All in One SEO 2.3.7 Patches Persistent XSS Vulnerability

Semper Fi Web Design, the company behind All in One SEO, a popular WordPress SEO optimization plugin that’s active on more than 1M sites, has released 2.3.7 to patch a persistent XSS security vulnerability. According to the plugin’s changelog, 2.3.7 sanitizes the Bad Bots module referer and user agent. While it doesn’t sound (more…)

WordPress 4.6 to Standardize Metadata Registration

WordPress 4.6 will introduce some exciting updates that give plugin and theme authors a standardized way of registering metadata. This refers to the additional data that is attached to WordPress’ main content types (posts, users, and comments), which users often interact with via custom fields or metaboxes when editing posts. (more…)