Nestor Angulo
@nestorangulo.pro
Technology enthusiast, Computer Science Engineer, and Web Security expert by contact and by certification (CISSP).
Head of Security and Brand Ambassador @ @patchstack.com
Head of Security and Brand Ambassador @ @patchstack.com
Reposted by Nestor Angulo
Who’s Behind FAIR? Inside the Coalition Seeking to Redefine WordPress Software Distribution
www.therepository.email/whos-behind-...
www.therepository.email/whos-behind-...
Who’s Behind FAIR? Inside the Coalition Seeking to Redefine WordPress Software Distribution
The launch of the FAIR Package Manager — built in secret, backed by the Linux Foundation, and announced last week alongside WordCamp Europe — has sparked a wave of conversation across the WordPress ecosystem.
www.therepository.email
June 13, 2025 at 1:32 PM
Who’s Behind FAIR? Inside the Coalition Seeking to Redefine WordPress Software Distribution
www.therepository.email/whos-behind-...
www.therepository.email/whos-behind-...
Reposted by Nestor Angulo
What is FAIR and why am I involved? I wrote about it here:
carriedils.com/wordpress-fa...
#FAIRPM #WordPress
carriedils.com/wordpress-fa...
#FAIRPM #WordPress
Something Has to Change with WordPress. FAIR is a Great Start.
Last week in Basel, Switzerland—at the Alt Ctrl Org conference held alongside WordCamp Europe—I stood on stage with my colleagues to introduce the FAIR Package Manager for WordPress. This wasn’t just ...
carriedils.com
June 13, 2025 at 4:24 PM
What is FAIR and why am I involved? I wrote about it here:
carriedils.com/wordpress-fa...
#FAIRPM #WordPress
carriedils.com/wordpress-fa...
#FAIRPM #WordPress
Reposted by Nestor Angulo
We're delighted to launch the FAIR Package Manager with the Linux Foundation - read our announcement and come collaborate with us! #FAIRPM
www.linuxfoundation.org/press/linux-...
www.linuxfoundation.org/press/linux-...
Linux Foundation Announces the FAIR Package Manager Project for Open Source Content Management System Stability
Linux Foundation announces FAIR Package Manager project, creating simplicity, security and consistency for the WordPress ecosystem
www.linuxfoundation.org
June 6, 2025 at 6:43 PM
We're delighted to launch the FAIR Package Manager with the Linux Foundation - read our announcement and come collaborate with us! #FAIRPM
www.linuxfoundation.org/press/linux-...
www.linuxfoundation.org/press/linux-...
Reposted by Nestor Angulo
Goodbye #osday25 and goodbye Florence 🥺
Soon, I will post a summary of this amazing event, but before I do, I just wanted to quickly thank all the organizers for organizing the BEST event ever 🤘
Thank you and see you next year 👋
Soon, I will post a summary of this amazing event, but before I do, I just wanted to quickly thank all the organizers for organizing the BEST event ever 🤘
Thank you and see you next year 👋
March 22, 2025 at 11:07 AM
Goodbye #osday25 and goodbye Florence 🥺
Soon, I will post a summary of this amazing event, but before I do, I just wanted to quickly thank all the organizers for organizing the BEST event ever 🤘
Thank you and see you next year 👋
Soon, I will post a summary of this amazing event, but before I do, I just wanted to quickly thank all the organizers for organizing the BEST event ever 🤘
Thank you and see you next year 👋
Reposted by Nestor Angulo
💻 #CloudFest Hackathon day 2 is in full swing and the team, led by Nestor Angulo De Ugarte and John Blackbourn, is racking their brains. 🧠⚡️
Curious to see the results? See the final presentations tomorrow at 3:55 PM at the Ring Stage in Europa Park. 👀
#CFHack #CFHack2025 #cloudfest
Curious to see the results? See the final presentations tomorrow at 3:55 PM at the Ring Stage in Europa Park. 👀
#CFHack #CFHack2025 #cloudfest
March 16, 2025 at 8:21 PM
💻 #CloudFest Hackathon day 2 is in full swing and the team, led by Nestor Angulo De Ugarte and John Blackbourn, is racking their brains. 🧠⚡️
Curious to see the results? See the final presentations tomorrow at 3:55 PM at the Ring Stage in Europa Park. 👀
#CFHack #CFHack2025 #cloudfest
Curious to see the results? See the final presentations tomorrow at 3:55 PM at the Ring Stage in Europa Park. 👀
#CFHack #CFHack2025 #cloudfest
Reposted by Nestor Angulo
How can you tell if the software and extensions (plugins/themes in #WordPress) have insecure dependencies? Software Bill of Materials. Stay tuned.
March 15, 2025 at 7:43 PM
How can you tell if the software and extensions (plugins/themes in #WordPress) have insecure dependencies? Software Bill of Materials. Stay tuned.
