wpbot (@wpbot@wptoots.social)
Web3 WordPress developer https://jobs.wordpress.net/job/web3-wordpress-developer/ #WordPress #wpmisc
Show Original Post
offseq (@offseq@infosec.exchange)
🚨 CRITICAL: CVE-2026-1306 in midi-Synth plugin for WordPress (≤1.1.0) enables unauthenticated file uploads — trivial RCE risk due to exposed nonce in JS. Disable plugin or apply mitigations now. https://radar.offseq.com/threat/cve-2026-1306-cwe-434-unrestricted-upload-of-file--95798a0f #OffSeq #WordPress #Vuln #CVE20261306
Show Original Post
offseq (@offseq@infosec.exchange)
🚨 CVE-2026-1490: CleanTalk Spam Protection plugin (WordPress) CRITICAL vuln (CVSS 9.8) lets unauth attackers install plugins via reverse DNS spoofing if API key is invalid. Audit keys & restrict plugin installs! https://radar.offseq.com/threat/cve-2026-1490-cwe-350-reliance-on-reverse-dns-reso-0fc3066a #OffSeq #WordPress #CVE20261490
Show Original Post
offseq (@offseq@infosec.exchange)
SSRF vulnerability (HIGH, CVE-2026-0745) in WordPress User Language Switch plugin (all versions). Admin-level users can access internal services. Audit, limit admin access, and monitor for suspicious requests. No patch yet. https://radar.offseq.com/threat/cve-2026-0745-cwe-918-server-side-request-forgery--d2649c34 #OffSeq #WordPress #SSRF
Show Original Post
offseq (@offseq@infosec.exchange)
⚠️ HIGH severity: CVE-2026-2024 SQL Injection in all savitasoni PhotoStack Gallery WordPress plugin versions. Exploitable via 'postid', no auth needed. Disable the plugin & deploy WAF for SQLi. Full details: https://radar.offseq.com/threat/cve-2026-2024-cwe-89-improper-neutralization-of-sp-e9679b86 #OffSeq #WordPress #Infosec #SQLInjection
Show Original Post
offseq (@offseq@infosec.exchange)
⚠️ HIGH severity: CVE-2026-0753 in Super Simple Contact Form (≤1.6.2) for WordPress allows unauth XSS via 'sscf_name'. Disable or remove plugin until fixed. Monitor for suspicious requests. https://radar.offseq.com/threat/cve-2026-0753-cwe-79-improper-neutralization-of-in-6158470c #OffSeq #WordPress #XSS #infosec
Show Original Post
magicfab (@magicfab@mastodon.social)
raracx/rayels-loi25 - #WordPress lightweight, bilingual (FR/EN) cookie consent banner plugin for Quebec's Law 25 (Bill 64). Zero dependencies. Plug & play.
https://github.com/raracx/rayels-loi25
#privacy #freesoftware
via https://magicfab.ca/liens
Show Original Post
nadie-arranca-las-tuberias (@nadie-arranca-las-tuberias@blogpocket.es)
Nadie arranca las tuberías
El visionario del diseño Nick Hamze, elogiado por Matt Mullenweg, destaca la nueva alianza entre WordPress y la IA. Esta colaboración marca un momento crucial. WordPress crece constantemente gracias a la innovación, y esta integración con la IA promete una expansión significativa y nuevas y emocionantes posibilidades para su comunidad global.https://blogpocket.es/nadie-arranca-las-tuberias/
Show Original Post
claudiocamposp (@claudiocamposp@mastodon.social)
Education WordPress theme for creating school/university/academic/college responsive websites https://visualmodo.com/theme/education-wordpress-theme/ 🎓💼💻📱📚📖 #education #courses #learning #theme #wordpress #responsive #academic
Show Original Post
techygeekshome (@techygeekshome@techhub.social)
Blogger to Wordpress Mobile Redirection Fix | https://techygeekshome.info/blogger-to-wordpress-mobile-redirection-fix/?fsp_sid=30833 | #Blogger #Guide #refresh #Wordpress
https://techygeekshome.info/blogger-to-wordpress-mobile-redirection-fix/?fsp_sid=30833
Show Original Post
ajguides (@ajguides@mastodon.social)
Blogger to Wordpress Mobile Redirection Fix | https://techygeekshome.info/blogger-to-wordpress-mobile-redirection-fix/?fsp_sid=30832 | #Blogger #Guide #refresh #Wordpress
https://techygeekshome.info/blogger-to-wordpress-mobile-redirection-fix/?fsp_sid=30832
Show Original Post