WordPress + Follow

Images can quietly wreck your site. They generally slow pages down, eat bandwidth, and frustrate users if they take too long to load – especially on mobile. Any solution to this?

On May 4th, 2025, we received a submission for an Arbitrary File Upload vulnerability in TheGem, a WordPress theme with more than 82,000 sales. This vulnerability can be used by authenticated attackers, with subscriber-level access and above, to upload arbitrary files to a vulnerable site and achieve remote code execution, which is typically leveraged for a complete site takeover.

📢 In case you missed it, Wordfence just published its annual WordPress security report for 2024. Read it now to learn more about the evolving risk landscape of WordPress so you can keep your sites protected in 2025 and beyond.   Last week, there were disclosed in and that have been added to the Wordfence Intelligence …Read More

WordPress Campus Connect, initially launched in October 2024 as a pilot program, has now been formally established as an official event series due to its resounding success. The inaugural program, spearheaded by myself, Anand Upadhyay, garnered immense enthusiasm from 400 Indian students who were eager to engage in hands-on WordPress training. WordPress Campus Connect transcends …

Divi 5‘s Nested Rows feature provides a new way to build websites with Divi. With Nested Rows, you can place rows within rows with infinite nestability, unlocking the flexibility to easily build complex, stunning layouts. This feature marks a pivotal step towards Divi 5’s advanced, flexbox-based layout system, setting the stage for a new era …

On April 6th, 2025, we received a submission for an Arbitrary File Read vulnerability in Eventin, a WordPress plugin with more than 10,000 active installations. This vulnerability makes it possible for an unauthenticated attacker to read arbitrary files on the server, which can contain sensitive information.

Divi empowers you to build the best websites possible, and now, Divi Quick Sites takes website creation to a whole new level. This revolutionary tool lets anyone, regardless of skill level, generate a complete website in under two minutes! Divi Quick Sites provides everything you need to launch your dream website instantly. You can choose …

Divi empowers you to build the best websites possible, and now, Divi Quick Sites takes website creation to a whole new level. This revolutionary tool lets anyone, regardless of skill level, generate a complete website in under two minutes! Divi Quick Sites provides everything you need to launch your dream website instantly. You can choose …

On May 2nd, 2025 the Wordfence Threat Intelligence team added a new critical vulnerability to the Wordfence Intelligence vulnerability database in the OttoKit: All-in-One Automation Platform (Formerly SureTriggers) plugin publicly disclosed by a third-party CNA on April 30th, 2025. This vulnerability makes it possible for unauthenticated attackers to gain administrative level access to vulnerable sites, where the site has never used an application password nor connected to SureTriggers or by authenticated attackers with a valid application password.

Start shipping internationally with less hassle. From regulations to finding the right partners — everything you need to know.

How automatically translating our company website improved the user experience for thousands of visitors for just a few dollars.  In 2024, we decided to automatically translate our company website, onthegosystems.com, to Spanish, French, and German. The result?  The best part is we achieved all this without a single human translator or complex workflow. Here’s exactly …

Welcome to Part 3 of the WordPress Security Research Beginner Series! If you haven’t yet, take a minute to check out the series introduction to get a sense of what this series is all about. You’ll also want to catch up on Part 1, where we dig into WordPress request architecture and hooks, and Part …Read More

Tired of juggling multiple platforms? Learn how Google Site Kit streamlines SEO and analytics for WordPress sites.

WordPress powers over 43% of the internet, yet countless site owners still struggle to turn their corner of the web into a successful website that boosts traffic. In 2025, driving traffic to your website isn’t just a nice thing – it’s a pillar of online success. Traffic can fuel everything from brand visibility to conversions …

If there’s one thing that slows down website building, it’s dealing with repeated content — addresses, contact details, button links, or your company mission. Repeated content is necessary for consistency, but can be tedious to manage manually. Divi 5’s Design Variables help fix that. Instead of copying and pasting the same content across pages, you …

Have you ever spent hours perfecting a website’s typography, colors, and spacing, only for the client to request a complete overhaul? Manual edits across countless pages can turn simple updates into a tedious process. Enter Divi 5‘s Design Variables, a new feature that eliminates these headaches and empowers web designers to work smarter. In this post, we’ll explore how …

Set up a winning WooCommerce shipping strategy in 5 steps. Keep costs low, delight customers, and make more sales. Here are the tools you need.

Divi empowers you to build the best websites possible, and now, Divi Quick Sites takes website creation to a whole new level. This revolutionary tool lets anyone, regardless of skill level, generate a complete website in under two minutes! Divi Quick Sites provides everything you need to launch your dream website instantly. You can choose …

We’re thrilled to announce Modern WordPress Fast Track – a WordPress development course designed to take you from zero to mastery in 10 weeks.

WordPress websites make up over 40% of the web, making it a prime target for cybercriminals. From small blogs to enterprise sites, its popularity comes with a catch: hackers constantly seek ways to exploit it. A single security lapse can lead to defaced pages, stolen data, or a complete site takeover, costing time, money, and …

Stop cramming everything into Posts and Pages. Custom post types can revolutionize your WordPress site and showcase your business the way it deserves.

Woo uses AI in support and behind the scenes — with a 90% helpfulness score. Here are five changes we’ve made with insight from our AI implementations.

We’re excited to release Module Groups for Divi 5, a new container element in Divi’s layout hierarchy that lets you group modules inside columns. Using groups, you can manage and style module compositions. Furthermore, groups will be essential in Divi’s upcoming flexbox layout system and loop builder. Check out the following video to see the …

📢 In case you missed it, Wordfence just published its annual WordPress security report for 2024. Read it now to learn more about the evolving risk landscape of WordPress so you can keep your sites protected in 2025 and beyond.   Last week, there were disclosed in and that have been added to the Wordfence Intelligence …Read More

WordPress 6.8.1 is now available! This minor release includes fixes for 15 bugs throughout Core and the Block Editor addressing issues affecting multiple areas of WordPress including the block editor, multisite, and REST API. For a full list of bug fixes, please refer to the release candidate announcement. WordPress 6.8.1 is a short-cycle maintenance release. …

Your WordPress site’s header isn’t just a design choice. It’s the face of your brand, the map for your visitors, and the first step in a great user experience. A custom header makes navigation easier and sets the tone for the rest of your website. It’s a small space with a big impact. Thankfully, header …

Teaching online shouldn’t feel like wrestling with software, yet that’s what many WordPress LMS plugins make you do. It’s often not entirely their fault, though. After all, transforming WordPress into a full-featured LMS is a significant challenge, and it’s difficult to keep things intuitive while making a lot of functionality possible.

WPML 4.7.4 introduces the first stage of compliance with the European Accessibility Act (EAA). It also includes a security fix and compatibility improvements for popular page builders. Accessibility Aligned with EAA The EAA requires digital products, including WordPress themes and plugins, to be usable by people with disabilities. While we always follow common accessibility guidelines, …

Today, we’re examining Wordfence’s vulnerability data for 2024 and 2025, and comparing it to other WordPress Certified Numbering Authorities (CNAs) and vulnerability data providers. This report will demonstrate why Wordfence is the undisputed leader in WordPress vulnerability intelligence and WordPress security.