Alongside our usual work to discover, report, and remediate vulnerabilities in the WordPress ecosystem, the WordPress Threat Intelligence team has been conducting a deep-dive into WordPress plugin code with the objective of finding methods to bypass authentication and gain elevated privileges in WordPress plugins so we can help developers patch these vulnerabilities before threat actors … Read more
On April 6, 2023, the Wordfence Threat Intelligence team initiated the responsible disclosure process for two vulnerabilities in Getwid – Gutenberg Blocks, a plugin installed on over 50,000 WordPress sites. The plugin’s developers responded immediately, and we sent over the full disclosure the same day. A patched version of the plugin, 1.8.4, was released on … Read more
May has been a month of celebrating WordPress and the open source community that makes it possible. In honor of the project’s 20th anniversary, WordPress Executive Director Josepha Haden Chomphosy reflected on this journey and the opportunity to build a better future for those who come after: The more our community invests in itself and … Read more
Join WordPress Executive Director Josepha Haden Chomphosy in the 57th episode of the WordPress Briefing as she discusses the Contributor Mentorship Program to help increase the success of new contributors over time. Have a question you’d like answered? You can submit them to wpbriefing@wordpress.org, either written or as a voice recording. Credits Editor: Dustin HartzlerLogo: Javier ArceProduction: Brett McSherrySong: … Read more
Scale better, faster. An upgrade to WooCommerce order storage. What does this mean? Will you be affected? What are the next steps? Get the full rundown! The post Platform Update: High-Performance Order Storage for WooCommerce appeared first on WooCommerce.
