A WPProAtoZHost.com Company…. Today I have a New Plugin review, some News tips, plugin extras and more all coming up on Plugin Pulse: WP Plugins A to Z Unplugged. I am talking about unpopular ideas in WordPress today and I… Continue Reading →
On June 10th, 2025, we received a submission for a Remote Code Execution vulnerability in Sneeit Framework, a WordPress plugin with an estimated 1,700 active installations. The plugin is bundled in multiple premium themes. This vulnerability can be leveraged to… Continue Reading →
Typical analytics tools filter out bot traffic and show you only human visitor data. The LLM Bot Tracker plugin from Hueston fills this gap by monitoring AI systems that access your WordPress content. This post will look at how the… Continue Reading →
On November 18th, 2025, we received a submission for an unauthenticated Remote Code Execution vulnerability in Advanced Custom Fields: Extended, a WordPress plugin with more than 100,000 active installations. This vulnerability can be leveraged to execute code remotely. Props to… Continue Reading →
On July 24th, 2025, we received a submission for a Privilege Escalation vulnerability in King Addons for Elementor, a WordPress plugin with more than 10,000 active installations. This vulnerability makes it possible for an unauthenticated attacker to grant themselves administrative… Continue Reading →
A WPProAtoZHost.com Company…. So for today I am talking about unpopular ideas in WordPress today and I have a New Plugin review, some News tips, plugin extras and more all coming up on Plugin Pulse: WP Plugins A to Z… Continue Reading →
The 2025 Holiday Gift Guide with Dustin Hartzler [powerpress]
X-comment from +make.wordpress.org/ai: Comment on Announcing the AI Experiments Plugin v0.1.0
A WPProAtoZHost.com Company…. It’s Episode 661 and we have plugins for Black Holes with Seasonal Effects, and some WordPress News. It’s all coming up on WordPress Plugins A-Z! The post From Widgets to Wonders: WP Plugins AtoZ Explores the Best… Continue Reading →
The FastPixel plugin consolidates caching, image optimization, Critical CSS generation, and CDN delivery into a single cloud-based solution with great UX. This FastPixel discovery post takes a quick look at your next potential performance partner! The post “Discovering FastPixel: The… Continue Reading →
This week I Talk About Searching For A Tools To Help Manage My Accounts [powerpress]
Congratulations, David, Fran, and everyone in the team, for your ongoing efforts and your long-term vision.
Most WordPress site owners believe they are protected. They install a trusted security plugin like Solid Security, keep it updated, and assume that is enough. But recent research from WeWatchYourWebsite.com paints a different picture. In September 2025, the company analyzed… Continue Reading →
On October 11th, 2025, we received a submission for an Account Takeover via Email Log Disclosure vulnerability in Post SMTP, a WordPress plugin with more than 400,000 active installations. This vulnerability makes it possible for an unauthenticated attacker to view… Continue Reading →
A WPProAtoZHost.com Company…. Good Morning, Good Afternoon, Good Evening! — here.. 5k fueled with homemade chicken soup and crackers. So for today I am Talking about unpopular ideas in WordPress today and I have a New Plugin review, some News… Continue Reading →
It’s the time of year when we roll out delicious savings! We’re offering new customers big savings on the essential plugins trusted by top developers and agencies worldwide. Whether you’re trying to move a complex website, offload a massive media… Continue Reading →
This week I Share Do’s & Dont’s For BF/CM in 2025 [powerpress]
A WPProAtoZHost.com Company…. It’s Episode 660 and we have plugins for Posting Calendars while Monitoring Users Live, with some WordPress News. It’s all coming up on WordPress Plugins A-Z! The post Plugin Fever: Catch the WordPress Buzz with WPPlugins AtoZ!… Continue Reading →
This week I Talk About Getting A Coach For Your Business [powerpress]
100,000 WordPress Sites Affected by Privilege Escalation Vulnerability in AI Engine WordPress Plugin
On October 4th, 2025, we received a submission for a Sensitive Information Exposure vulnerability in AI Engine, a WordPress plugin with more than 100,000 active installations. This vulnerability can be exploited by unauthenticated attackers to extract the bearer token and… Continue Reading →
On October 11th, 2025, we received a submission for an Account Takeover via Email Log Disclosure vulnerability in Post SMTP, a WordPress plugin with more than 400,000 active installations. This vulnerability makes it possible for an unauthenticated attacker to view… Continue Reading →
I’m so happy to see this land and excited to see its progress! Great work.
In reply to Amber Hinds. It’s not bad, not at all, but a system like the one you propose could penalize a company or developer that has been delivering code without problems for years but that, in the latest update,… Continue Reading →
That’s a great move! When the PCP Checker was released, it helped us a lot in identifying and fixing issues across all the plugins we develop for WordPress and WooCommerce. We’d love to see even stricter security checks built into… Continue Reading →
On September 25th, 2025, we received a submission for a Privilege Escalation vulnerability in WP Freeio, a WordPress plugin bundled in the Freeio premium theme with more than 1,700 sales. This vulnerability makes it possible for an unauthenticated attacker to… Continue Reading →
I’d be interested in seeing public badges or data on plugin pages at some point that make this more transparent for users when comparing plugins. Even if it’s just flagging in the positive – something like X past releases with… Continue Reading →
As an important part of the internet, the WordPress community, actively thinks about the security of the ecosystem. Community members, developers, specialized companies, and independent researchers all play a role in maintaining the security of the environment. In the Plugins… Continue Reading →
