ISSUE 07 · THIS WEEK
A WordPress publication · Launched May 2026

WordPress, without the developer-speak.

A smart, opinionated publication about what's actually happening in WordPress, written for WordPress site owners and for the developers and consultants who advise them.

Weekends
In your inbox
6 min
Read time
Free
No paywall

This week's roundup

Read in full
Issue 07 / Weekend Within · June 26

Issue 7: Security patches, a classic exit, and a community loss

Update Ultimate Member now or attackers can reset admin passwords. Avada Builder also needs a patch. A 13-year backdoor hit 44 WordPress plugins.

Weekend Within roundup 5 min read 6 stories
Inside this issue
01
Security Two urgent patches and a 13-year backdoor operation hitting 44 plugins.
02
Block Editor WordPress 7.1 hides the Classic block and begins a full phaseout.
03
AI A merge proposal would bring a native knowledge layer to WordPress 7.1.
04
Commerce & Performance WooCommerce 10.9 and WP Rocket 3.22 bring improvements for store owners.
05
Business Plugin developers push back on the 24-hour update delay.
06
Community Om Malik, who shaped WordPress's earliest years, has died at 59.

Recently

All articles
June 26

Issue 7: Security patches, a classic exit, and a community loss

Update Ultimate Member now or attackers can reset admin passwords. Avada Builder also needs a patch. A 13-year backdoor hit 44 WordPress plugins.

Weekend Within roundup
5 min
June 25

WP Rocket 3.22 Adds a Built-In Free CDN for Your Most Important Pages

WP Rocket 3.22 adds a free built-in CDN covering up to three pages. Point it at high-traffic pages to serve them faster for visitors far from your server.

Performance
2 min
June 24

Update Ultimate Member Now: Attackers Can Hijack Admin Accounts

Ultimate Member 2.11.4 and earlier lets contributor-level attackers reset admin passwords. Update to version 2.12.0 now.

Security
2 min
June 24

WooCommerce 10.9: Track Failed Order Emails and a Faster Checkout

WooCommerce 10.9 adds failed order email logs, reduces checkout database load, and cleans up the admin for store owners.

commerce
2 min
June 23

WordPress 7.1 Will Hide the Classic Block From the Inserter

From WordPress 7.1, the Classic block is hidden from the block inserter. Existing Classic blocks stay intact and fully editable. Adding new ones will require a developer filter.

Block Editor
2 min
June 22

WordPress 7.1 May Give Your Site a Built-In Content Standards Hub

A merge proposal would add a Knowledge post type and Guidelines feature to WordPress 7.1, giving site owners a built-in place to store editorial rules.

WordPress Updates
2 min