{"id":5843,"date":"2023-12-07T02:32:37","date_gmt":"2023-12-07T02:32:37","guid":{"rendered":"https:\/\/www.hostinger.com\/blog\/?p=5843"},"modified":"2023-12-07T02:32:40","modified_gmt":"2023-12-07T02:32:40","slug":"wordpress-november-roundup","status":"publish","type":"post","link":"https:\/\/www.hostinger.com\/blog\/wordpress-november-roundup","title":{"rendered":"This Month in WordPress: November Roundup"},"content":{"rendered":"<p>As 2023 draws to a close, the WordPress community remains active. The year&rsquo;s final significant update, WordPress 6.4, has been released alongside a fresh default theme, setting the stage for an exciting 2024.<\/p><p>In addition, TemplateMonster is hosting the Monster&rsquo;s Awards. This event celebrates the WordPress industry&rsquo;s products and service providers &ndash; don&rsquo;t forget to vote for your favorite ones.<\/p><p>On a more serious note, a phishing campaign targeting WordPress sites has come to light, but there is nothing to worry about as long as you don&rsquo;t download anything suspicious.<\/p><p>Let&rsquo;s delve deeper into the WordPress news and updates of November.<\/p><h2 class=\"wp-block-heading\" id=\"h-wordpress-6-4-and-6-4-1-updates\">WordPress 6.4 and 6.4.1 Updates<\/h2><p>The last WordPress major release was launched on November 7, introducing the new Twenty Twenty-Four default theme, workflow improvements, and performance boost.<\/p><p>Here are some highlights:<\/p><ul class=\"wp-block-list\">\n<li><strong>Twenty Twenty-Four theme<\/strong>. Breaking from the blog-centric design, the new theme has versatile patterns suitable for business and portfolio websites.<\/li>\n\n\n\n<li><strong>Custom pattern categories<\/strong>. Building on the pattern creation feature from the previous release, WordPress 6.4 introduces custom categories for enhanced pattern organization.<\/li>\n\n\n\n<li><strong>Container blocks<\/strong>. Rename group, row, and stack blocks to find them more quickly in the editor&rsquo;s list view.<\/li>\n\n\n\n<li><strong>Lightbox<\/strong>. Design your website easier with a native image lightbox that will magnify images in an overlay.<\/li>\n\n\n\n<li><strong>Split queries<\/strong>. This update speeds up your website by breaking down complex queries to reduce load time and database strain.<\/li>\n<\/ul><p>Only a few days after the release, WordPress 6.4.1 was launched to fix three bugs. The most important one was causing failed theme or plugin updates, as they resulted in timeout errors.<\/p><p>\n\n\n<div class=\"protip\">\n                    <h4 class=\"title\">Learn More About WordPress 6.4<\/h4>\n                    <p>Check out our blog post about <a href=\"https:\/\/www.hostinger.com\/blog\/wordpress-6-4\">WordPress 6.4<\/a> to find out more about the new version.<\/p>\n                <\/div>\n\n\n\n<\/p><p>Make sure to <a href=\"https:\/\/www.hostinger.com\/tutorials\/how-to-update-wordpress\">update your WordPress site<\/a> to the latest version for better security and new features.<\/p><h2 class=\"wp-block-heading\" id=\"h-wordpress-2024-roadmap\">WordPress 2024 Roadmap<\/h2><p>As 2023 is coming to an end, WordPress contributors are looking forward to the next year.<\/p><p><a href=\"https:\/\/www.hostinger.com\/blog\/josepha-chomphosy\">Josepha Haden Chomphosy<\/a>, the Director of the WordPress Project, posted a <a href=\"https:\/\/make.wordpress.org\/core\/2023\/11\/06\/proposal-2024-major-release-timing\/\" target=\"_blank\" rel=\"noopener\">schedule proposal for the next year&rsquo;s major releases<\/a>:<\/p><figure class=\"wp-block-table has-medium-font-size\"><table><tbody><tr><td><strong>Version<\/strong><\/td><td><strong>Beta version<\/strong><\/td><td><strong>Final release<\/strong><\/td><\/tr><tr><td>WordPress 6.5<\/td><td>February 13<\/td><td>March 26<\/td><\/tr><tr><td>WordPress 6.6<\/td><td>June 4<\/td><td>July 16<\/td><\/tr><tr><td>WordPress 6.7<\/td><td>September 24<\/td><td>November 5<\/td><\/tr><\/tbody><\/table><\/figure><p>If there are no changes, WordPress 6.5 and 6.6 release cycles will coincide with <a href=\"https:\/\/www.hostinger.com\/blog\/wordcamp-asia-2023-roundup\">WordCamp Asia<\/a> 2024 and <a href=\"https:\/\/www.hostinger.com\/blog\/wordcamp-europe-2023-roundup\">WordCamp Europe<\/a> 2024, respectively.