Reposted by Nestor Angulo
Unauthenticated Arbitrary File Upload Vuln in Chaty Pro plugin 🛡️
It suffers from an arbitrary file upload vuln. An attacker can upload a malicious file and take over the site 🚫
It was fixed in 3.3.4 ✅
With Patchstack protection activated, you're already protected 🛡️
patchstack.com/articles/una...
It suffers from an arbitrary file upload vuln. An attacker can upload a malicious file and take over the site 🚫
It was fixed in 3.3.4 ✅
With Patchstack protection activated, you're already protected 🛡️
patchstack.com/articles/una...
Arbitrary File Upload Vulnerability Patched in Chaty Pro Plugin
Learn about the critical security vulnerabilities in the Chaty Pro plugin. Protect your site from unauthorized access and potential takeovers.
patchstack.com
March 5, 2025 at 8:58 AM
Unauthenticated Arbitrary File Upload Vuln in Chaty Pro plugin 🛡️
It suffers from an arbitrary file upload vuln. An attacker can upload a malicious file and take over the site 🚫
It was fixed in 3.3.4 ✅
With Patchstack protection activated, you're already protected 🛡️
patchstack.com/articles/una...
It suffers from an arbitrary file upload vuln. An attacker can upload a malicious file and take over the site 🚫
It was fixed in 3.3.4 ✅
With Patchstack protection activated, you're already protected 🛡️
patchstack.com/articles/una...
Reposted by Nestor Angulo
Out now: The Repository #248 🗞️
⚖️ Automattic hit with class action over WP Engine dispute
😓 Core committers raise concerns as development stalls
🌥️ CloudFest Hackathon 2025
🚺 WordPress communities celebrate IWD
🌏 WordCamp Asia 2025 recap
therepository.email/248
⚖️ Automattic hit with class action over WP Engine dispute
😓 Core committers raise concerns as development stalls
🌥️ CloudFest Hackathon 2025
🚺 WordPress communities celebrate IWD
🌏 WordCamp Asia 2025 recap
therepository.email/248
Issue #248 - Automattic hit with class action over WP Engine dispute
therepository.email
February 28, 2025 at 1:08 PM
Out now: The Repository #248 🗞️
⚖️ Automattic hit with class action over WP Engine dispute
😓 Core committers raise concerns as development stalls
🌥️ CloudFest Hackathon 2025
🚺 WordPress communities celebrate IWD
🌏 WordCamp Asia 2025 recap
therepository.email/248
⚖️ Automattic hit with class action over WP Engine dispute
😓 Core committers raise concerns as development stalls
🌥️ CloudFest Hackathon 2025
🚺 WordPress communities celebrate IWD
🌏 WordCamp Asia 2025 recap
therepository.email/248
Reposted by Nestor Angulo
I had a lot of fun recording this with Steve. 🎬
#Drupal has some interesting solutions baked in - including using AI agents, recipes, and Symfony under the hood. Also, it has a different philosophy behind it. 💡
www.youtube.com/watch?v=u3t...
#Drupal has some interesting solutions baked in - including using AI agents, recipes, and Symfony under the hood. Also, it has a different philosophy behind it. 💡
www.youtube.com/watch?v=u3t...
Is Drupal CMS a good alternative to WordPress? ft Steve Persch, Pantheon
If you're looking to expand beyond WordPress and are on the lookout for suitable alternatives, you're in the right place! 👀 Joining us for this episode is S...
www.youtube.com
February 21, 2025 at 9:14 AM
I had a lot of fun recording this with Steve. 🎬
#Drupal has some interesting solutions baked in - including using AI agents, recipes, and Symfony under the hood. Also, it has a different philosophy behind it. 💡
www.youtube.com/watch?v=u3t...
#Drupal has some interesting solutions baked in - including using AI agents, recipes, and Symfony under the hood. Also, it has a different philosophy behind it. 💡
www.youtube.com/watch?v=u3t...
Reposted by Nestor Angulo
Critical Privilege Escalation Patched in KLEO Theme’s Plugin. 🔒
It occurs due to broken logic in the FB social login process. ❌
Update it immediately to at least 5.4.0 ⬆️
If you have Patchstack protection enabled, you're already protected. ✅
patchstack.com/articles/cri...
It occurs due to broken logic in the FB social login process. ❌
Update it immediately to at least 5.4.0 ⬆️
If you have Patchstack protection enabled, you're already protected. ✅
patchstack.com/articles/cri...
Critical Privilege Escalation Patched in KLEO Theme's Plugin - Patchstack
A critical privilege escalation vulnerability was found in the K Elements plugin, affecting KLEO theme users. Update to version 5.4.0 to stay secure. Patchstack customers are already protected.
patchstack.com
February 20, 2025 at 10:05 AM
Critical Privilege Escalation Patched in KLEO Theme’s Plugin. 🔒
It occurs due to broken logic in the FB social login process. ❌
Update it immediately to at least 5.4.0 ⬆️
If you have Patchstack protection enabled, you're already protected. ✅
patchstack.com/articles/cri...
