SudoWP @sudo_wp
Adopting & securing abandoned #WordPress plugins. We patch vulnerabilities and maintain legacy code for the community. An initiative by @wprepublic & @amihacked sudowp.com Joined January 2026-
Tweets49
-
Followers8
-
Following55
-
Likes2
#WordPress 7.0 ships native AI integration. Some hosts already auto-installed AI plugins on customer sites without asking, abusing 7.0 As a result, the API keys land in the WordPress database unencrypted. @sudo_wp Radar 1.3.0 detects both. wordpress.org/plugins/sudowp…
Time to test this out!
Introducing GPT-5.5 A new class of intelligence for real work and powering agents, built to understand complex goals, use tools, check its work, and carry more tasks through to completion. It marks a new way of getting computer work done. Now available in ChatGPT and Codex.
🚀 Our first YouTube video is live! Learn how to connect WordPress with Claude Code using the LLM Connector plugin + MCP. 📹 Complete tutorial covering: ✓ Setup & configuration ✓ Running diagnostics ✓ Performance optimization ✓ Critical issue fixes Watch: youtube.com/watch?v=RTll7S… - Download LLM Connector: github.com/Sudo-WP/llm-co… - Documentation: github.com/Sudo-WP/llm-co… - follow for updates: @sudo_wp #WordPress #AI #ClaudeCode #MCP A blog post with the full details will be published soon.
@WaterRabbitt @oost_marcel There isn't any such thing as "simpler cross-border rules" unless there is one rule for the whole EU(#lol)
@pafburen @oost_marcel of course not, lets wait for another 20 yrs for this.
"The EU Inc. proposal will now be discussed by the European Parliament and the Council. The Commission will do its utmost to support the co-legislators in this respect with the clear objective to reach an agreement by end of 2026." EU administration is up until now an endless discussion project, hopefully this will change.
Tired of hunting down WordPress plugins that were quietly abandoned, leaving your site exposed? SudoWP forks those plugins, patches the security holes, and keeps them maintained. SudoWP Hub brings the entire catalog right into your wp-admin, so you can find and install any patched plugin in one click, the same way you would from the official WordPress directory. No ZIP files. No manual folder renaming. No leaving your dashboard. Install it once, and every SudoWP patch is always one search away. Get it here: sudowp.com/blog/sudowp-hu… #WordPress #WordPressSecurity #WebDevelopment
Initially, you definitely need a money-maker plugin; your best bet is targeting the #WooCommerce market—kudos to @mikevalera. Decide on your plugin licensing policy and track sales from day one. If you don’t sell any plugins or licenses within 1–3 months after launch, reconsider your roadmap. Also, keep an eye on how WordPress is advancing with LLMs and support the #WordPress 6.9+ Abilities API. For the latter, check the latest blog post about our SudoWP Radar plugin: sudowp.com/blog/sudowp-ra…
@laxmariappan heads up for your @github profile, your site link forwards to yiur GH repo instead(404 too).
WordPress 6.9 introduced the Abilities API. Every registered ability is an entry point for AI agents and MCP tools. Wordfence won't catch this. It scans known CVEs. This is a different problem. SudoWP Radar audits the live registry before the CVE exists. sudowp.com/blog/sudowp-ra…
4/4 Full patch breakdown, changelog, and honest caveats (yes, it has a performance cost - it hooks into everything by design): sudowp.com/blog/the-sudow…
1/4 Simply Show Hooks plugin was permanently closed on WordPress.org after a supply chain attack (CVE-2024-6297) injected code to create unauthorized admin accounts on affected sites. We forked it from a clean codebase. Here is what changed. sudowp.com/blog/the-sudow…
3/4 Every state change now requires a verified WordPress nonce. manage_options is checked at render_action(), notification_switch(), and filter_hooks_panel() - not just at init. The sudowp_hooks_status cookie is now httponly, SameSite: Lax, and HTTPS-only when SSL is active.
