Wordpress News

Simple Photoblogging with the Instapress WordPress Theme – WordPress Tavern

It is not often that I come across a free WordPress theme that instantly impresses me. Far too often, I spend half an hour or more just getting to know a theme, checking its options, and figuring out how long it will take to recreate something that looks remotely like the demo. However, every now and then I come across one of those diamonds in the rough that makes me a taker a deeper look. Instapress is one of those themes. It is yet another reason I am in favor of a curated featured themes list. These types of unique themes tend to get lost in the crowd, and without the backing of… More Info

Read More »

WordPress plugin bugs can let hackers take over almost 1M sites

Two high severity vulnerabilities found in the Page Builder WordPress plugin installed on more than 1,000,000 sites can let hackers create new admin accounts, plant backdoors, and ultimately take over the compromised websites. The vulnerabilities are a Cross-Site Request Forgery (CSRF) leading to Reflected Cross-Site Scripting (XSS) attacks and they affect all Page Builder versions up to and including 2.10.15. Attackers can exploit these security flaws by tricking WordPress site administrator into clicking specially crafted links or attachments and execute malicious code in… More Info

Read More »

3 of the Best Google Analytics WordPress Plugins

Anybody who is serious about improving their traffic, conversion rates, and overall web strategy performance knows that few things matter more than cold, hard data. After all, data is power. Data doesn’t lie to you. Data gives you the cold, hard facts. And Google Analytics is revered by many as the bottom line, the final say when it comes to the data that matters. If used properly, the data that Google Analytics provides can help you craft better web strategies for your WordPress site and your audience. This is why Google Analytics plugins are enjoying so much popularity with WordPress… More Info

Read More »

Why You Should NOT Use Nulled WordPress Themes And Plugins

Do you want to use a nulled WordPress theme or plugin on your WordPress site? Are you looking for a way to use such pirated software and keep your website safe at the same time? We understand how tempting it is to use nulled software as it gives you access to premium features for free. But the reality of it is that installing nulled WordPress themes and plugins on your WordPress site is extremely risky as most of them are riddled with malware. The malware will infect your site and allow hackers to break in. Hackers will cause severe damage to your website by displaying unwanted ads, sending… More Info

Read More »

Bugs In Two Related WordPress Plugins Together Risked 1M+ Websites

WordPress websites suffered another threat from vulnerable plugins. This time, security bugs in two related WordPress plugins posed a threat to over a million websites. Researchers noticed the active exploitation of the bugs. Bugs In Two WordPress Plugins Researchers from Wordfence have caught security bugs in two separate but related WordPress plugins. As observed, exploiting the bugs in both plugins together could lead to a huge cyber attack. Stating the details in a blog post, the researchers highlighted that a critical severity bug existed in the Elementor Pro plugin. Exploiting the… More Info

Read More »

Easily create a website with the best WordPress alternatives

If you have ever used WordPress, you will know that it has some tools called plugins cWith which to add more functionalities to your offer, which makes the service, possibly, the best option to create a blog quickly and easily. But WordPress is not the only option that we will have if we decide to open our own page and we do not know how to do it nor do we have knowledge for it. There are other alternatives to WordPress with options more focused on the company, if we look for different options such as a portfolio away from the blog convincesl or if, simply, we have tried WordPress and it… More Info

Read More »

Drag and Drop Nav Menu Items in WordPress – WordPress Tavern

Earlier this week, Sajjad Hossain Sagor released the first version of his Drag & Drop Menu Items plugin in the WordPress plugin repository. The plugin is a one-off, single-use plugin that does exactly what its name describes — it allows end-users to drag menu items from the meta boxes on the nav menu screen to the menu they are currently editing. Sagor is a freelance web developer from Bangladesh. Drag & Drop Menu Items is the latest of his 18 contributions to the free plugin directory. The plugin is simple in nature and does its one job well. To use it, users merely need to… More Info

Read More »

Malvertising Attackers Target 900,000 WordPress Sites | Avast

Wordfence, the security plugin for WordPress sites, reported in its blog this week that its Threat Intelligence Team observed a single malware campaign target more than 900,000 WordPress sites over the past month, with over half of the attacks occurring on May 3. The researchers clocked over 24,000 distinct IP addresses launching the mammoth attack, which takes advantage of previously known vulnerabilities. While fixes have already been developed for the flaws – some from years ago – the attackers are banking on the notion that many WordPress site owners have still not updated.  More Info

Read More »

Critical WordPress plugin bug lets hackers take over 1M sites

Hackers are actively exploiting two security vulnerabilities in the Elementor Pro and Ultimate Addons for Elementor WordPress plugins with the end goal of remotely executing arbitrary code and fully compromising unpatched targets. Reports of threat actors attempting to abuse the two bugs in ongoing attacks have surfaced on May 6th as reported by Wordfence’s Threat Intelligence team today. Attackers can wipe sites after successful exploitation Elementor Pro is a paid plugin with an estimated number of over 1 million active installations that helps users to easily create WordPress… More Info

Read More »

Google Site Kit WordPress Plugin Vulnerability

A vulnerability was discovered in Google’s Site Kit WordPress plugin and subsequently patched. The vulnerability allows an attacker to escalate site privileges and attack a victims search visibility,  alter site maps and more. Google Site Kit WordPress Plugin The vulnerability affects Site Kit by Google. Google Site Kit is a Google WordPress. Google Site Kit displays information about your site within the WordPress Admin dashboard. It aggregates information from Google Search Console (GSC), Google Analytics, AdSense, Page Speed Insights and other Google tools. Researchers at WordFence ( More Info

Read More »