<\/p><p>Furthermore, WordPress versions 6.5 and 6.7 primarily focus on enhancing collaborative features, marking significant progress in the Gutenberg Phase 3 project.<\/p><h2 class=\"wp-block-heading\" id=\"h-phishing-attempts-on-wordpress-users\">Phishing Attempts on WordPress Users<\/h2><p>Wordfence has recently identified a <a href=\"https:\/\/www.wordfence.com\/blog\/2023\/12\/psa-fake-cve-2023-45124-phishing-scam-tricks-users-into-installing-backdoor-plugin\/\" target=\"_blank\" rel=\"noopener\">phishing campaign<\/a> targeting WordPress users.<\/p><p>Basically, WordPress website owners get an email from the WordPress Security Team about the <a href=\"https:\/\/www.techtarget.com\/searchwindowsserver\/definition\/remote-code-execution-RCE\" target=\"_blank\" rel=\"noopener\">Remote Code Execution<\/a> (RCE) issue. The so-called security team offers to fix it by installing a plugin named CVE-2023-45124 Patch.<\/p><p>However, this CVE identifier does not exist.<\/p><p>Clicking the Download Plugin button in the email redirects victims to a counterfeit WordPress plugin repository page, using the URL en-gb-wordpress.org. The malicious plugin covertly adds an administrator user named <strong>wpsecuritypatch<\/strong>, designed to remain hidden for stealth.<\/p><p>Additionally, the plugin downloads a backdoor file named <strong>wpgate.zip<\/strong> and stores it in the root directory under the deceptive name <strong>wp-autoload.php<\/strong>.<\/p><p>To protect your website from such deceptive tactics, be careful with emails claiming to be from WordPress. Always verify links in the email before clicking on them and look for typos &ndash; in this case, &lsquo;Wordpress&rsquo; is written with a lowercase P.<\/p><p>If you suspect your site might be compromised, take these steps immediately:<\/p><ul class=\"wp-block-list\">\n<li>Inspect your root directory for a <strong>wp-autoload.php<\/strong> file.<\/li>\n\n\n\n<li>Review your installed WordPress plugins for any with the slug <strong>wpress-security-wordpress<\/strong>.<\/li>\n\n\n\n<li>Check for the presence of a concealed administrative user named <strong>wpsecuritypatch<\/strong>.<\/li>\n<\/ul><p>Doing so will ensure the security and integrity of your WordPress site.<\/p><h2 class=\"wp-block-heading\" id=\"h-wptalklink\">WPTalkLink<\/h2><p><a href=\"https:\/\/wptl.org\/\" target=\"_blank\" rel=\"noopener\">WPTalkLink<\/a>, envisioned by <a href=\"https:\/\/thewp.world\/presser\/javi-guembe\/\" target=\"_blank\" rel=\"noopener\">Javi Guembe<\/a>, emerges as a unique community project based on the desire to connect people within the WordPress community for mutual language learning.<\/p><p>This new platform pairs members with their language buddies so they can start learning together and motivate each other.