2/4 The original had no output escaping on hook names or function names rendered to the page. No CSRF protection on the toggle. No capability checks on individual rendering methods. Cookies set without httponly, secure, or SameSite flags.
6/6 Gallery rendering, sliders, shortcodes: unchanged. Drop-in replacement for existing PostGallery installs. Full breakdown and download: sudowp.com/blog/sudowp-po…
1/6 The PostGallery WordPress plugin was closed on WordPress.org on Dec 2, 2025. CVE-2025-13543 (CVSS 8.8) left all versions up to 1.12.5 open to arbitrary file uploads. No vendor fix. We forked it.
5/6 Every sensitive AJAX action (delete, rename, rotate, save_meta) now requires current_user_can('upload_files'). File names pass through sanitize_file_name() before processing. Subscribers and contributors cannot reach any of it.
4/6 SudoWP PostGallery fixes this with a strict allowlist (jpg/jpeg/png/gif/webp only), finfo_file() MIME validation to catch renamed payloads, and removal of all nopriv hooks on file handlers.
3/6 It gets worse. The original used nopriv hooks on the upload endpoint. In certain configurations, no account needed at all. Unauthenticated users could reach the uploader directly.
2/6 The flaw is in the PostGalleryUploader class. Subscriber-level users could upload a PHP file, have it land in a web-accessible directory, and trigger remote code execution. Classic unrestricted upload vulnerability.
Prashant Baldha - Wor... @prashant_baldha
6K Followers 8K Following #WordPress Core Contributor, Core Performance Contributor, @WordPress Plugin Developer, Theme Developer, #WPCLI Contributor, Meta Contributor 🔌
Daniel Stanica 🎯 #... @danielstanica10
1K Followers 4K Following 👉 I advise, invest & grow digital businesses | Founder @CompeticoHQ & @MonetizeBetter | AI Visibility · Competitive Intell · Digital Asset Brokerage | 🚴🍕
Dipak Gajjar @dipakcgajjar
4K Followers 3K Following Helping businesses & individuals build lightning-fast websites 🚀 Web performance & WordPress speed optimisation expert ⚡ Investor 📈 Pranic healer 🧘♂️
Bud Kraus-Is WCEU rea... @joyofwp
1K Followers 1K Following I create WordPress Content for WordPress Businesses. Courses, Videos, Articles. I get paid to learn but don't tell anyone. Host of the podcast, Seriously, BUD?
Pressidium @Pressidium
1K Followers 2K Following Managed #WordPress #Hosting Engineered for the Future. 🌐 Superior Support 🤝 Performance 🚀 Reliability 🔗 and Security 🛡️ Take your site to the Edge!
Lana Miro 🇺🇦 @Lana_Miro
2K Followers 1K Following Content marketer at @melapressHQ 🙌 Writing about WordPress, marketing, community, mental health etc.🎉
Prashant Baldha - Wor... @prashant_baldha
6K Followers 8K Following #WordPress Core Contributor, Core Performance Contributor, @WordPress Plugin Developer, Theme Developer, #WPCLI Contributor, Meta Contributor 🔌
Per Esbensen @per_esbensen
1K Followers 707 Following Co-founder of @codeablehq - Online outsourcing for #WordPress done right.
Gerasimos(Makis) @infectedplus1
502 Followers 602 Following Owner of @WPRepublic & @AmIHacked // @WordCampAthens 2016&2017 co-organizer // Founder of @FixMyWP WooWaitlist & WooTabs(all sold) #Eat_Drink_Net
Mike Valera @mikevalera
15K Followers 1K Following Solo operator + AI team. Building the WooCommerce growth stack: Caddy, RetentionStack, RefineryWP, FunnelOps, AssemblyWP. One OS running them all: https://t.co/V90kZDtbUs
Mirko - Owner at WP E... @wpexpert3
3K Followers 1K Following Web designer, blogger and marketer specialized with #WordPress. Themes and plugins creator. Speaker and meetup organizer. From Switzerland, living in China.
