The SUPEE-6788 patch for Magento Community Edition and Magento Enterprise Edition includes fixes for potential SQL injection, remote code execution, and cross site scripting vulnerabilities. On 27th October, Magento released the SUPEE-6788 bundle of patches, which can be downloaded here. The bundle includes patches for a number of critical vulnerabilities. Magento users running versions of […]

To the outside world, your WordPress website looks like a collection of files on a server. Each file is a web page represented by a URL. Web users move from page to page through links within your site and from other sites. The link is the only way web clients — including browsers and software […]

When first installed with its default theme, WordPress offers an excellent user experience. In many cases, it doesn’t last for long. Because it’s so easy to add new features, pages, and content, there’s no barrier to introducing complexity and confusion. That’s partly why mature WordPress sites can be difficult to navigate and why it can […]

It’s been a long time coming, but with this commit it seems we’re nearing the end of a journey that will give WordPress an API appropriate to the modern Internet. If all goes well, I expect to see the partial API released along with WordPress 4.4. WordPress is hugely popular, but its lack of a […]

WordPress site owners who use the Akismet comment spam filtering plugin should update to version 3.1.5 of the plugin as soon as possible. Older versions of the plugin are vulnerable to a cross-site scripting attack that could put WordPress sites and users at risk of compromise. Sites with automatic updates activated should already be running […]

There is a possible new Magento security issue that has been impacting a number of Magento based sites. The sites in question are being blacklisted by Google as a result of malicious code that is being injected into the Magento database and ends up being displayed and executed by visitors in the footer of the […]

If you’re a WordPress publisher or writer, your browser is how you interact with your site; it’s where content is researched, drafted, edited, proofed, and published. If you spend a large proportion of your working day inside a web browser interacting with WordPress, it makes sense to customize the browser so that it’s capable of […]

Last night Magento informed users in an email that sites using Nginx and the Magmi data import tool are at risk. With this news, we’d like to quickly inform Nexcess hosting clients that they are not vulnerable to the exploits mentioned in this email. Here’s a closer look at the two vulnerabilities.

We were delighted to attend the 2nd annual Meet Magento New York, produced by our good friends (and partners) Interactiv4. This two day event is always a great place to meet partners, merchants and developers – so we’re always excited to sponsor and attend! I also greatly enjoyed working closely with our sales team and […]

The Internet of Things is one of the biggest recent developments in retail, especially for retail businesses that have both a physical and an online presence. For those who aren’t familiar, in this context, the Internet of Things refers to technology that enables retailers to use internet-connected smart devices to interact with shoppers’ mobile devices. […]