In this report, 164 vulnerabilities have been publicly disclosed. Security patches for 89 of these plugins and themes are now available. Please run these updates as soon as possible. If you’re a Solid Security Pro user, the version management tool… Continue Reading →
X-comment from +make.wordpress.org/core: Comment on Accessibility Improvements in WordPress 6.9
Each and every WordPress release day is an acknowledgment of the collective efforts from every single contributor in the community that helped to make that release possible. The State of the Word has historically also been festive in nature, calling… Continue Reading →
We’re excited to share that Kinsta is sponsoring WordCamp Brazil 2025, one of our last WordCamp appearances of 2025, and there’s no better place to wrap this eventful year than Rio de Janeiro. Before the festive season kicks in, join… Continue Reading →
The third Release Candidate (“RC3”) for WordPress 6.9 is ready for download and testing! This version of the WordPress software is under development. Please do not install, run, or test this version of WordPress on production or mission-critical websites. Instead,… Continue Reading →
This guide outlines major developer features and breaking changes in 6.9 and is published in the Release Candidate phase to help inform WordPress extending developers, Core developers, and others. There are more than 400 Core Trac tickets included in WordPress… Continue Reading →
Block Variations: Have getActiveBlockVariation fall back to default variationCore-data: Media Entity DeprecationWhat is being deprecated?Why is this being deprecated?How to update your code to use the attachment entityReplacing API callsChanges to the caption property when using the getEditedEntityRecord selectorBlock Editor: Support passing updater function to setAttributesSelectControl: Moved class… Continue Reading →
If you want to offer web hosting but don’t want to manage your own server infrastructure, white-label web hosting could be the solution. In this post, you’ll learn what white-label hosting is and some of the benefits that it can… Continue Reading →
X-comment from +make.wordpress.org/ai: Comment on Release announcement: MCP Adapter v0.3.0
With the Loop Builder feature in Divi 5, you can easily create a responsive grid using the free version of Advanced Custom Fields (ACF). In this post, we’ll demonstrate how to configure ACF, set up CSS Grid, and use the… Continue Reading →
As a website grows, small styling differences, such as a border radius on a button or spacing in a heading, begin to appear across pages. Fixing them means repeating the same changes over and over. We introduced Presets a while… Continue Reading →
Every website owner wants an accessible website, but it often takes work and some research. While the average user can navigate a website without supporting technologies, many people, including potential customers and fans, rely on an unseen layer of your… Continue Reading →
X-comment from +make.wordpress.org/ai: Comment on Meet Abilities, WordPress’ New Functional Core
X-comment from +make.wordpress.org/ai: Comment on Introducing the WordPress AI Client SDK
WordPress 6.9 brings an abundance of quiet improvements to the HTML API. Updates in this release mostly represent applications of the HTML API to existing code in Core; these updates increase WordPress’ reliability, improve its security hardening, and reduce maintenance… Continue Reading →
Last month in October 2025, the Wordfence Bug Bounty Program received 486 vulnerability submissions from our growing community of security researchers working to improve the overall security posture of the WordPress ecosystem. These submissions are reviewed, triaged, and processed by… Continue Reading →
Building layouts in Divi continues to become more advanced and intuitive. You can now place modules inside other modules with Nested Modules. You can also put rows inside rows; these are called Nested Rows. Both give you more design freedom,… Continue Reading →
PHP 8.5 was released on November 20th. Contributors to WordPress have been busy in recent months preparing for this version and we’re happy to report that all issues reported against PHP 8.5 have been addressed in WordPress 6.9 RC2. Compared… Continue Reading →
Most WordPress site owners believe they are protected. They install a trusted security plugin like Solid Security, keep it updated, and assume that is enough. But recent research from WeWatchYourWebsite.com paints a different picture. In September 2025, the company analyzed… Continue Reading →
Digital presence is more than just a marketing channel. It’s often the primary driver of revenue, customer experience, and competitive differentiation. This critical asset demands enterprise-grade performance, rigorous security, and seamless scalability. When scaling business-critical WordPress sites, choosing to self-host… Continue Reading →
On November 19th, a group of community members from the #content-creators channel to talk about content creation across different mediums (Twitch, YouTube, Podcast, News/Newsletter). We covered a wide range of topics from short form content to how to stay close… Continue Reading →
A common misconception about web hosting is that it is an expense for agencies and website owners. However, the truth is quite different. Choosing premium hosting is a real investment, rather than a passive item for an agency or online… Continue Reading →
“What’s new in Gutenberg…” posts (labeled with the #gutenberg-new tag) are posted following every Gutenberg release on a biweekly basis, showcasing new features included in each release. As a reminder, here’s an overview of different ways to keep up with… Continue Reading →
WordPress 6.9 brings extensive accessibility improvements across WordPress Core and Gutenberg, continuing the goals to meet web content accessibility standards throughout WordPress and make it easier to author accessible content. These updates include changes to administration, customization, login and registration,… Continue Reading →
When creating and editing menus in the Menus interface, searching for posts and pages has historically used a full text search as a query. This can make some pages difficult to find, if they use a title that primarily uses… Continue Reading →
With WordPress 6.9, numerous legacy features that were used to support Internet Explorer have been removed. All versions of Internet Explorer have been unsupported in WordPress since version 5.8, released in July 2021. These changes continue the process of removing… Continue Reading →
WordPress 6.9 introduces the WP_Block_Processor class — a new tool inspired by the HTML API and designed for efficiently scanning, understanding, and modifying block structure in HTML documents. Continue on to learn about this new class, its use-cases, and how… Continue Reading →
On October 11th, 2025, we received a submission for an Account Takeover via Email Log Disclosure vulnerability in Post SMTP, a WordPress plugin with more than 400,000 active installations. This vulnerability makes it possible for an unauthenticated attacker to view… Continue Reading →
When a string passed to the esc_url() and esc_url_raw() functions does not include a protocol (https://, http://, etc.), WordPress will prepend http:// to the URL string before further processing and returning it. This is a reasonable fallback behavior, but there… Continue Reading →
Blind and low-vision users use screen readers to browse the web. These tools read your site out loud. Screen readers can only work with what your code tells them about the component. The site might work fine for sighted visitors… Continue Reading →