It occurs due to broken logic in the FB social login process. ❌
Update it immediately to at least 5.4.0 ⬆️
If you have Patchstack protection enabled, you're already protected. ✅
patchstack.com/articles/cri...
In the mood to test your CTF skills 😜?? There is an open CTF now happening in #WordCamp Asia 2025, you can participate it from any place in the world. 😉We've also put out over $3000 of cash prizes for the top 5.
Have fun! ctf.patchstack.com
#infosec #wcasia2025 #WordPress #bugbounty
Have fun! ctf.patchstack.com
#infosec #wcasia2025 #WordPress #bugbounty
Patchstack WCASIA CTF
ctf.patchstack.com
February 20, 2025 at 10:58 AM
In the mood to test your CTF skills 😜?? There is an open CTF now happening in #WordCamp Asia 2025, you can participate it from any place in the world. 😉We've also put out over $3000 of cash prizes for the top 5.
Have fun! ctf.patchstack.com
#infosec #wcasia2025 #WordPress #bugbounty
Have fun! ctf.patchstack.com
#infosec #wcasia2025 #WordPress #bugbounty
Reposted by Nestor Angulo
I enjoyed discussing everything #drupal with Steve Persch from #pantheon. 🎉
The full interview will be out on 21st Feb, but you can already watch the teaser:
www.youtube.com/watch?v=9p8...
and you can subscribe for the final video (link in the comment): 🔔
The full interview will be out on 21st Feb, but you can already watch the teaser:
www.youtube.com/watch?v=9p8...
and you can subscribe for the final video (link in the comment): 🔔
Teaser: Is Drupal CMS a Good Alternative to WordPress? ft. Steve Persch, Pantheon
Join us for a webinar covering the key differences between Drupal CMS and WordPress if you're looking for a suitable alternative! The full episode will be li...
www.youtube.com
February 17, 2025 at 10:35 AM
I enjoyed discussing everything #drupal with Steve Persch from #pantheon. 🎉
The full interview will be out on 21st Feb, but you can already watch the teaser:
www.youtube.com/watch?v=9p8...
and you can subscribe for the final video (link in the comment): 🔔
The full interview will be out on 21st Feb, but you can already watch the teaser:
www.youtube.com/watch?v=9p8...
and you can subscribe for the final video (link in the comment): 🔔
Reposted by Nestor Angulo
🚨 Critical Vulnerability Patched in GiveWP Plugin.
Versions 3.19.3 and below suffer from an unauthenticated PHP Object Injection vuln. 💻
This was fixed in version 3.19.4, so update ASAP. 🛠️
As a paid Patchstack user you're protected from this vuln🛡️
patchstack.com/articles/cr...
Versions 3.19.3 and below suffer from an unauthenticated PHP Object Injection vuln. 💻
This was fixed in version 3.19.4, so update ASAP. 🛠️
As a paid Patchstack user you're protected from this vuln🛡️
patchstack.com/articles/cr...
January 10, 2025 at 1:21 PM
🚨 Critical Vulnerability Patched in GiveWP Plugin.
Versions 3.19.3 and below suffer from an unauthenticated PHP Object Injection vuln. 💻
This was fixed in version 3.19.4, so update ASAP. 🛠️
As a paid Patchstack user you're protected from this vuln🛡️
patchstack.com/articles/cr...
Versions 3.19.3 and below suffer from an unauthenticated PHP Object Injection vuln. 💻
This was fixed in version 3.19.4, so update ASAP. 🛠️
As a paid Patchstack user you're protected from this vuln🛡️
patchstack.com/articles/cr...
Reposted by Nestor Angulo
Critical Vulnerabilities Found in Fancy Product Designer Plugin! 🚨
It suffers from Unauthenticated Arbitrary File Upload and SQL Injection vulnerabilities. ⛓️💥
No patch was released. 😔
As a paid Patchstack user you're protected from this vulnerability🛡️
patchstack.com/articles/cr...
It suffers from Unauthenticated Arbitrary File Upload and SQL Injection vulnerabilities. ⛓️💥
No patch was released. 😔
As a paid Patchstack user you're protected from this vulnerability🛡️
patchstack.com/articles/cr...
Critical Vulnerabilities Found in Fancy Product Designer Plugin - Patchstack
Critical vulnerabilities discovered in the Fancy Product Designer plugin: unauthenticated arbitrary file upload and SQL injection. Stay protected with Patchstack.
patchstack.com
January 9, 2025 at 10:42 AM
Critical Vulnerabilities Found in Fancy Product Designer Plugin! 🚨
It suffers from Unauthenticated Arbitrary File Upload and SQL Injection vulnerabilities. ⛓️💥
No patch was released. 😔
As a paid Patchstack user you're protected from this vulnerability🛡️
patchstack.com/articles/cr...
It suffers from Unauthenticated Arbitrary File Upload and SQL Injection vulnerabilities. ⛓️💥
No patch was released. 😔
As a paid Patchstack user you're protected from this vulnerability🛡️
patchstack.com/articles/cr...