GiveWP, a popular donation plugin for WordPress, has patched an unauthenticated PHP Object Injection to Remote Code Execution vulnerability that could be exploited to execute arbitrary code remotely and delete files. This plugin from the Liquid Web family of products has 100k+ active installs. villu164 (Villu Orav) reported the vulnerability through the Wordfence …
Last week, the lineup for the eighteen-member release squad and the default theme for WordPress 6.7 were revealed. This will be the third and final WordPress release of the year. WordPress 6.7 Release Squad As usual, Matt Mullenweg leads the release, with David Baumwald serving as the Release Coordinator. The …
Wordfence has introduced an exciting new initiative, the WordPress Superhero Challenge, as part of its ongoing Bug Bounty Program. Running until October 14th, this challenge exclusively targets plugins and themes with over 5 million active installations, a category that demands a high level of expertise due to the extensive testing these products undergo …
Gutenberg 19.0 has arrived with two exciting experimental features, along with various feature enhancements and bug fixes. The Gutenberg team is actively seeking user feedback on these experimental additions. The first experimental feature is the highly anticipated UI prototype for connecting blocks and custom fields. To try it out, you can enable …
Automattic-sponsored Global Community Team Programs Manager Rocio Valdivia has published a proposal to allocate a portion of the WordPress Events/WordCamp budget solely for marketing and advertising. This change aims to attract more newcomers to WordPress events. Rocio Valdivia explained, “The Community Team’s goal for upcoming events is to warmly welcome more …