The WordPress Plugin Directory has more than 100 plugins that integrate Constant Contact in different ways for email marketing, such as adding a subscription checkbox to registration or providing an email signup form via a widget. This week the company released its own official plugin on WordPress.org to expand its (more…)
WP Media is reporting a high risk XSS vulnerability in W3 Total Cache that the company learned about from El Rincón de Zerial’s security blog. The plugin is currently active on more than one million WordPress sites. This particular vulnerability is found within the plugin’s support form that is embedded (more…)
Last week CloudFlare released the first update to its official WordPress plugin in approximately six months. Although the release post refers to the update as “CloudFlare’s new WordPress plugin,” it is essentially a major rewrite and a jump from version 1.3.25 to 3.0. The previous changelog has been wiped out (more…)
Earlier this year, we asked Automattic what’s going on with Edit Flow, an editorial workflow plugin for WordPress that the company acquired from Daniel Bachhuber, a former Automattician. Mark Armstrong, who represents Automattic, said the plugin is an active project used on many VIP client sites. However, the fixes implemented (more…)
Jetpack 4.3 was released today with a new admin interface that has been completely rewritten in React.js. The Jetpack team has been working on the redesign for a year and received feedback from more than 8,000 Jetpack users before the official release. After updating to 4.3, Jetpack users will see (more…)
LaunchKey’s password-free authentication platform has been acquired by iovation, a company that provides fraud prevention services and device-based authentication. The companies plan to merge their technologies to provide more authentication options and are launching a product called LaunchKey MFA, a new combined dynamic authentication suite. LaunchKey MFA offers security professionals (more…)
Ninja Forms 3.0 was released today after a year in development. WP Ninjas have completely rewritten the plugin using Backbone, Underscore, and Marionette, an undertaking that required the bulk of development time for this milestone. This architectural overhaul brings major improvements to the user experience. The most visible improvements can (more…)
Over the weekend, Easy Meta Builder launched a new custom fields marketplace built around CMB2, a popular library that WordPress developers use to easily build metaboxes, custom fields, and forms. CMB2 is active on more than 50,0000 sites. Easy Meta Builder offers a “no code” way to use CMB2 for (more…)
Two months ago the WordPress Plugin Directory guidelines became a heated topic of debate after the plugin team began cracking down on incentivized reviews. The most recent publicized incident involved the Sprout Invoices plugin, which was temporarily removed from the directory and all of its 5-star reviews erased after it (more…)
When a WordPress plugin has an update available, it comes with a “View Details” link where users can read the changelog before updating. Clicking the details link launches the changelog section of the readme.txt file in a modal window. Themes, on the other hand, do not have a link to (more…)
When uploading images to WordPress’ media library, there are a couple of different fields available to provide additional information. You can edit an image’s title, add a caption, provide alternative text, and add a description. The Alt Text field displays text when an image does not display. According to Morten Rand-Hendriksen, these fields are underutilized (more…)
Mergebot is a new SaaS solution by Delicious Brains Inc., that simplifies the database merging process making it somewhat similar to VersionPress. Although he hasn’t used the service as it’s still in early beta, Bernard compares the two and provides insight into how Mergebot possibly accomplishes database merging at a (more…)