Attackers are using Eval PHP, an outdated legitimate WordPress plugin, to compromise websites by injecting stealthy backdoors. Eval PHP is an old WordPress plugin that allows site admins to embed PHP code on pages and posts of WordPress sites and then execute the code when the page is opened in the browser. The plugin has […]

This minor release features 7 bug fixes in Core. The fixes include a bug fix for an issue causing stylesheet and theme directories to sometimes return incorrect results. This release also features one security fix. Because this is a security release, it is recommended that you update your sites immediately.You can download WordPress 6.4.2 from […]

Multiple Balada Injector campaigns have compromised and infected over 17,000 WordPress sites using known flaws in premium theme plugins. Balada Injector is a massive operation discovered in December 2022 by Dr. Web, which has been leveraging various exploits for known WordPress plugin and theme flaws to inject a Linux backdoor. The backdoor redirects visitors of […]

Say hello to WordPress 6.4 “Shirley,” named after the iconic jazz artist Shirley Horn. Her distinctive voice and extraordinary connection to the piano established her as one of the leading jazz musicians of her generation. Horn’s journey from the Washington D.C. jazz scene to the international stage is a testament to her dedication and perseverance. […]

Unfortunately, unlike improving Largest Contentful Paint on WordPress, fixing your Cumulative Layout Shift can get a little technical. Many of these fixes involve digging into the code. Unfortunately, it’s hard to avoid looking at code here, but we will try to include plugin solutions where possible. Let us look at some of the most well-known […]

While there are many ways to monetize your website, there’s one strategy that stands out for its potential and simplicity: the paywall. We’re excited to tell you that this feature is now available on all WordPress.com sites. A paywall allows you to restrict certain pieces of content on your site or newsletter, requiring your readers […]

Nearly 2,000 attendees gathered for two days of keynotes, sessions, and community-building conversations at the Gaylord National Resort & Convention Center in the largest attended WordCamp US ever. Saturday’s sessions concluded with back-to-back keynotes by WordPress co-founder Matt Mullenweg and Executive Director Josepha Haden Chomphosy. Josepha launched her keynote by celebrating 20 years of WordPress […]

Earlier this year, WordPressers around the globe united to celebrate 20 years of community and innovation. There were parties, blogs, videos, and social media posts aplenty. And, of course, the trending hashtag, “#WP20”. Throughout April and May, community members reflected on their journeys, what brought them to WordPress and its personal meaning. The stories, tweets, […]

Hello everyone, and welcome to the WordPress Briefing, the podcast where you can catch quick explanations of the ideas behind the WordPress open source project, some insight into the community that supports it, and get a small list of big things coming up in the next two weeks. I’m your host, Josepha Haden Chomphosy. Here […]

“Lionel” marks a major chapter in the evolution of WordPress as a tool for expression. It’s the culmination of years of work from hundreds of contributors, bringing a more powerful and cohesive editing experience for crafting websites with blocks. It continues the quest of making web publishing approachable for everyone, so it’s also just a […]