Jetpack 11.3

Jetpack 11.3: Updates to blocks and more

This month, we’re excited to share: a new block, enhancements to existing blocks, an update to our Google Analytics feature, and more.

Continue reading → Jetpack 11.3: Updates to blocks and more

Posted in Releases | Tagged , | Leave a comment
jetpack-release

Jetpack 11.2 – Under-the-hood improvements for your site

Jetpack 11.2 ships several improvements and bug fixes for a better Jetpack experience for you and your site.

Continue reading → Jetpack 11.2 – Under-the-hood improvements for your site

Posted in Releases | Tagged , | Leave a comment
New version of Jetpack!

Jetpack 11.1 – Under-the-hood improvements for your site

On the back of our major launch last month of our new individual plugins, in this release we have shipped some under-the-hood improvements for an enhanced Jetpack experience.

Continue reading → Jetpack 11.1 – Under-the-hood improvements for your site

Posted in Releases | Tagged , | Comments Off on Jetpack 11.1 – Under-the-hood improvements for your site
New version of Jetpack!

Jetpack 10.8: Share your posts more easily with QR codes

This month, we’re excited to announce a new QR Post feature that automatically generates QR codes for your published posts. This means more flexibility on how you can share your posts and spread the word. 

In addition, we added Openverse as a media provider so that you can benefit from openly-licensed images in your posts. 

Continue reading → Jetpack 10.8: Share your posts more easily with QR codes

Posted in Releases | Tagged , | Comments Off on Jetpack 10.8: Share your posts more easily with QR codes
New version of Jetpack!

Jetpack 10.7: An easier way to build your own Jetpack

This month, we’re excited to launch My Jetpack, a new dashboard that allows you to manage your Jetpack products all in one place. Additionally, we’ve been making design and performance improvements for some of your favorite blocks.

Continue reading → Jetpack 10.7: An easier way to build your own Jetpack

Posted in Releases | Tagged , | Comments Off on Jetpack 10.7: An easier way to build your own Jetpack

Jetpack 10.6 – Behind-the-scenes improvements for your site

In this release, we have shipped several under-the-hood improvements for an enhanced Jetpack experience.

Continue reading → Jetpack 10.6 – Behind-the-scenes improvements for your site

Posted in Releases | Tagged , , | Comments Off on Jetpack 10.6 – Behind-the-scenes improvements for your site

Jetpack 10.5: New features and under-the-hood improvements

The new year comes with a shiny new Jetpack. This month, we’re shipping new features for VideoPress, as well as other under-the-hood improvements and bug fixes to create a better Jetpack experience for you and your site.

Continue reading → Jetpack 10.5: New features and under-the-hood improvements

Posted in Features, Jetpack News, Releases | Tagged , , | Comments Off on Jetpack 10.5: New features and under-the-hood improvements
Real-time Backups For All text in bold with a 3D cloud on the right with a green checkmark within it

Never Miss a Moment: All Backups Are Now Real-time

Whether you have an eCommerce store, write about your favorite topics online, or promote services on your site, backups are absolutely critical. They provide incredible peace of mind — if your WordPress site is ever hacked or if it goes down for any reason, you can quickly and easily restore it in full.

Until now, Jetpack has offered daily backups as an option for site owners. And while this is a great step to protect your site, Jetpack’s real-time backups are the best way to get complete peace of mind. They save a copy of your site each and every time a change is made — a page is updated, a post is added, a setting is tweaked, or a product is purchased — all behind the scenes without requiring you to lift a finger. That way, you know that you’ll never lose a second of your hard work or a single customer order.

And we believe so strongly that every WordPress site should have real-time backups that we’re making them even more affordable and accessible.

That’s why we’re now including real-time backups in each of our Backup and Security plans.

Continue reading → Never Miss a Moment: All Backups Are Now Real-time

Posted in Ecommerce, Jetpack News, Security | Tagged , , | Comments Off on Never Miss a Moment: All Backups Are Now Real-time

Security Issues Patched in Smash Balloon Social Post Feed Plugin

During an internal audit of the Smash Balloon Social Post Feed plugin (also known as Custom Facebook Feed), we discovered several sensitive AJAX endpoints were accessible to any users with an account on the vulnerable site, like subscribers. Some of these endpoints could enable Stored Cross-Site Scripting (XSS) attacks to occur. 

A successful Stored XSS attack could enable bad actors to store malicious scripts on every post and page of the affected site. If a logged-in administrator visits one of the affected URLs, the script may run on their browser and execute administrative actions on their behalf, like creating new administrators and installing rogue plugins.

We reported the vulnerabilities to this plugin’s author via email, and they recently released version 4.0.1 to address them. We strongly recommend that you update to the latest version of the Smash Balloon Social Post Feed plugin and have an established security solution on your site, such as Jetpack Security.

Continue reading → Security Issues Patched in Smash Balloon Social Post Feed Plugin

Posted in Security, Vulnerabilities | Tagged , , | Comments Off on Security Issues Patched in Smash Balloon Social Post Feed Plugin

Multiple vulnerabilities in WP Fastest Cache plugin

During an internal audit of the WP Fastest Cache plugin, we uncovered an Authenticated SQL Injection vulnerability and a Stored XSS (Cross-Site Scripting) via Cross-Site Request Forgery (CSRF) issue.

If exploited, the SQL Injection bug could grant attackers access to privileged information from the affected site’s database (e.g., usernames and hashed passwords). It can only be exploited if the classic-editor plugin is also installed and activated on the site. 

Successfully exploiting the CSRF & Stored XSS vulnerability could enable bad actors to perform any action the logged-in administrator they targeted is allowed to do on the targeted site.

We reported the vulnerabilities to this plugin’s author via email, and they recently released version 0.9.5 to address them. We strongly recommend that you update to the latest version of the plugin and have an established security solution on your site, such as Jetpack Security.

Continue reading → Multiple vulnerabilities in WP Fastest Cache plugin

Posted in Security, Vulnerabilities | Tagged , , | Comments Off on Multiple vulnerabilities in WP Fastest Cache plugin
  • Enter your email address to follow this blog and receive news and updates from Jetpack!

    Join 111,098 other followers
  • Browse by Topic