DEV Community

WordPress

the world’s most popular website builder

Posts

👋 Sign in for the ability to sort posts by relevant, latest, or top.
Review: Ally WordPress Plugin Unauthenticated SQL Injection (400k+ Sites) and a Repeatable Response Playbook for WordPress Teams
victorstackai profile

Review: Ally WordPress Plugin Unauthenticated SQL Injection (400k+ Sites) and a Repeatable Response Playbook for WordPress Teams

#security #wordpress #drupal #incidentresponse
Comments
4 min read
SA-CONTRIB-2026-018: SAML SSO Reflected XSS — Script Injection on Your Login Page
victorstackai profile

SA-CONTRIB-2026-018: SAML SSO Reflected XSS — Script Injection on Your Login Page

#drupal #wordpress #security #drupalcms
Comments
3 min read
SA-CONTRIB-2026-017: Drupal Canvas SSRF + Info Disclosure — The Hidden Submodule Problem
victorstackai profile

SA-CONTRIB-2026-017: Drupal Canvas SSRF + Info Disclosure — The Hidden Submodule Problem

#drupal #wordpress #security #review
Comments
3 min read
SA-CONTRIB-2026-016: Islandora Arbitrary File Upload + XSS — A Dangerous Chain
victorstackai profile

SA-CONTRIB-2026-016: Islandora Arbitrary File Upload + XSS — A Dangerous Chain

#drupal #wordpress #security #drupalcms
Comments
3 min read
SA-CONTRIB-2026-015: CAPTCHA Access Bypass — Token Reuse That Breaks Your Spam Gate
victorstackai profile

SA-CONTRIB-2026-015: CAPTCHA Access Bypass — Token Reuse That Breaks Your Spam Gate

#drupal #wordpress #security #drupalcms
Comments
3 min read
SA-CONTRIB-2026-019: Responsive Favicons Persistent XSS — Admin Config as Attack Surface
victorstackai profile

SA-CONTRIB-2026-019: Responsive Favicons Persistent XSS — Admin Config as Attack Surface

#drupal #wordpress #security #drupalcms
Comments
3 min read
SA-CONTRIB-2026-012: Theme Negotiation by Rules CSRF — GET Requests That Mutate State
victorstackai profile

SA-CONTRIB-2026-012: Theme Negotiation by Rules CSRF — GET Requests That Mutate State

#drupal #drupalcms #wordpress #review
Comments
4 min read
AI Didn’t Replace Web Developers — It Made Good Ones Stronger
muhammadmedhat profile

AI Didn’t Replace Web Developers — It Made Good Ones Stronger

#ai #webdev #wordpress #php
Comments
3 min read
What I Learned About Enterprise WordPress Security
mdismail_e830c2c4f43ae37 profile

What I Learned About Enterprise WordPress Security

#wordpress #security #infosec #wordfence
1
Comments 1
3 min read
Review: Real-Time Collaboration in the WordPress Block Editor and What Changes for Plugin and Block Developers
victorstackai profile

Review: Real-Time Collaboration in the WordPress Block Editor and What Changes for Plugin and Block Developers

#wordpress #drupal #gutenberg #blockeditor
Comments
4 min read
Drupal SA-CONTRIB-2026-011 through 019: Full Triage Map and Impact Assessment
victorstackai profile

Drupal SA-CONTRIB-2026-011 through 019: Full Triage Map and Impact Assessment

#drupal #wordpress #security #triage
Comments
4 min read
I Tested 5 WooCommerce AI Search Plugins So You Don't Have To
gronrafal profile

I Tested 5 WooCommerce AI Search Plugins So You Don't Have To

#wordpress #woocommerce #webdev #ai
1
Comments
4 min read
assertEqualHTML() in WordPress: Kill Your Brittle HTML Tests
victorstackai profile

assertEqualHTML() in WordPress: Kill Your Brittle HTML Tests

#wordpress #drupal #testing #phpunit
Comments
4 min read
I Built a WordPress Plugin That Calculates Snow Loads Per DIN EN 1991-1-3 – Using OpenRouteService for Elevation Data
joshmsn profile

I Built a WordPress Plugin That Calculates Snow Loads Per DIN EN 1991-1-3 – Using OpenRouteService for Elevation Data

#wordpress #php #api #webdev
Comments
5 min read
Deep Dive: Ensuring WordPress Plugin Quality with Plugin Check (PCP)
shahibur_rahman_6670cd024 profile

Deep Dive: Ensuring WordPress Plugin Quality with Plugin Check (PCP)

#wordpress #plugins #codequality #development
Comments
4 min read
👋 Sign in for the ability to sort posts by relevant, latest, or top.