Plugins – Page 5 – The WP Blog

The 6 Best Ways to Prevent Spam Form Submissions in 2025

Apr 18 2025

Website owners need to prevent spam form submissions without affecting legitimate inquiries. Modern solutions like Akismet, which uses AI for background spam filtering, excel in minimizing user friction compared to CAPTCHAs, which frustrate users and are increasingly bypassed by bots. Other methods like honeypots, session cookies, and email verification have limitations and can burden users. Akismet is highlighted as the best anti-spam tool, offering seamless integration and a high detection accuracy of 99.99%, thereby improving user experience and form completion rates.

https://jetpack.com/resources/prevent-spam-form-submissions/

Wordfence Intelligence Weekly WordPress Vulnerability Report (April 7, 2025 to April 13, 2025)

Plugins / security, Wordfence

Apr 17 2025

Wordfence released its 2024 WordPress security report, highlighting 340 vulnerabilities from 303 plugins and 8 themes last week, contributed by 67 researchers. They emphasize the importance of reviewing these vulnerabilities for site protection and offer free tools like the Wordfence CLI Vulnerability Scanner and APIs for ongoing security monitoring. A total of 79 vulnerabilities were patched, while 261 remained unpatched. Most vulnerabilities were of medium (264) and high severity (49), with notable types being Cross-site Scripting (121) and CSRF (86). The report also recognizes contributors who aided WordPress security efforts.

https://www.wordfence.com/blog/2025/04/wordfence-intelligence-weekly-wordpress-vulnerability-report-april-7-2025-to-april-13-2025/

6,000 WordPress Sites Affected by Arbitrary File Move Vulnerability in Drag and Drop Multiple File Upload for WooCommerce WordPress Plugin

Plugins / security, Wordfence

Apr 16 2025

Wordfence's Bug Bounty Program offers up to $31,200 per vulnerability. On March 28, 2025, a vulnerability in the “Drag and Drop Multiple File Upload for WooCommerce” plugin was reported, allowing unauthenticated users to move critical files. Researcher Phat RiO earned $315 for the find. Users should update to version 1.1.5 to protect against this critical flaw, which could lead to site takeover. The vulnerability was disclosed and patched promptly by the developer.

https://www.wordfence.com/blog/2025/04/6000-wordpress-sites-affected-by-arbitrary-file-move-vulnerability-in-drag-and-drop-multiple-file-upload-for-woocommerce-wordpress-plugin/

The 6 Best Translation Plugins for WordPress (Including Auto-Translation)

Plugins / JetPack

Apr 16 2025

TLDR: Expanding a WordPress site to multiple languages is easier with translation plugins. Manual translation is time-consuming and costly, while automatic tools like Google Translate are faster but less accurate. Hybrid options blend both methods for efficiency. Key features to look for include ease of use, AI assistance, SEO capabilities, and compatibility with themes/plugins. Top plugins reviewed include Jetpack AI Assistant, WPML, Polylang, TranslatePress, GTranslate, and Weglot, each offering unique features and pricing. Jetpack AI Assistant is highlighted as the best due to its integration and ease of use.

https://jetpack.com/resources/best-wordpress-translation-plugins/

New With Newsletter: Categories and Subscriber Management

Plugins / JetPack

Apr 14 2025

Jetpack introduces new features for easier newsletter management and audience insights. Users can send posts via email, manage unlimited subscribers, and utilize category options for targeted content. Data Views offer insights on subscriber types and details. A new dashboard widget provides an overview of performance, and the Jetpack mobile app allows for on-the-go management. Continuous improvements are expected, encouraging user feedback. The Growth plan enhances capabilities and subscriber revenue retention.

https://jetpack.com/resources/new-with-newsletter-categories-and-subscriber-management/

How to Build and Add Taxonomies to WordPress Post Types

Plugins / ACF

Apr 11 2025

Custom taxonomies in WordPress enhance content organization beyond default categories/tags, especially for custom post types. ACF® simplifies creating and linking taxonomies, allowing multiple types (e.g., Brand, Size) for a single post type. Custom fields enrich taxonomy data, enabling better filtering and organization. Common setup issues can be resolved with proper configuration. ACF provides a user-friendly interface for managing taxonomies, promoting efficient content structuring for diverse site types, from recipes to e-commerce.

https://www.advancedcustomfields.com/blog/add-taxonomy-to-custom-post-type/

Wordfence Intelligence Weekly WordPress Vulnerability Report (March 31, 2025 to April 6, 2025)

Plugins / security, Wordfence

Apr 10 2025

Wordfence released its 2024 WordPress security report, highlighting 527 vulnerabilities in WordPress plugins and themes added last week. 80 vulnerabilities were patched, while 447 remain unpatched. The report emphasizes the importance of utilizing Wordfence's free resources for vulnerability scanning and data access to enhance WordPress security. Additionally, the Wordfence Threat Intelligence Team deployed new firewall rules for various vulnerabilities, benefiting premium customers immediately, while free users wait 30 days. The report also acknowledges contributors to WordPress security efforts.

https://www.wordfence.com/blog/2025/04/wordfence-intelligence-weekly-wordpress-vulnerability-report-march-31-2025-to-april-6-2025/

How to Properly Use Nofollow Links for Affiliate Marketing

Plugins / Pretty Links

Apr 10 2025

Google updates its search algorithm, but affiliate marketers must ensure links don’t pass SEO value improperly. Dofollow links can harm SEO if overused, especially affiliate links. Using the nofollow attribute prevents SEO value transfer, protecting rankings. Nofollow links are crucial for affiliates, sponsored content, and user-generated links. Pretty Links can streamline adding nofollow attributes to affiliate links automatically, ensuring compliance and SEO integrity. Not using nofollow can lead to penalties, loss of SEO authority, and audience trust issues. Avoid common mistakes with nofollow links to maintain strong SEO and compliance with guidelines.

https://prettylinks.com/blog/nofollow-your-affiliate-links/?utm_source=rss&utm_medium=rss&utm_campaign=nofollow-your-affiliate-links

How to Build Modern Block Templates in WordPress

Plugins / ACF

Apr 10 2025

TLDR: Block templates in WordPress standardize post structures, reducing errors and speeding up content creation. They differ from block patterns as they auto-load specific layouts, enable customization, and can be locked to maintain consistency. Custom templates can be created using ACF®, catering to various content types. Best practices include locking critical blocks, using placeholders, defining attributes, and reusing template parts for efficiency. Overall, they enhance control and adaptability for web developers.

https://www.advancedcustomfields.com/blog/wordpress-block-templates/

100,000 WordPress Sites Affected by Administrative User Creation Vulnerability in SureTriggers WordPress Plugin

Plugins / security, Wordfence

Apr 9 2025

Wordfence's Bug Bounty Program rewards researchers for reporting vulnerabilities in WordPress plugins. A critical vulnerability in the SureTriggers plugin allows unauthenticated user creation, affecting over 100,000 sites. Discovered by researcher mikemyers, it was patched swiftly, and users are urged to update to version 1.0.79 to secure their sites. Wordfence provided firewall protection to premium users on April 1, 2025, with free users receiving it on May 1, 2025. This vulnerability poses significant risks, emphasizing the need for timely updates.

https://www.wordfence.com/blog/2025/04/100000-wordpress-sites-affected-by-administrative-user-creation-vulnerability-in-suretriggers-wordpress-plugin/