matt mullenweg – wp-expert

Best WordPress Hosting

Hacker Targeted WordPress Plugin Still in Plugin Directory Despite Publicly Disclosed Unfixed SQL Injection Vulnerability

Posted on 27 September 2023 by

On Saturday we had what appeared to be a hacker probing for usage of the WordPress plugin WP Job Portal on our website. That plugin is available in the WordPress Plugin Directory and has 3,000+ active installations according to WordPress’ Continue reading Hacker Targeted WordPress Plugin Still in Plugin Directory Despite Publicly Disclosed Unfixed SQL Injection Vulnerability→

Two Weeks Later WordPress Hasn’t Taken Action With WordPress Plugin That Loaded Malicious JavaScript

Posted on 4 January 2023 by

Anyone who has spent much time trying to use WordPress’ support forum and the connected plugin review system knows that the moderators of that often get in the way and causing unnecessary problems (as well other troubling behavior, including deleting Continue reading Two Weeks Later WordPress Hasn’t Taken Action With WordPress Plugin That Loaded Malicious JavaScript→

Matt Mullenweg’s WP Tavern Didn’t Allow Question on Significant State of the Word Related Security Issue

Posted on 19 December 2022 by

The heads of tech companies controlling the online conversation has been a big issue recently based on Elon Musk’s takeover of Twitter and subsequent actions. WordPress has a similar issue that doesn’t get much attention, probably explained, in part, because Continue reading Matt Mullenweg’s WP Tavern Didn’t Allow Question on Significant State of the Word Related Security Issue→

Automattic Employees Don’t Appear to Understand What Security Is

Posted on 7 October 2022 by

The WordPress community is in the midst of a controversy involving a strange, largely unexplained, situation. A chart that used to be shown on the Advanced View page for plugins in the WordPress’ plugin directory was removed. This is an Continue reading Automattic Employees Don’t Appear to Understand What Security Is→

Automattic Employee Introduced Serious Exploitable Vulnerability Into WordPress’ Own Plugin

Posted on 5 October 2022 by

As detailed in a more technical post, proactive monitoring we do caught a serious vulnerability of a type highly likely to be exploited being introduced in to a WordPress plugin this week. By the install count of the plugin, this Continue reading Automattic Employee Introduced Serious Exploitable Vulnerability Into WordPress’ Own Plugin→

WordPress is Obfuscating the Connection Between the WordPress Plugin Directory and Automattic

Posted on 4 October 2022 by

An odd controversy has recently taken up the spotlight in the WordPress plugin developer community, the removal of the Active Install Growth chart from the Advanced View page for plugins in the WordPress Plugin Directory. That chart showed the growth Continue reading WordPress is Obfuscating the Connection Between the WordPress Plugin Directory and Automattic→

#30 – Matt Mullenweg on the Future of Technology and Where WordPress Fits In

Posted on 15 June 2022 by

On the podcast today we have Matt Mullenweg. Matt is the co-founder of WordPress, and as a result, he has been a user for as long as anyone. We recorded this podcast whilst at WordCamp Europe in Portugal a couple Continue reading #30 – Matt Mullenweg on the Future of Technology and Where WordPress Fits In→