Tag

WordPress Plugins

Plugin recommendations, reviews, and best practices for extending WordPress.

18 articles

There are over 60,000 plugins in the WordPress repository. Most of them you don't need, and some of them will actively harm your site. The trick is knowing which ones are worth installing and which to avoid.

Our plugin articles focus on practical recommendations: security plugins that actually work, caching solutions that play nicely with managed hosting, and the occasional warning about plugins that cause more problems than they solve.

Explore topics

WordPress Hosting UK Business Small Business AI Visibility SEO Web Hosting Content Strategy Security AI Discovery Files WordPress

Security 15 May 2026

Avada Builder Just Patched a 1M-Site SQL Injection. The WooCommerce Deactivated Trap Is the Buried Lead.

Wordfence disclosed CVE-2026-4798 in Avada Builder this week, affecting over 1,050,000 WordPress installations. The headline is patch to 3.15.3. The buried lead almost nobody covered is the WooCommerce-installed-then-deactivated precondition that turns the SQL injection from a "1M sites at risk" panic into a much narrower exploit window. We have held Avada licences for years and patched our portfolio first. Here is what actually matters.

7 min read Read

WordPress 11 Apr 2026

Every WordPress Error Message Explained and How to Fix Them

The complete reference guide to every common WordPress error message. White screen of death, 500 errors, database connection, memory exhausted, redirect loops. Diagnose, fix, and stop it happening again.

18 min read Read

WordPress 1 Apr 2026

WordPress 7.0 to Require Physical Licence Dongle for All Installations

The WordPress Foundation has announced that WordPress 7.0 will require a physical USB-C hardware key plugged into your computer to access wp-admin. Four pricing tiers start at £29.99. The Agency Bundle weighs 1.4kg. We have questions.

7 min read Read

WordPress 16 Mar 2026

WordPress 7.0's AI Experiments Plugin: We Tested Every Feature

We installed the AI Experiments plugin on WordPress 7 Beta 5 and tested all seven features: excerpt generation, alt text, image generation, review notes, content summarisation, title generation, and abilities explorer. Alt text generation is the standout. Here's what works, what doesn't, and which AI provider handles each task best.

8 min read Read

WordPress 5 Mar 2026

What the AI Connectors Actually Do on WordPress 7 Beta 2

I installed WordPress 7 Beta 2 on a staging server and went looking for the AI. What I found was both less exciting and more important than I expected. Here's what the Connectors page actually does, with code examples.

8 min read Read

WordPress 1 Mar 2026

AI Discovery Files Plugin: Now Free on WordPress.org

The AI Discovery Files plugin is now on WordPress.org. Free, no premium tier. Fill in your business details and it generates up to 10 AI discovery files for ChatGPT, Claude, and Perplexity. The more you put in, the better the output.

9 min read Read

AI Visibility 17 Feb 2026

AI Discovery Files: New Data Shows 93% of Websites Are Invisible to AI

Research across 1,460 top websites confirms 93.5% have no AI Discovery Files. Of the 6.5% that do, 56% are invalid. A free WordPress plugin and open specifications can fix that.

8 min read Read

WordPress 8 Feb 2026

WordPress 7.0 Beta Arrives February 19 With AI Built Into Core

WordPress 7.0 Beta 1 dropped 19 February with the Abilities API, MCP Adapter for AI agents, and a visual admin refresh. Real-time collaboration was originally planned for 7.0 but was pulled on 8 May. Here's what UK site owners need to know about the final release on 20 May 2026.

8 min read Read

WordPress 8 Feb 2026

Never Edit the Wrong WordPress Environment Again: The Environment Indicator Plugin

A colour-coded WordPress plugin that labels your admin bar green, orange or red so you never accidentally push changes to the wrong environment. Built after one too many late-night staging mistakes.

10 min read Read

WordPress 15 Dec 2025

WooCommerce 10.4.2 Fixes WordPress 6.9 Crashes and PHP 8.4 Errors

WooCommerce 10.4.2 fixes four bugs that caused product editor crashes, broken shipping calculations, and checkout failures on WordPress 6.9 with PHP 8.4. Stores saw checkout rates recover from 73% to 94%.

7 min read Read

Security 12 Dec 2025

170 WordPress Vulnerabilities in One Week, 91 With No Patch

SolidWP disclosed 170 WordPress vulnerabilities on 10 December 2025. Four were critical RCE and file upload flaws affecting 2.3 million sites. Ninety-one had no patch. Here's what to update, what to deactivate, and how to build long-term resilience.

8 min read Read

News 11 Dec 2025

Court Orders Automattic to Restore WP Engine Access in 72 Hours

A California federal judge ordered Automattic to restore WP Engine's WordPress.org access within 72 hours. The ruling ended a three-month standoff that blocked updates for 200,000+ sites and raised questions about who controls the WordPress ecosystem.

8 min read Read

Security 10 Dec 2025

131,000 Attacks Target WordPress Sites via Sneeit RCE Flaw

A critical remote code execution flaw in the Sneeit Framework WordPress plugin (CVE-2025-6389, CVSS 9.8) has triggered 131,000+ attack attempts. Attackers are creating admin accounts and uploading backdoors. Here's how to check if you're compromised and what to do right now.

8 min read Read

Security 5 Dec 2025

4 Critical WordPress Plugin Vulnerabilities Under Active Attack (December 2025)

Four WordPress plugins with critical CVSS 9.0+ vulnerabilities were under active exploitation in December 2025. All required zero authentication to exploit. Here's what to check and how to protect your site.

8 min read Read

Security 4 Dec 2025

King Addons Hack Lets Anyone Become WordPress Admin

A critical vulnerability in King Addons for Elementor (CVE-2025-8489) lets anyone create an admin account on your WordPress site. Over 48,400 exploit attempts logged since October. Here's how to check if you're compromised and lock it down.

9 min read Read

WordPress 2 Dec 2025

WordPress 6.9 Broke 3 Popular Plugins: Here's What Failed and How to Fix It

WordPress 6.9 broke WooCommerce, Yoast SEO, and Elementor within hours of launch. Here's exactly what went wrong, how to fix each plugin, and the update strategy that prevents this happening next time.

8 min read Read

WordPress 26 Oct 2025

WordPress 6.9 Beta Preview (October 2025): What You'll Notice

WordPress 6.9 Beta 1 brought a Command Palette shortcut, instant back-button navigation, block-level comments, the Accordion block, and the AI Abilities API. This is the October 2025 beta preview, preserved for context. WordPress 6.9 launched 2 December 2025, see the live "what's new" coverage for the shipped feature set.

10 min read Read

WordPress 2 Oct 2025

Do You Still Need a Cookie Consent Banner in 2026?

Most UK websites don't need a cookie banner at all. The Data (Use and Access) Act 2025 came into force on 5 February 2026 with new low-risk-cookie exemptions and PECR penalties up to £17.5m. Here's when consent is legally required, when you can skip it, and what to do instead of annoying your visitors with popups.

9 min read Read

Back to all articles