On January 4, 2023, independent security researcher Mohammed Chemouri reached out to the Wordfence Vulnerability Disclosure program to responsibly disclose and request a CVE ID for a vulnerability in Metform Elementor Contact Form Builder, a WordPress plugin with over 100,000 installations. The vulnerability, an unauthenticated stored cross-site scripting vulnerability, is arguably the most dangerous variant … Read more
Welcome to the first 2023 edition of The Month in WordPress! January kicked off with an overview of WordPress’ big goals for 2023 and new projects beginning to take shape. Moreover, work on the next major release, WordPress 6.2, continues with Beta 1 scheduled for next week. Read on for the latest news. WordPress 6.2 … Read more
Email marketing remains a top tool for successful stores. Ready to grow? 10 steps to create a winning email marketing strategy + key tools to maximize impact. The post How to Create an Email Marketing Strategy for Your Online Store appeared first on WooCommerce.
On January 16, 2023, the Wordfence Threat Intelligence team responsibly disclosed several vulnerabilities in Quick Restaurant Menu, a WordPress plugin that allows users to set up restaurant menus on their sites. This plugin is vulnerable to Missing Authorization, Insecure Direct Object Reference, Cross-Site Request Forgery as well as Cross-Site Scripting in versions up to, and … Read more
This month we feature Daniel Kossmann, a software engineer from South America who shares his enthusiasm for WordPress at every opportunity. The People of WordPress series features inspiring stories of how people’s lives can change for the better through WordPress and its global community of contributors. Daniel’s adventure into WordPress began in 2009 when he … Read more
