Presented by Kerry Carron on 01/17/2019 12:00pm
In today's Network News & MeetUp we'll review WordPress community news during our WordPress @ Work segment, share the latest WordPress plugin vulnerabilities, and dive into the OwnWP member's area.
WordPress @ Work
As you know, Implementing Gutenberg editor is an ongoing project that the WordPress core developers have split up into phases. In an attempt to make the biggest impact for WordPress users, the WP core team came up with nine projects for 2019 - 4 of which
Now that WP 5.0 has released, are in Phase 2.
Phase 2 - Work on these projects will continue throughout the year.
- Creating a block for navigation menus.
- Porting all existing widgets to blocks.
- Upgrading the widgets-editing areas in wp-admin/widgets.php and the Customizer to support blocks.
- Providing a way for themes to visually register content areas, and exposing that in Gutenberg.
Matt Mullenweg does a TED Talk on Future of Work - https://ma.tt/2019/01/ted-the-future-of-work/
The talk gets into the specifics of how to begin getting companies that are currently in traditional office space to embrace a culture of letting employees work from anywhere.
Known Vulnerabilities Without a Current Fix:
- JSmol2WP <= 1.07 – Unauthenticated Cross-Site Scripting (XSS)
- MapSVG Lite – Cross-Site Request Forgery (CSRF)
- easy-redirect-manager 2.18.18 – Cross-Site Scripting (XSS)
- Social Network Tabs – Social Media API Key Leakage
Vulnerabilities to FIX w/UPDATE:
- Event Calendar WD <= 1.1.21 – Cross-Site Scripting (XSS) – fixed in version 1.1.22
- spam-byebye <= 2.2.1 – Cross-Site Scripting (XSS) – fixed in version 2.2.2
- User Registration <= 1.5.5 – Authenticated Cross-Site Scripting (XSS) – fixed in version 1.5.6
- UserPro <= 4.9.27 – User Registration With Administrator Role – fixed in version 4.9.28
OwnWP Members Area
The members area provide a clean, fresh, and easy to navigate dashboard.
Your Membership Level is clearly seen so you always know when and if you choose to upgrade. At the time of this post, only one membership level is available – Associate. Other existing levels are administrative roles for maintaining the site.
A handy dropdown menu accesses your account information and additional benefits.
OwnWP is currently using S2Member for memberships. It is easy to click and edit any of your account details under the edit profile tab.
The membership options menu item links to the public membership options and as additional levels of membership become available for purchase they will be able to be accessed via your membership area in order to facilitate upgrades.
OwnWP is all about connecting you with others. Your paid membership allows for your feed to be directly integrated into our public slack channels allowing free slack team members to see you when you participate and read posts from your feed the same day they are posted. And there are even more opportunities to promote yourself through OwnWP networking.
The member support links directly to our ticketing system. This is the place to ask you questions, make comments, suggestions, or report problems with your OwnWP account.
You may also cancel your membership at any time. But use caution when deciding to close your account. There is no going back – your data is completely removed from our database. And maybe most importantly, you will lose any pricing that you might have been grandfathered into.
Members also have access to a VERY LONG list of webinar replays. Though the webinar archive page is public, access to watch the replays and download the webinar exclusive materials is available only to members.
Perhaps one of the best membership benefits is access to exclusive resources. Weoffer our members access to the webinar chat logs, additional handouts, and special offers for some of the tools that we are affiliated with. We’re very excited to be able to share with our members, so please feel free to explore and take full advantage of this great resource of personal development, leadership, and relational materials.
Be sure to check and mark your calendars for Upcoming Virtual Meetups and Webinars!
Presenter Bio: Kerry Carron
Kerry Carron is a loving wife and mother of three grown boys. As a freelancer, Kerry has built hundreds of WordPress websites and assisted other freelancers and small agencies with WordPress support and business development. She is the founder of OwnWP, a production of Ultimate Solution, LLC.
Kerry specializes in processes and creating systems. She is passionate about helping others find their path to success and her aspiration with OwnWP is to encourage other freelancers in finding and using the right combination of tools and skills they need to do more than merely survive!