Bates College

Switching from Shortcodes to Blocks, part 2

In the first post of this series, we discussed transforming a simple shortcode to a block, and using shortcode content for a block attribute value. In this post, we’ll get into a more difficult case: ...
Threat Post

WordPress Patches Serious Shortcodes Core Engine Vulnerability

WordPress upgraded to 4.3.1, patching a pair of vulnerabilities in the core engine, including a cross-site scripting issue enabled by a vulnerability in shortcodes. WordPress core engine security ...
Searchenginejournal.com

WordPress Popular Posts Plugin Vulnerability Affects 100k+ Sites

An advisory has been issued about a high-severity WordPress vulnerability that makes it possible for attackers to inject arbitrary shortcodes into sites using the WordPress Popular Posts plugin.