All In One SEO Plugin Patches Severe Vulnerabilities

The All In One SEO plugin has patched a set of severe vulnerabilities that were discovered by the Jetpack Scan team two weeks ago. Version 4.1.5.3, released December 8, includes fixes for a SQL Injection vulnerability and a Privilege Escalation bug. Marc Montpas, the researcher who discovered the vulnerabilities, explained how they could be exploited: If exploited, the SQL Injection …

Creative Commons Search Is Now Openverse

The Creative Commons search engine has been rebranded to Openverse and now redirects to its new home at wordpress.org/openverse. Users will find the revamped interface maintains the ability to search the same collections, narrowing results by use case, license type, image type, file type, aspect ratio, and more. The Openverse search engine is also now available in more than 10 …

WP Tavern Is Sporting a New Website Design

We are back with a brand-new edition of WP Tavern. Technically, we have a spiffy new coat of paint that I hope you all can see if viewing from your browsers. If you are reading this post via a feed reader, email, or something else, hop over to the site and check it out. The Tavern received a few updates …

Surge: A New Page Caching Plugin for WordPress with No Configuration Required

WordPress Core Contributor Konstantin Kovshenin has released a new page caching plugin called Surge. Searching the WordPress plugin directory, you will find hundreds of caching and cache purging plugins, but this one stands out from competitors in that it requires no configuration. The plugin starts working as soon as it’s activated, and there are no options. What kind of performance …

Gravatar Says It Was Not Hacked After “Have I Been Pwned” Service Notifies Users of a Breach

Gravatar is fielding questions today after “Have I Been Pwned,” a data breech checker service, tweeted “New scraped data: Gravatar had 167M profiles scraped in Oct last year via an enumeration vector. 114M of the MD5 email address hashes were subsequently cracked and distributed alongside names and usernames.“ It claims 72% of these email addresses were already logged with the …

PHP Foundation Gains Momentum with $280K Estimated Annual Budget on Open Collective

At the end of November, prominent members of the PHP community formed a new PHP Foundation as a non-profit organization, “to ensure the long life and prosperity of the PHP language.” The founding members include Automattic, Laravel, Acquia, Zend, Craft CMS, Private Packagist, Tideways, PrestaShop, Symfony, and JetBrains—a group of companies with products that rely heavily on PHP. In just …

WordPress 5.9 Beta 1 Released with Detailed Testing Guide

WordPress 5.9 beta 1 is now available for testing. With just eight weeks remaining until the official release lands, the team is focusing on testing, an important part of the development process that will keep 5.9 on track. Due to the great many interconnected parts of full-site editing (FSE) that will make their debut in 5.9, contributors are organizing a …