third party plugins and themes that are widely used by the WordPress community. In addition to this research, we regularly examine WordPress core and the related wordpress.org systems. ...

WordPress development on steroids – CLI, ES6, Webpack and much more

Tonik is a WordPress Starter Theme which aims to modernize, organize and enhance some aspects of WordPress theme development. (more…)

A technical approach to choosing the right WordPress plugin

A technical, data-driven approach to choosing the right WordPress plugins for your site... (more…)

Latest News

Rust, Or: How to Run a Community

AWS Fargate switches from Docker Engine to containerd

I can’t keep up with idiomatic Rust