How to Start a Fashion Blog in Eight Steps

Posted on November 9, 2021 by Rob Pugh

Creating a website or blog to share your passion for fashion and your unique take on style has never been easier. But, with so many different platforms and options available, it can be difficult to decide on the right tools to turn your hobby into an authoritative source for fashion inspiration.

Here are eight steps to create a fashion blog that will help you express your creativity, have fun, and even turn a profit:

  1. Find your voice.
  2. Name your blog.
  3. Choose your host.
  4. Pick a theme.
  5. Install security and performance plugins.
  6. Create a posting schedule and stick to it.
  7. Use high-quality photography and draw from your social media accounts.
  8. Monetize your fashion blog.

Continue reading → How to Start a Fashion Blog in Eight Steps
Posted in Small Business | Leave a comment

Jetpack Acquires WordPress Vulnerability Database WPScan

Posted on November 4, 2021 by Rob Pugh

Jetpack is acquiring WPScan, a WordPress vulnerability database. WPScan is used across the WordPress ecosystem to learn about new vulnerabilities to WordPress core, themes, and plugins. 

WPScan started as a simple Ruby script in 2011 to help identify vulnerabilities in self-hosted WordPress websites. The simple script matured into a large software project and gained popularity amongst the security and WordPress communities.

Vulnerabilities are sourced from around the web, as well as security researchers from both the community and WPScan. In 2021, WPScan was able to double the amount of vulnerabilities added to the database compared to 2020. In total, it has cataloged more than 23,000 WordPress vulnerabilities over the last 10 years. 

Continue reading → Jetpack Acquires WordPress Vulnerability Database WPScan
Posted in Jetpack News, Security | Leave a comment

Jetpack 10.3 – Under-the-hood improvements for your site

Posted on November 2, 2021 by Jeremy Herve

This month, we’re shipping several under-the-hood improvements and bug fixes to make Jetpack work even better for you and your website. Here are the highlights:

  • Since the re-launch of Jetpack VideoPress last month we have made some bug fixes to ensure that the video block experience is fully optimised.
  • This release also includes many other bug fixes and improvements — check the changelog for more details.

Continue reading → Jetpack 10.3 – Under-the-hood improvements for your site
Posted in Releases, Uncategorized | Tagged | Leave a comment

Security Issues Patched in Smash Balloon Social Post Feed Plugin

Posted on October 29, 2021 by Marc Montpas

During an internal audit of the Smash Balloon Social Post Feed plugin (also known as Custom Facebook Feed), we discovered several sensitive AJAX endpoints were accessible to any users with an account on the vulnerable site, like subscribers. Some of these endpoints could enable Stored Cross-Site Scripting (XSS) attacks to occur. 

A successful Stored XSS attack could enable bad actors to store malicious scripts on every post and page of the affected site. If a logged-in administrator visits one of the affected URLs, the script may run on their browser and execute administrative actions on their behalf, like creating new administrators and installing rogue plugins.

We reported the vulnerabilities to this plugin’s author via email, and they recently released version 4.0.1 to address them. We strongly recommend that you update to the latest version of the Smash Balloon Social Post Feed plugin and have an established security solution on your site, such as Jetpack Security.

Continue reading → Security Issues Patched in Smash Balloon Social Post Feed Plugin
Posted in Security, Vulnerabilities | Tagged , , | Leave a comment

Announcing Jetpack Licensing for Agencies and Professionals

Posted on October 27, 2021 by Jesse Friedman

Today, we are excited to announce a new way to distribute Jetpack products to your clients. We designed an all-new licensing portal to address the needs of agencies, implementers, and other web professionals. If you manage multiple WordPress websites, we think this program will be perfect for your needs. 

Continue reading → Announcing Jetpack Licensing for Agencies and Professionals
Posted in Jetpack News | Leave a comment

How to Maintain Your eCommerce Site

Posted on October 26, 2021 by Rob Pugh

You’ve built your store, filled it with amazing products, and fine-tuned your marketing and logistics. This is a huge accomplishment, but it doesn’t mean it’s time to kick up your feet and relax.

