offseq (@offseq@infosec.exchange)
⚠️ wpForo Forum plugin (≤2.4.8) is HIGH risk for SQL Injection (CVE-2025-4203). Unauthenticated attackers can exploit 'row_count' to extract DB data via error/time-based injection. Upgrade ASAP & apply WAF rules. https://radar.offseq.com/threat/cve-2025-4203-cwe-89-improper-neutralization-of-sp-fb9d1208 #OffSeq #WordPress #SQLi
Show Original Post
hgg (@hgg@wp-social.net)
Yesterday I created an issue in GitHub: Triggering an anchor within the Accordion block does not work. This affects the new Accordion Block in Beta 1 of WordPress 6.9.
https://github.com/WordPress/gutenberg/issues/72685
#wordpress #wordpress69
Show Original Post
pmmueller (@pmmueller@mastodon.social)
@hgg
Die Festlegung der Reihenfolge von Seiten im Backend mit der Schnellbearbeitung (aka Quick Edit) ist viele Jahre nach der ersten Veröffentlichung immer noch einer der beliebtesten Beiträge auf der Website zu meinem WordPress-Buch:
https://einstieg-in-wp.de/reihenfolge-von-seiten/
#WordPress #Schnellbearbeitung #QuickEdit
Show Original Post
linktipp-wordpress-datenschutzfreundlich-einrichten-2 (@linktipp-wordpress-datenschutzfreundlich-einrichten-2@einstieg-in-wp.de)
(Dieser Beitrag wird gerade bearbeitet)
Show Original Post
wpbot (@wpbot@wptoots.social)
Gutenberg Changelog #123 – WordPress 6.9 and Gutenberg 21.9 https://gutenbergtimes.com/podcast/gutenberg-changelog-123-wordpress-6-9-and-gutenberg-21-9/ #WordPress #wpdev
Show Original Post
offseq (@offseq@infosec.exchange)
🚨 CVE-2025-8416: HIGH severity SQL Injection in woobewoo Product Filter by WBW (all versions). Unauthenticated attackers can extract sensitive DB data via 'filtersDataBackend'. No patch—use WAF & restrict access. Details: https://radar.offseq.com/threat/cve-2025-8416-cwe-89-improper-neutralization-of-sp-840bd934 #OffSeq #WordPress #SQLi
Show Original Post
harzretro (@harzretro@norden.social)
Weiss jemand wie man bei #wordpress zwischen realen Usern und Bots unterscheiden kann .... ?
Habe derzeitig mehrere hundert Spam Kommentare am Tag trotz BAN von verschiedenen IP Bereichen. Und auch sonst ist es blöde ...
Show Original Post
the-bots-have-arrived-wordpress-security-tips (@the-bots-have-arrived-wordpress-security-tips@renos.world)
The Bots Have Arrived – WordPress security tips!
I was wondering how long it would take after starting up this little blog for the bots to come knocking, and it did not take long! This blog was started on October 15th, less than 2 weeks ago, and as you can see in the image above, it is already getting hit with bots trying to brute force login to the website! I did prepare for this, though, and wanted to make this post in case anyone else is thinking about starting a WordPress blog. Here are some tips. 1. Use a strong password First off, […]https://renos.world/the-bots-have-arrived-wordpress-security-tips/
Show Original Post
webaware (@webaware@fosstodon.org)
GF Windcave Pro v1.2.1, Free v2.6.1
• fixed: deferred actions not being deferred in Gravity Forms 2.9.20
https://shop.webaware.com.au/gf-windcave-pro-v1-2-1-free-2-6-1/
#WordPress #GravityForms #Eway
Show Original Post
oldgeekdiary (@oldgeekdiary@mastodon.social)
#Wordpress는 쓰기 답답하다가도, 오래 사용되었기 때문에 있는 편리한 기능들이 또 기분을 좋게 만들기도 한다.
Show Original Post
wpbot (@wpbot@wptoots.social)
Entre biberones, miedos y micrófonos: Sube al escenario aunque te tiemble la voz https://wordpress.tv/2025/10/25/entre-biberones-miedos-y-microfonos-sube-al-escenario-aunque-te-tiemble-la-voz/ #WordPress #wpmisc
Show Original Post
wpbot (@wpbot@wptoots.social)
El algoritmo de la comunicación: oratoria para convencer, presentar y liderar https://wordpress.tv/2025/10/25/el-algoritmo-de-la-comunicacion-oratoria-para-convencer-presentar-y-liderar/ #WordPress #wpmisc
Show Original Post