export default "data:image/svg+xml;base64,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"
Torque

Search Results for: security

Proposed Password Changes for WordPress 4.3

Filed Under

News

Published

May 13, 2015

5 Comments

On Monday, Mark Jaquith confirmed that WordPress 4.3 will see an overhaul in the way passwords are generated. The changes will encourage WordPress users to strengthen their login credentials, making their websites more secure. A stronger password will also make your website less vulnerable to brute force attacks. The proposed updates focus on the way passwords are chosen, as well as changing some important default settings in the UI. Let’s take a quick look at the four main points coming out of the proposal: WordPress will generate strong passwords by default. You can override this setting and create your own password, […]

This Week In WordPress: 05/11/2015

Author

Doc Pop

Filed Under

News

Published

May 11, 2015

2 Comments

Have a news tip or upcoming WordPress event you’d like to share? Write us at [email protected]. News Highlights: LoopConf Videos: Couldn’t make it to last week’s LoopConf? Great news, all 21 hours of talks are freely available online! The Trojan Emoji: Speaking of LoopConf, Andrew Nacin gave a fun and in-depth talk titled “Anatomy of a Critical Security Bug” in which he discusses a vulnerability fix that was added under the “guise of Emoji support.” DOM-Based XSS Vulnerability: Sucuri recently published info on a DOM-based Cross-Site Scripting (XSS) vulnerability that could affect any theme or plugin that uses an example.html file, including the Jetpack plugin and WordPress’s TwentyFifteen […]

How to Duplicate a WordPress Website

Filed Under

Featured

Published

May 11, 2015

12 Comments

Why would you want to create an exact copy of your WordPress site? Shouldn’t this unique piece of art stand above being treated as a mere commodity? Well, while this is definitely an apt (and in no way overblown) description of your work, there are actually several good reasons to make a duplicate of your site: Moving from development on your computer to production server or the other way around Migrating to a different provider Creating a backup Setting up an online testing environment or staging server Using a copy of an existing site for a similar project Sound convincing? […]

5 Awesome WordPress Plugins You May Not Have Heard of

Filed Under

Featured

Published

May 8, 2015

3 Comments

There are thousands of awesome plugins out there. Many of them, like WordPress SEO by Yoast or W3 Total Cache, are well known and widely used. There are, however, some out there that are just as amazing, yet not as well known; and, with more than 37,000 plugins in the WordPress Plugin Repository, and even more available as premium plugins, it’s easy to overlook them. Today, I want to shine a spotlight on five awesome plugins that you may not have heard of, but will want to start using once you learn about them. 1. Webmaster User Role If you’ve done work for clients before, you’ve […]

DOM-Based XSS Vulnerability Impacts Millions of WordPress Users

Filed Under

News

Published

May 6, 2015

2 Comments

A WordPress security vulnerability has been discovered which could affect millions of WordPress users. The problem, spotted by security firm Sucuri, has been identified as a DOM-based Cross-Site Scripting (XSS) vulnerability. If you want to learn more about the technical side of the vulnerability, this is a great resource by Acunetix. The vulnerability relates to the genericon package; specifically the example.html file. Any theme or plugin that uses this example.html file is potentially vulnerable—if any of your themes or plugins utilize vector icons, you could be at risk. Worryingly, this is known to include the TwentyFifteen theme which ships with […]

How do you stay on top of your WordPress game?

A good way to start is to sign up for our weekly newsletter. We keep you up to date by bringing you the freshest WordPress content from the brightest minds in the industry.