MainWP @MyMainWP
2K Followers 161 Following WordPress Management without the SaaS! MainWP is a self-hosted, open-source plugin. Download from https://t.co/sL48KXkSEF
Dipak Gajjar @dipakcgajjar
4K Followers 3K Following Helping businesses & individuals build lightning-fast websites 🚀 Web performance & WordPress speed optimisation expert ⚡ Investor 📈 Pranic healer 🧘♂️
Moltlaunch @moltlaunch
11K Followers 1 Following Your next hire isn't human. Find and hire the best agents on Moltlaunch. Agent builder? Join the protocol and get distribution, capital and the tools you need.
Claude @claudeai
1.5M Followers 2 Following Claude is an AI assistant built by @anthropicai to be safe, accurate, and secure. Talk to Claude on https://t.co/ZhTwG8d1e5 or download the app.
James LePage @jameswlepage
2K Followers 836 Following ✦ | ✦ Building something new; foundational AI for complex systems. Hiring, DM! Prev Head of AI @automattic | Prev @WordPress Core AI Lead | 2x Exited
Ciprian Popescu @cipriangb
1K Followers 3K Following Owner of 🦋 https://t.co/ZlgnEOQZ5Q, founder of https://t.co/LLMzLbs4PI, https://t.co/4xZ9zO9amE | WP Lighthouse, Active Analytics and ImagePress | 🍀🇮🇪
Automattic @automattic
57K Followers 96 Following Fully distributed since 2005. @codefortheppl drops July 9! 🎬
WordPress.com @wordpressdotcom
1.5M Followers 10K Following Let’s build some websites together. 🌎 Managed @WordPress hosting and an @Automattic product. Support: https://t.co/wL4RKkeTNW
WordPress @WordPress
611K Followers 246 Following Publish your passion with the open source platform that powers the web. Join us for WordCamp US 2026 on August 16-19. Tickets available: https://t.co/COonjrNVii
Vikas Singhal @vikasprogrammer
5K Followers 2K Following Need a WordPress site? Try https://t.co/Vi829FEsm8. Building @insta_wp. WordPress, AI & SaaS is my jam.
Jamie Marsland - Head... @pootlepress
11K Followers 2K Following Head of WordPress YouTube @automattic | Making WordPress simple. Building tools for creators. Writing about AI + the web. 200K+ YouTube subs
Carolina Nymark @carolinapoena
5K Followers 1K Following Excited about full site editing. WordPress Bundled Theme component maintainer.
WPfounders -Inspiring... @WPfounders
3K Followers 893 Following ~ A cause to Inspire Young #WordPress Entrepreneurs by sharing the success stories of WordPress businesses. By: @MustaasamSaleem | @AhsanParwez
Chris Badgett - WordP... @ChrisBadgett
8K Followers 5K Following Best WordPress LMS plugins entrepreneur | 15 yrs. internet business | Millions sold | Wild guy & dog musher turned https://t.co/VdCO0NLREq tech founder CEO
Marcus Burnette — T... @marcusdburnette
3K Followers 2K Following Christian, husband, #girldad, works at @Bluehost 🗺️ Runs https://t.co/ADoLbJKkjO 🃏 Creator of @UnleashTheWapuu 🔌 @WellPlayedWP Plugins 💻 #WordPress #WooCommerce
The Repository @therepositorywp
2K Followers 704 Following We’re an independent news biz dedicated to reporting what’s happening in the WordPress ecosystem. Get our stories in your inbox: https://t.co/CsthC3otWw
Mark Westguard @westguard
2K Followers 948 Following Founder of @ws_form, a developer focussed, rapid development form plugin for WordPress.
Orbisius | WordPress ... @Orbisius
724 Followers 874 Following Custom #WordPress #Plugin & #SaaS App Development - https://t.co/XwT1l3Zaco | https://t.co/d62a5v6yAM | https://t.co/BIC6dldwdw | https://t.co/l1HHCKtRKX | https://t.co/YzEh4ujBSX | https://t.co/yGY8KnkhY3
Within WordPress @Within_WP
1K Followers 2 Following 🎙️Within WordPress Newsletter and Podcast by @remkusdevries
WPNEWS.io @wpnewsio
3K Followers 2K Following One of the best place in the Web with #WordPress news, articles and guides from the WordPress community. Without spam and low quality content.
