cookies

WordPress.com Security Vulnerability Stirs Debate Over Responsible Disclosure

Jeff Chandler May 28, 2014 44

Late last week, Yan Zhu, a Staff Technologist for the Electronic Frontier Foundation publicly disclosed a security vulnerability she discovered with WordPress.com and how it handles cookies. More specifically, she discovered the “wordpress_logged_in” cookie being sent in the clear to a WordPress authentication endpoint. She was able to use the (more…)

WordPress Plugin Authors: Be Up Front and Honest With Users About Tracking

Jeff Chandler December 17, 2013 9

Plugins collecting information and phoning home to a third-party without the user’s consent is a serious issue in the WordPress community. The WordPress plugin repository guidelines are clear on this matter specifically, point number seven and its sub points. Pooria Asteraky has published a post that explains why there needs (more…)

Aleksandr Samokhin: This UI update is horrible and painful for the eye »
Lynn: I tried it out (again). I still can't drag and dro »
Nollind Whachell: Squarespace worked this way up until the launch of »
Roger: About time Rahsaan got some love! Say a little »
Kevin Harter: My teenage son and I like going to WordCamps toget »
Antony: I thought something had gone wrong with the update »
Greg: If you'd like to avoid using Jetpack and you're no »
Bastian: Yep, those borders are fugly »
Wasiu Adewale: I have just updated to this version but my site st »
Chukwuka Solomon: The same here however, thanks to the community for »