Related Articles

• 

  TimThumb Security Vulnerability – Common in Many Premium WordPress Themes

  3721 readersYesterday a security vulnerability was discovered in the popular TimThumb image resizing script that is used in many premium WordPress themes. Some of the premium theme providers that include the timthumb script in their themes (or have done so in the past) include WooThemes, Elegant Themes, Pro Theme Design, WPZOOM as well as many themes

• 

  Security Alert – Upgrade to WordPress 2.8.4 Now

  634 readers There is a security exploit going around, and it could affect anyone not using the most up-to-date version of WordPress at the moment, which is WordPress 2.8.4. Lorelle has a good writeup on how old WordPress versions are under attack. To summarize, here’s what to look out for if you think your WordPress

• WordPress 3.3.1 Security and Maintenance Release

  3593 readersWordPress 3.3.1 is now available. This maintenance release fixes 15 issues with WordPress 3.3, as well as a fix for a cross-site scripting vulnerability that affected version 3.3. Thanks to Joshua H., Hoang T., Stefan Zimmerman, Chris K., and the Go Daddy security team for responsibly disclosing the bug to our security team. Download 3.3.1 or visit Dashboard

• Get a Sneak Peek at the new Code Poet

  18347 readersCode Poet is a directory of trusted WordPress professionals, developers, designers, and consultants brought to you by the folks at Automattic, and it’s getting a rather significant overhaul. The new Code Poet, which can be seen at the beta site, will make it easier than ever before to find WordPress professionals by specialty, location, and even

• 

  Potential Plugin Security Breach Forces WordPress.org To Reset Passwords

  11293 readers WordPress.org is forcing users to reset their passwords after several popular plugins were compromised by hackers. “Earlier today the WordPress team noticed suspicious commits to several popular plugins containing cleverly disguised backdoors,” Automattic founder Matt Mullenweg said in a blog post. “We determined the commits were not from the authors, rolled them back, pushed updates to

• WordPress.org Theme Uploader Gets Smarter

  2884 readersThe uploader of the official WordPress theme directory has received a rather helpful upgrade courtesy of Otto. The previous version of the WordPress theme uploader checked the themes against the theme review guidelines, but only reported the first error that it encountered, sometimes trapping theme developers in a frustrating cycle of trial and error.  The

• 

  See If You’re Secure With The Timthumb Vulnerability Scanner

  10681 readersNot sure if any of the plugins or themes you have installed within your WP-Content directory contain the outdated version of TimThumb? Good news, there is a simple plugin that not only scans your content directory for the outdated version of the script, but also provides a link to quickly upgrade to the newer version.

• Absolute Privacy Plugin Back In The Repository

  10161 readersA few days ago, Sucuri mentioned that the Absolute Privacy plugin for WordPress contained a security vulnerability that would allow the ability to bypass the authentication mechanism and gain admin access to the application, that being WordPress. The plugin was subsequently pulled from the repository as there had not been any updates to fix the

• The WordPress theme directory needs an upgrade

  78 readersThe WordPress theme directory was opened last July. It currently houses 700 themes and has surpassed 4 million downloads. For anyone that’s wondering, those are good numbers to be looking at if you’re a part of the WordPress community. Now that the project has seen some success, it’s time to give the directory a

• Must Use: W3 Total Cache WordPress Plugin

  7609 readersI am a bit stubborn when it comes to changing old habits. The same is true for technologies I use, WordPress plugins included. As such I have been using WP Super Cache for as long as I can remember, and I always thought it was a great plugin. Then around one year ago I started