offseq (@offseq@infosec.exchange)
📢 HIGH severity: CVE-2026-1988 in wpdecent Flexi Product Slider & Grid for WooCommerce allows Contributor+ users to exploit the 'theme' parameter for LFI and potential RCE. No patch yet — restrict roles, audit users, and monitor logs. https://radar.offseq.com/threat/cve-2026-1988-cwe-98-improper-control-of-filename--9af2696b #OffSeq #WordPress #WooCommerce
Show Original Post
quentin_ld (@quentin_ld@mastodon.social)
I dont have a lot of visibility on mastodon, so if you know people that work with #wordpress please share the post 
thank you !
Show Original Post
quentin_ld (@quentin_ld@mastodon.social)
Hey #fedi, i'm looking for reviews and advice to improve my free (not freemium) WP plugin ZenPress (https://wordpress.org/plugins/zenpress/). I want to make it more understandable, easy to use, improve selfconfidence for the webmaster.
I have some ideas :
- Popup that warn user before erasing it's config by selecting a new preset.
- Import/export settings with a simple copy/past json.
- A link near the snippet description to show the related php code in a popup.
Thanks everyone for sharing feedback
#wordpress
Show Original Post
offseq (@offseq@infosec.exchange)
🚨 CVE-2026-1843: HIGH-severity stored XSS in optimole Super Page Cache plugin affects all versions. Unauthenticated attackers can inject scripts via Activity Log. Patch pending — disable plugin/feature, add XSS WAF rules, and audit inputs. https://radar.offseq.com/threat/cve-2026-1843-cwe-79-improper-neutralization-of-in-da8cc8a7 #OffSeq #XSS #WordPress #Vuln
Show Original Post
offseq (@offseq@infosec.exchange)
🚨 CRITICAL: CVE-2026-1306 in adminkov midi-Synth for WordPress allows unauthenticated file uploads, leading to potential RCE. All versions affected. Remove or update plugin, restrict uploads, monitor activity. https://radar.offseq.com/threat/cve-2026-1306-cwe-434-unrestricted-upload-of-file--95798a0f #OffSeq #WordPress #Vuln #CVE20261306
Show Original Post
2026 (@2026@speicherbereich.net)
Test eines neue WordPress-Plugins
(Dieser Beitrag wird gerade bearbeitet)https://speicherbereich.net/2026/02/14/test-eines-neue-wordpress-plugins/
Show Original Post
max (@max@afterspace.rocks)
Weiß jemand wie man in Wordpress den Namen der Knöpfe über Code-Schnippsel ändern kann?
Show Original Post
dreamitsolution (@dreamitsolution@mastodon.social)
Introducing Educate – Premium WordPress Theme for Education!
Build stunning websites for schools, universities & eLearning platforms with 6+ ready demos, modern design & full responsiveness
Launch your education site the smart way!
👉️️️ Build a professional, high-converting website today!
https://themeforest.net/item/educatex-education-online-course-wordpress-theme/59568449?s_rank=4
#WordPress #Education #eLearning #WebDesign
Show Original Post
wpbot (@wpbot@wptoots.social)
Block Theme Guide, AI Galore, Icon Block, WordPress 7.0 — Weekend Edition 357 https://gutenbergtimes.com/block-theme-guide-ai-galore-icon-block-wordpress-7-0-weekend-edition-357/ #WordPress #wpdev
Show Original Post
claudiocamposp (@claudiocamposp@mastodon.social)
Fitness WordPress theme for gym and health responsive website design https://visualmodo.com/theme/fitness-wordpress-theme/ ⛹️♀️🏊♂️🚴♂️🏆🏋️♀️ #template #theme #WordPress #fitness #health #sport #gym
Show Original Post
paoloredaelli (@paoloredaelli@mastodon.uno)
picostrap: a WordPress Bootstrap 5 based starter theme with SASS
picostrap: a WordPress Bootstrap 5 based starter theme with SASS
A starter theme that builds your very own Bootstrap 5 CSS just using the WordPress Customizer. Built from the ground up for high performance.
https://monodes.com/predaelli/2026/02/13/picostrap-a-wordpress-bootstrap-5-based-starter-theme-with-sass/
#Wordpress
Show Original Post
heropress (@heropress@fosstodon.org)
I just noticed that WPPodcasts.com has surpassed 15,000 podcast episodes! What a historical treasure trove! #WordPress #podcast https://wppodcasts.com
Show Original Post