Recently the Jetpack team found some infected files in one of our hosted customers’ sites, and quickly traced the source of infection back to the Workreap theme by Amentotech. We started an investigation and uncovered a number of vulnerable AJAX endpoints in the theme; the most severe of these was an unauthenticated unvalidated upload vulnerability potentially leading to remote code execution and a full site takeover.
We reported the vulnerabilities to the Amentotech team via the Envato Helpful Hacker program, and the issues were addressed promptly by them. Version 2.2.2 of the theme was released on June 29, 2021 that fixes the found vulnerabilities.
Due to the seriousness of the vulnerabilities, we highly recommend all users of the Workreap theme to upgrade to version 2.2.2 or later as soon as possible.
Download the upgrade from the theme website and install it manually, or upgrade automatically via the Envato market plugin.
Continue reading → Multiple vulnerabilities in Workreap theme by Amentotech
We’ve got quite the release for you this month! Jetpack 9.5 provides personal recommendations for your site, improves your findability with free SEO tools, and gives your visitors a better search experience. Bonus: the WordPress mobile app was recently updated and now includes Jetpack tools helping you to protect your site from anywhere. Let’s get to it!
Continue reading → Jetpack 9.5: Level up your site with custom recommendations
Jetpack 9.2 is now available. Give the latest version a try, by installing Jetpack or updating your existing installation.
Continue reading → Jetpack 9.2: Ready for WordPress 5.6
In August, developers’ lives got a lot easier when official WordPress images certified by Bitnami and Automattic became available on Amazon Web Services.
Now, you can also find official WordPress images on the Google Cloud Platform (GCP)! Automattic (the folks behind Jetpack, WordPress.com, WooCommerce, and more) partnered with Bitnami to provide a straightforward, secure way to use WordPress and Jetpack on GCP.
Continue reading → Get WordPress Bundles for the Google Cloud Platform Through Bitnami
At Jetpack, our Happiness Engineers are usually busy supporting our customers to ensure that they have everything they need for a successful website — but we interrupted one of them for an inside look at Jetpack and some valuable tips and tricks.
Meet Joen, a Jetpack Happiness Engineer who grew up in Viking territory but now works remotely under the sunshine and blue skies of southern Spain.
Continue reading → Meet Joen from Jetpack: A Connoisseur of Sunshine and WordPress
One of WordPress’s biggest benefits is plugins, which let you expand your site’s functionality to meet your exact needs. There are no limits to the type or number of plugins you can install and activate on your WordPress website — there are currently thousands available in the WordPress repository.
But with this unlimited flexibility comes responsibility, since each new plugin introduces its own set of potential issues, from site slowdowns to crashes and compatibility issues. With a little knowledge and a little Jetpack, you can resolve the three most common challenges — or prevent them from happening in the first place.
Continue reading → How to Avoid Common WordPress Plugin Problems with Jetpack
Continue reading → Reach New Customers and Boost Your SEO With a Quality Blog
You’ve been thinking about changing the look of your site for a while now. You found a WordPress theme that you like, but you’re a bit nervous about what will happen to your site after you activate the new theme.
You’re overcome with questions: Will you lose any of your site data? How do you pick and customize a new theme? How will a new theme impact your site layout, and will widgets that you installed remain intact?
There are many things to consider before making the switch to a new theme. Knowing what to look for is half the battle, but we’re here to help guide you along the way.
Let’s explore exactly what you should keep in mind when changing your WordPress theme to make it a smooth transition.
Continue reading → What to Consider When Changing Your WordPress Theme