Lax Mariappan @laxmariappan
2K Followers 5K Following Web Developer / Open-source enthusiast / @auth0 ambassador / code is poetry / WordPress & Cat lover / Just my opinions
:Cromwell: @learnwithmattc
9K Followers 3K Following Helping product companies grow sustainably. co-founder 🌳 @GiveWP Founder 🌳 @WPProductTalk Founder 🌳 Roots & Fruit
Michelle Frechette @michelleames
21K Followers 5K Following Executive Director at @post_status. Cofounder @underrepdintech. Podcaster @wpcoffeetalk. she/her
Angela Bowman @askwpgirl
8K Followers 5K Following Organizer Boulder #WordPress Meetup and #Elementor Boulder Meetup. Co-host @WomenInWP podcast. Proud mom of 🏳️⚧️ daughter. @askwpgirl.bsky.social
Pressidium @Pressidium
1K Followers 2K Following Managed #WordPress #Hosting Engineered for the Future. 🌐 Superior Support 🤝 Performance 🚀 Reliability 🔗 and Security 🛡️ Take your site to the Edge!
Jason Nickerson @WPJNickerson
1K Followers 574 Following Open Source Executive; Event Technologist; Community Leader; Public Speaker; CMS Expert; Web Pro
Bob Dunn aka BobWP @BobWP
7K Followers 299 Following I'm optimistic, empathic, flexible and still a hippie at heart. Independent owner and producer of @OpenChannelsFM Podcast Network and @DotheWoo Podcast
Bud Kraus-Is WCEU rea... @joyofwp
1K Followers 1K Following I create WordPress Content for WordPress Businesses. Courses, Videos, Articles. I get paid to learn but don't tell anyone. Host of the podcast, Seriously, BUD?
Iconic @iconicwp
1K Followers 256 Following Premium #WooCommerce plugins, trusted by over 20,000 online stores. Check out @getorderable for our restaurant solution. Part of the @stellarwp StellarVerse.
The WP Minute @TheWPMinute
4K Followers 918 Following Informing, educating, and entertaining WordPress Professionals. Build authority without starting a podcast — be a guest. Get the free mini course below! 👇
The WP Weekly @thewpweekly
7K Followers 2K Following The Weekly Newsletter for #WordPress Professionals bringing the best bits. By @idavinder
WP-Content.co @wpcontent_co
3K Followers 811 Following Sharing #WordPress content valuable for developers and agencies 💌 Subscribe to The WP Week #Newsletter - https://t.co/erhbmxYUYz
Kinsta @kinsta
16K Followers 7K Following Premium managed hosting for WordPress for 230,000+ customers worldwide. G2's #1 web hosting. 24/7 expert support in 10 languages. https://t.co/3BgvEVzx0K
Lana Miro 🇺🇦 @Lana_Miro
2K Followers 1K Following Content marketer at @melapressHQ 🙌 Writing about WordPress, marketing, community, mental health etc.🎉
MiniMax (official) @MiniMax_AI
102K Followers 852 Following Agent: @MiniMaxAgent Token Plan: https://t.co/BDCycxepZw API: https://t.co/fHRdSV7BwZ Community: https://t.co/uhxxfLgkLU
Orie Steele @OR13b
1K Followers 2K Following Cryptography meets AI Dev. Building with Knowledge Graphs, Internet Standards, MCP & Agent 2 Agent tech. Securing & structuring the intelligent web. :lock:🧠🕸️
/r/netsec @_r_netsec
33K Followers 0 Following Follow for new posts submitted to the netsec subreddit. Unofficial.
Clandestine @akaclandestine
61K Followers 5K Following | Security | Osint | Threat Research | Opsec | Threat Intelligence | Infosec | Threat Hunting | Humint |You might like
