Month: April 2015

WordPress XSS Vulnerability

Multiple WordPress Plugins are vulnerable to Cross-site Scripting (XSS) due to the misuse of the add_query_arg() and remove_query_arg() functions. These are popular functions used by developers to modify and add query strings to URLs within WordPress.

The official WordPress Official Documentation (Codex) for these functions was not very clear and misled many plugin developers to use them in an insecure way. The developers assumed that these functions would escape the user input for them, when it does not. This simple detail, caused many of the most popular plugins to be vulnerable to XSS.

Google Update: Mobile is Mandatory

From April 21st, Google will be rewarding mobile friendly sites in their ranking algorithms. This article will help you determine whether you are ready for this change, and what to do if you're not!

WordPress › Error

There has been a critical error on this website.

Learn more about troubleshooting WordPress.