Today, a significant SQL-Injection vulnerability was fixed in WordPress 4.8.3. Before reading further, if you haven’t updated yet stop right now and update. The foundations of this vulnerability was r... (more…)

WordPress is great as a proof-of-concept backend for your future web app. Let me tell you why. (more…)

We’re at a turning point: 2017 is going to be the year that we’re going to see features in WordPress which require hosts to have HTTPS available. Just as JavaScript is a near necessity for smoother…

I recently took the plunge to move my site https using a free SSL provided by my hosted company.  Here's 5 pitfalls I encountered in doing so. (more…)

CVE 2017 8295 discovered by Dawid Golunski, Medium/High vulnerability still not fixed in 4.8.1. This issue has been reported to WordPress security team multiple times with the first report sent back in July 2016. It was reported both directly via security... (more…)