cookies

WordPress.com Security Vulnerability Stirs Debate Over Responsible Disclosure

Jeff Chandler May 28, 2014 44

Late last week, Yan Zhu, a Staff Technologist for the Electronic Frontier Foundation publicly disclosed a security vulnerability she discovered with WordPress.com and how it handles cookies. More specifically, she discovered the “wordpress_logged_in” cookie being sent in the clear to a WordPress authentication endpoint. She was able to use the (more…)

WordPress Plugin Authors: Be Up Front and Honest With Users About Tracking

Jeff Chandler December 17, 2013 9

Plugins collecting information and phoning home to a third-party without the user’s consent is a serious issue in the WordPress community. The WordPress plugin repository guidelines are clear on this matter specifically, point number seven and its sub points. Pooria Asteraky has published a post that explains why there needs (more…)

Jesse: With every new GitHub feature, there is less reaso »
Vedathemes: There should a way to step by step recipes. I don »
Andreas Nurbo: It’s bad to see that the WordPress community embra »
Jamie Madden: Congrats Justin! Looking forward to reading things »
Sajan Kota: At the first look bayleaf theme looks really great »
shawn: I usually lurk, but I'l lcome out the woodwork for »
Chris Lema: Congrats. Excited to read your posts! »
Vedathemes: Hi Elena, Thanks for taking your time to test t »
Vedathemes: Thanks Justin for your review and the article. You »
Ben Anair: Pushing for more diversity” will never work becaus »