Branded Social Images, a New Plugin for Generating Per-Post Open Graph Images

Generated social images seem to be all the rage now. Automattic scooped up Daniel Post’s Social Image Generator last month for eventual inclusion in Jetpack. There is a proposal to dynamically generate them for plugins and themes hosted on WordPress.org. And, there is a new player in town: Branded Social Images. Admittedly, I have had a mild obsession lately with …

WP Fastest Cache Patches Authenticated SQL Injection and Stored XSS Via CSRF Vulnerabilities

The Jetpack Scan team has published a summary of two issues recently discovered in the WP Fastest Cache plugin – an Authenticated SQL Injection vulnerability and a Stored XSS Via CSRF vulnerability. “If exploited, the SQL Injection bug could grant attackers access to privileged information from the affected site’s database (e.g., usernames and hashed passwords),” Automattic security research engineer Marc Montpas …

Protect Your WordPress Site from Bad Bots for Free with Defender’s User Agent Banning

Learn how to protect your site from bad bots while allowing visits from safe user agents with our all-in-one WordPress security plugin Defender. Your website’s security is under threat 24/7, whether it’s from a serious DDoS attack,  XSS attack, SQL injections, or just annoying spam. Defender’s User Agent Banning not only offers your WordPress site robust protection against requests from …

WordPress Global Community Sponsorship Program Will Not Include WordCamps for 2022

The proposal for the 2022 Global Community Sponsorship program will not include funding for WordCamps again this year, due to the unpredictability of hosting in-person events. The pandemic continues to make conditions unfavorable in many areas of the world where WordCamp and meetup organizers have opted to continue with virtual events. In the past, the Global Community Sponsorship program has …