mblog.my

Injection vulnerabilities in popular WordPress plugin could expose credentials, allow admin access

Fastest Cache is used by more than one million people Vulnerabilities in a popular WordPress plugin Fastest Cache could allow an attacker to gain access to credentials and takeover an admin account. The security flaws in the extension, which has more than one million active downloads, were discovered during an internal audit of the software by Jetpack Security. The first flaw, an SQL injection vulnerability which has a CVSS score of 7.7, could grant attackers access to privileged information from an affected site’s database, for example usernames… More Info

Read More »

How to Reset a WordPress Website

Occasionally, you’ll need to reset your WordPress website. You may be developing a plugin, carrying out testing, or simply starting a site again completely from scratch. One particular plugin, WP Reset, allows you to reset every aspect of your site and revert to its original install state. Resetting your site lets you avoid the effort of installing it all over again. In this article, we’ll explain how to reset a WordPress website effortlessly. Why Should You Reset a WordPress Website? … More Info

Read More »

WordPress plugin exploit puts over 90,000 sites at risk

Researchers have unearthed a series of vulnerabilities that could have compromised thousands of WordPress websites. Potentially exploitable bugs were found in the Brizy Page Builder, a WordPress plugin that is installed across more than 90,000 websites, according to security firm Wordfence. The company’s Threat Intelligence team reported the issues in August and a fix was released shortly afterwards, but it’s likely that a number of installations still remain unpatched. If exploited, it could allow attackers to execute “complete site takeover” and add malicious code to existing posts. The… More Info

Read More »

What WordPress Is To Blogging, Unifty Aims To Be For NFTs And Burgeoning Ownership Economy; Interview With Colin Platt CEO

In the early days of the internet, launching a website was hard. Unless you knew how to code a site from scratch or were prepared to fork over for one of the closed-source content management systems, there were few routes to getting an online presence. But in the early 2000s, WordPress launched its open-source content management system, allowing anyone to build their own website from scratch and opening the doors to a flood of developers for its plugin libraries. Today, WordPress powers a staggering 40% of all websites. Get The Full Henry Singleton Series in PDF Get the entire… More Info

Read More »

Brizy WordPress Plugin Exploit Chains Allow Full Site Takeovers – Threatpost

A stored XSS and arbitrary file-upload bug can be paired with an authorization bypass to wreak havoc. Vulnerabilities in the Brizy Page Builder plugin for WordPress sites could be chained together to allow attackers to completely take over a website, according to researchers. Brizy (or Brizy – Page Builder) has been installed on more than 90,000 sites. It’s billed as an intuitive website builder for those without technical skills. It comes with a collection of more than 500… More Info

Read More »

Google Says Popular WordPress Themes Aren’t At A Ranking Disadvantage

Google’s John Mueller was asked if using WordPress themes that are used on many websites can have a negative impact in search rankings and SEO. John Mueller responded on Twitter, no, he said “popularity of a theme has no effect on SEO at all.” Here are those tweets: Popularity of a theme has no effect on SEO at all. If you hear such generalizations, ask them “why”. — 🧀 John 🧀 (@JohnMu) October 11, 2021 Yea, it is always good to ask yourself why when someone tells you something. We do know that changing your WordPress theme can impact your rankings, that makes sense when you ask… More Info

Read More »

How To Add An Author Box In WordPress?

Share Tweet Share Share Email Do you have a multi-author website? Make it more professional and reader-friendly by adding an author box at the bottom of every blog post. Introduce your readers to the person behind their favorite articles. An author box is a great way to showcase an author’s social links, bio, and website. That is especially… More Info

Read More »

WordPress Global Community Sponsorship Program Will Not Include WordCamps for 2022 – WP Tavern

The proposal for the 2022 Global Community Sponsorship program will not include funding for WordCamps again this year, due to the unpredictability of hosting in-person events. The pandemic continues to make conditions unfavorable in many areas of the world where WordCamp and meetup organizers have opted to continue with virtual events. In the past, the Global Community Sponsorship program has offered multiple tiers of funding in support of official, volunteer-organized WordPress community events. In 2020, before the program was suspended, global sponsorship tiers ranged from… More Info

Read More »

WordPress Global Community Sponsorship Program Will Not Include WordCamps for 2022 – WP Tavern

The proposal for the 2022 Global Community Sponsorship program will not include funding for WordCamps again this year, due to the unpredictability of hosting in-person events. The pandemic continues to make conditions unfavorable in many areas of the world where WordCamp and meetup organizers have opted to continue with virtual events. In the past, the Global Community Sponsorship program has offered multiple tiers of funding in support of official, volunteer-organized WordPress community events. In 2020, before the program was suspended, global sponsorship tiers ranged from… More Info

Read More »

Is managed WordPress hosting really more advantageous?

If you are starting a new WordPress website and still in the process of choosing a web hosting service for it, you may be baffled by the many options and companies out there. But before you get to deciding on a specific provider to sign up with, you first need to determine if you want to go with a managed or a non-managed plan. The main difference between the two options is that with managed WordPress hosting, the provider takes care of most of the technical tasks and measures of installing and operating WordPress, while with non-managed plans the host will only be responsible for providing… More Info

Read More »