On November 11, 2021 the Wordfence Threat Intelligence team initiated the responsible disclosure process for a vulnerability we discovered in “Photoswipe Masonry Gallery”, a WordPress plugin that is installed on over 10,000 sites. This flaw makes it possible for an authenticated attacker to inject malicious JavaScript that executes whenever a site administrator accesses the PhotoSwipe [...]
WordPress 5.9.1 is now available! This maintenance release features 82 bug fixes in both Core and the block editor. WordPress 5.9.1 is a short-cycle maintenance release. The next major release will be version 6.0. You can download WordPress 5.9.1 from WordPress.org, or visit your Dashboard → Updates and click “Update Now”. If you have sites that support automatic [...]
On January 4, 2022 the Wordfence Threat Intelligence team initiated the responsible disclosure process for a vulnerability we discovered in “Profile Builder – User Profile & User Registration Forms”, a WordPress plugin that is installed on over 50,000 WordPress websites. This vulnerability makes it possible for an unauthenticated attacker to craft a request that contains [...]
Most websites live and die by search engine traffic. The better you are at Search Engine Optimization (SEO), the more potential traffic you can get. However, there’s a big difference between optimizing for regular searches and local ones. If you run a business with a local presence, you’ll need to learn how to target specific [...]
Update: a previous version of this article indicated that an attacker would need to begin their attack when a backup was in progress, and would need to guess the appropriate timestamp to download a backup. Since the article was originally published, we have found that it is possible to obtain a full log containing a [...]
WordPress’ built-in search engine has definitely improved a lot over the years. And for the vast majority of smaller sites, it works well enough. But when your site starts to grow in sheer volume of posts and pages, or you start using plugins like WooCommerce and Advanced Custom Fields, you may find that the default [...]
Do you want to disable the language switcher on the WordPress login screen? Disabling the language switcher makes your default language the only option on the log in page, but users will still be able to change the language in their profile settings. In this article, we’ll show you how to disable the language switcher [...]
Do you want to create a landing page in WordPress for your Facebook ads? The right landing page will motivate visitors from your Facebook ad campaign to take action, and convert them into leads and customers. In this article, we’ll show you how to create a high-converting Facebook ads landing page in WordPress. Why Create [...]
We can’t help falling in love with WordPress year after year. Not only is it the most popular CMS on the market, it is supported by a passionate community of amazing people. WordPress allows you to build the website of your dreams, and oftentimes, that’s thanks to the wide ecosystem of WordPress plugins that exist [...]
Would you like to create one-time personalized coupon codes for your WooCommerce store? Coupon codes are great for promoting your online store, reducing cart abandonment, and increasing overall sales. Creating one-time coupons reduces the risk of abuse. In this article, we’ll show you how to create one-time personalized coupon codes in WooCommerce. Why Create One-Time [...]