It might be tempting to shift your focus to the creative side of running your business. Launching new products and developing clever marketing campaigns can be a lot more fun than optimizing database tables and staying on top of SEO. But, just like in a brick and mortar store, your online shop requires ongoing maintenance in order to keep things running smoothly. 

Continue reading → How to Maintain Your eCommerce Site
Posted in Ecommerce | Comments Off on How to Maintain Your eCommerce Site

Meet Jetpack Backup: Now as a Standalone Plugin

Posted on October 21, 2021 by Rob Pugh

For more than ten years, Jetpack has been regarded as the ultimate all-in-one toolkit for WordPress sites. With more than five million active installations, it provides a single plugin to make sites faster and safer, while providing more traffic. And it eliminates the need to search for dozens of different plugins, vet their quality, install them, make sure they don’t conflict, and remember to update them.

But we also appreciate that the WordPress community is incredibly diverse and that everyone’s needs are unique. Many developers and site owners asked for the flexibility to use specific components of Jetpack as part of their own, custom-built “tech stack” of plugins. We listened.

“This project came as a direct result of feedback from the community,” says Backup Team Lead William Viana. “We’ve gotten such a positive response about Jetpack Backup. But whenever we ask for suggestions, people always ask if they can install Backup by itself. Now, I’m excited to say you can.” 

Continue reading → Meet Jetpack Backup: Now as a Standalone Plugin
Posted in Jetpack News | Comments Off on Meet Jetpack Backup: Now as a Standalone Plugin

13 Things Every Medical Practice Website Should Include

Posted on October 20, 2021 by Rob Pugh

A medical practice website is an essential tool for any healthcare provider. It can be used to share resources with patients, demonstrate your expertise, and spread the word about your services. It can also be instrumental in managing billing and payments, scheduling appointments, and granting patients access to their medical records.

To best serve existing and future patients, you’ll want to carefully plan your website’s features and content. If you’re a healthcare provider or a website developer that doesn’t have experience building medical practice websites, you may want to enlist the help of a developer who specializes in this area so you can be assured that ADA, HIPAA, and other compliance requirements are met. 

Whether you build your site yourself or hire a developer to do it for you, include the following 13 features to maximize the benefits for your patients and business:

Continue reading → 13 Things Every Medical Practice Website Should Include
Posted in Features | Comments Off on 13 Things Every Medical Practice Website Should Include

WordPress Security for Beginners

Posted on October 15, 2021 by Rob Pugh

Whether you’re launching a business site, an online store, or a hobby blog, WordPress offers flexibility, ease of use, and advanced functionality that will help make it a smashing success.

But before you’re ready to go live, spend a few minutes thinking about security. Protect your site as much as possible to keep it safe from hackers and working for fans and customers at all times.

Continue reading → WordPress Security for Beginners
Posted in Security | Comments Off on WordPress Security for Beginners

Multiple vulnerabilities in WP Fastest Cache plugin

Posted on October 14, 2021 by Marc Montpas

During an internal audit of the WP Fastest Cache plugin, we uncovered an Authenticated SQL Injection vulnerability and a Stored XSS (Cross-Site Scripting) via Cross-Site Request Forgery (CSRF) issue.

If exploited, the SQL Injection bug could grant attackers access to privileged information from the affected site’s database (e.g., usernames and hashed passwords). It can only be exploited if the classic-editor plugin is also installed and activated on the site. 

Successfully exploiting the CSRF & Stored XSS vulnerability could enable bad actors to perform any action the logged-in administrator they targeted is allowed to do on the targeted site.

We reported the vulnerabilities to this plugin’s author via email, and they recently released version 0.9.5 to address them. We strongly recommend that you update to the latest version of the plugin and have an established security solution on your site, such as Jetpack Security.

Continue reading → Multiple vulnerabilities in WP Fastest Cache plugin
Posted in Security, Vulnerabilities | Tagged , , | Leave a comment

  • Enter your email address to follow this blog and receive news and updates from Jetpack!

    Join 110,273 other followers

  • Browse by topic