Less than two weeks after publishing about the broken user experience of the former Dark Mode plugin being renamed and repurposed, another plugin development company decided to do the same. The consensus seems to be that this is a bad idea. However, the ProfilePress Team renamed and repurposed the WP User Avatar plugin.
Instead of a simple, single-purpose custom avatar solution, it is a full-fledged user registration, profile, login, and membership management plugin.
It is now called ProfilePress. But, let’s call it ProfilePress Lite because there is a commercial component…
Email is arguably the most common electronic communication medium on Earth. It’s used for everything, from communication to alert notifications, to password reset flows and email-based Two-factor Authentication (2FA).
As a website owner sending email from your WordPress site, there are a few issues you’ll likely encounter. If you simply try and install a plugin to send emails on your website’s behalf, your email will almost certainly end up in the junk/spam folder, assuming the mail server even allows it through in the first place. What’s more, while PHP has a built-in mail()…
CHICAGO–(BUSINESS WIRE)–Cloudways (www.cloudways.com), a cloud hosting provider focused on simplicity and productivity, is announcing that Robert Jacobi is joining its executive team. He brings his vast experience across the world of web hosting to join the company as Director of WordPress. Robert has led several successful ventures in the open-source and hosting industry and is an internationally recognized leader among web professionals.
Cloudways is a multi-cloud managed application as a service platform that lets users choose where they want their website to be hosted…
Cloudways, the intuitive cloud hosting platform, announces the newest addition to its executive team – Industry veteran, Robert Jacobi, who has decades of developer-focused management experience with Fortune 500 companies
Cloudways (www.cloudways.com), a cloud hosting provider focused on simplicity and productivity, is announcing that Robert Jacobi is joining its executive team. He brings his vast experience across the world of web hosting to join the company as Director of WordPress. Robert has led several successful ventures in the open-source and hosting industry and is an…
If you haven’t updated your WordPress website since October 2013, this wouldn’t affect you, but we strongly hope that is not the case! There’s a new object injection vulnerability which affects WordPress versions 3.7 to 5.7.1. Be sure to get updated to 5.7.2 as soon as possible!
According to WPScan, the new object injection vulnerability is due to versions of PHPMailer library between 6.1.8 and 6.4.0. The original CVE can be found here.
As per the Open Web Application Security Project:
“PHP Object Injection is an application level vulnerability that could allow an…
Over the weekend, Anariel Design co-founder Ana Segota tweeted that she was nearly ready to submit the company’s first block theme into the WordPress directory. There are only five such experimental themes available for download in the repo right now, and I have been patiently awaiting more.
The Naledi theme is in the review queue, but those who want to give it a spin can grab a copy of the ZIP file from its ticket. Or, just peruse the theme’s demo.
Block, block-based, or FSE themes are built entirely out of blocks, not just the post content. This…
Sites hosted on GoDaddy’s Managed WordPress service were down Thursday evening.
[Update: the problem has been resolved.]
GoDaddy experienced issues with its hosting platform Thursday evening. Sites that use its Managed WordPress products were down as of the time of posting. The issue appears to have begun around 3:45 PM PDT today and was resolved arond 5 pm PDT.
The GoDaddy system status page did not reflect the outage but GoDaddy confirmed the issue via its Twitter account. It did not offer an expected time to restore services.
LoginID has released a new WordPress plugin that will enable passwordless authentication for users of the platform. Sites that install the plugin will be able to replace traditional usernames and passwords with FIDO-certified biometric authentication procedures.
The new plugin was built to be as user-friendly as possible, and can be installed with only five clicks according to LoginID. Once installed, the solution can handle both biometric registration and follow-up authentication, and eliminates many of the security vulnerabilities normally associated with password-based security.
Do you want to know how to optimize your WordPress site to get higher search rankings?
WordPress is a powerful platform that offers easy ways for anyone to build a website and manage content without coding expertise.
It’s a flexible platform that has a repository with thousands of plugins and themes. You have several options available to you to help boost your site’s SEO. WordPress also has specific features that differentiate it from other types of platforms, for example, the use of tags and categories.
In this post, we’ll look at specific WordPress-friendly ideas you can use to improve…
A WordPress vulnerability rated as critical has been patched. The patch is applied to WordPress version 5.7.2. Sites opted into automatic download should be receiving this update without any additional action by publishers.
Publishers are encouraged to check what WordPress version they are using to make sure they are updated to version 5.7.2.
Object Injection Vulnerability
The vulnerability that is affecting WordPress is called an Object Injection vulnerability. Specifically, it is an object injection in PHPMailer vulnerability.