&nbsp;<\/p><div class=\"wp-block-image\">\n<figure class=\"aligncenter size-full\"><img decoding=\"async\" width=\"1167\" height=\"722\" src=\"https:\/\/imagedelivery.net\/LqiWLm-3MGbYHtFuUbcBtA\/wp-content\/uploads\/sites\/4\/2023\/12\/image.png\/public\" alt=\"WP Talk Link website\" class=\"wp-image-5845\" srcset=\"https:\/\/imagedelivery.net\/LqiWLm-3MGbYHtFuUbcBtA\/wp-content\/uploads\/sites\/4\/2023\/12\/image.png\/w=1167,fit=scale-down 1167w, https:\/\/imagedelivery.net\/LqiWLm-3MGbYHtFuUbcBtA\/wp-content\/uploads\/sites\/4\/2023\/12\/image.png\/w=300,fit=scale-down 300w, https:\/\/imagedelivery.net\/LqiWLm-3MGbYHtFuUbcBtA\/wp-content\/uploads\/sites\/4\/2023\/12\/image.png\/w=1024,fit=scale-down 1024w, https:\/\/imagedelivery.net\/LqiWLm-3MGbYHtFuUbcBtA\/wp-content\/uploads\/sites\/4\/2023\/12\/image.png\/w=768,fit=scale-down 768w\" sizes=\"(max-width: 1167px) 100vw, 1167px\" \/><\/figure><\/div><p>Currently, there are over 20 members, including Javi Guembe himself and some well-known figures in the WordPress community, like <a href=\"https:\/\/www.hostinger.com\/blog\/michelle-frechette\">Michelle Frechette<\/a> and <a href=\"https:\/\/naoko.blog\/\" target=\"_blank\" rel=\"noopener\">Naoko Takano<\/a>.<\/p><h2 class=\"wp-block-heading\" id=\"h-vote-for-hostinger-in-the-monster-s-awards-2023\">Vote for Hostinger in the Monster&rsquo;s Awards 2023<\/h2><p>We&rsquo;re thrilled to announce that Hostinger is nominated in the Monster&rsquo;s Awards 2023 as one of the <strong>best WordPress Hosting Providers<\/strong>. Visit the <a href=\"https:\/\/www.templatemonster.com\/awards\/category\/wordpress-hosting\/\" target=\"_blank\" rel=\"noopener\">Monster&rsquo;s Awards website<\/a> and open the best WordPress hosting category to vote for Hostinger.<\/p><p>You can also check other categories and vote for your favorite WordPress-related products or services, including the best free WordPress themes and WooCommerce plugins.<\/p><h2 class=\"wp-block-heading\" id=\"h-what-s-coming-in-december\">What&rsquo;s Coming in December<\/h2><p>As we&rsquo;re closing 2023, there is only one WordPress event we&rsquo;re anticipating &ndash; <a href=\"https:\/\/wordpress.org\/news\/2023\/10\/state-of-the-word-2023\/\" target=\"_blank\" rel=\"noopener\">State of the Word 2023<\/a>. The annual keynote by WordPress co-founder Matt Mullenweg will take place on December 11, 2023, in Madrid, Spain.<\/p><p>Mark your calendar, and be sure to catch the live stream.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>As 2023 draws to a close, the WordPress community remains active. The year&#8217;s final significant update, WordPress 6.4, has been released alongside a fresh default theme, setting th\u2026<\/p>\n","protected":false},"author":172,"featured_media":5055,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[2365],"tags":[],"hashtags":[],"class_list":["post-5843","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-wordpress"],"hreflangs":[],"_links":{"self":[{"href":"https:\/\/www.hostinger.com\/blog\/wp-json\/wp\/v2\/posts\/5843","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.hostinger.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.hostinger.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.hostinger.com\/blog\/wp-json\/wp\/v2\/users\/172"}],"replies":[{"embeddable":true,"href":"https:\/\/www.hostinger.com\/blog\/wp-json\/wp\/v2\/comments?post=5843"}],"version-history":[{"count":2,"href":"https:\/\/www.hostinger.com\/blog\/wp-json\/wp\/v2\/posts\/5843\/revisions"}],"predecessor-version":[{"id":5846,"href":"https:\/\/www.hostinger.com\/blog\/wp-json\/wp\/v2\/posts\/5843\/revisions\/5846"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.hostinger.com\/blog\/wp-json\/wp\/v2\/media\/5055"}],"wp:attachment":[{"href":"https:\/\/www.hostinger.com\/blog\/wp-json\/wp\/v2\/media?parent=5843"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.hostinger.com\/blog\/wp-json\/wp\/v2\/categories?post=5843"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.hostinger.com\/blog\/wp-json\/wp\/v2\/tags?post=5843"},{"taxonomy":"hashtags","embeddable":true,"href":"https:\/\/www.hostinger.com\/blog\/wp-json\/wp\/v2\/hashtags?post=5843"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}