If you are currently using the latest release of the WP-Forum plugin, listen up. The websec security team has discovered a vulnerability within this plugin that can be exploited by malicious users to conduct SQL injection attacks. According to Secunia: Input passed to the “user” parameter in the WordPress installation’s index.php script (when “forumaction” is set to “showprofile” and “page_id” to a page with the “<!–WPFORUM–>” tag) is not properly sanitised before being used in SQL queries. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code. This vulnerability when exploited successfully allows the individual to retrieve usernames, password hashes, and email addresses for all users, including administrators. However, the user has to have knowledge of the proper database table prefix. This vulnerability has been confirmed in version 1.7.4 which is currently the most recent version available for download. Description: WP-Forum is a WordPress plugin that enables […]
[Continue Reading...]
Archive for January, 2008
Three Column Themes Blue Lily Blue Lily is a three column theme which is quite simple and attractive, the main background is a striking blue with green color for the header. The navigation menu is right on the top of the page making it easily visible. Content area is big enough and has a gray background. There are two sidebars which you can use to show off additional information. Widget Ready: Yes Compatibility: There were no issues that I saw with this theme on Firefox 2+, IE6, IE7, Flock. Validations: Valid XHTML 1.0 Transitional | Invalid CSS with 1 error Demo | Release Page | Download Blue Dream Blue Dream is a three column theme with a graphical header and rounded navigational menu on the top of the page. The theme comes built in with RSS icons on top of the page to make it easier to subscribe to feeds. […]
[Continue Reading...]Compete has released a list of the fastest growing and declining sites of 2007. These stats are made up of the top 1,000 domains in between December of 2006 and December of 2007. Among those domains that grew the most (and that are safe for work) include, iamfreetonight.com, podshow.com and techcrunch.com. The domains that saw a negative change of at least 90% include bolt.com (due to bankruptcy) broadcaster.com and octanetv.com. However, WordPress.com appears to have grown by 523% with 24,393,457 visits. WordPress doesn’t appear to be slowing down anytime soon and thats some positive news.
[Continue Reading...]2007 Crunchies: The Winners: Automattic won both categories they were nominated for. I love the way “long tail” is misspelled (I hope) in the article. Congratulations to Toni, Matt and the rest of the Automattic team!
[Continue Reading...]One of the downsides of having a popular plugin is the amount of support requests, bug reports, and feature suggestions that come in. Well, it’s not that bad, but sometimes it’s difficult to organize what features should be added, what bugs must be tackled first, and what can just be ignored. If you’re one of the few and the proud over at WP Extend Plugins, you have a nice tool at your disposal to keep track of all your plugin related needs. The tool, you ask? It’s the trac ticketing system over at the WordPress Plugin Repository. WordPress Plugin Repository WordPress Plugin Repository – Trac Each plugin hosted on WP Extend allows the plugin author to post and assign tickets to their plugin. In fact, any member of the WP Support Forums can post a ticket against any plugin hosted in the official repository. Logging into the WP Plugins Repository […]
[Continue Reading...]WordPress Publisher Blog is (going to be) written by various team members at Automattic and their goal is to help all publishers get the most out of WordPress. They will cover features that are often overlooked, highlight plugins that extend WordPress functionality and showcase interesting sites being built with WordPress. They are looking for publishers working on innovative projects using WordPress and would like to field questions from users. From the comment that Raanan left on PressedWords, it would appear that they want to focus on large WordPress installations that are doing lots of custom work and help publishers find the proper resources. A definite daily read!
[Continue Reading...]Theme Releases Two Column Themes GreenTech GreenTech is a two column theme with pleasant colors. It makes use of a mix of brown and green colors. The background is creme in color. There are plenty of advertisement options available in this theme. Author comments on the blog are styled differently than the other comments. Overall a good looking theme. Widget Ready: Yes Compatibility: There were no issues that I saw with this theme on Firefox 2+, IE6, IE7, Flock. The header section appears broken in Opera. Validations: Invalid XHTML 1.0 Transitional with 29 errors | Invalid CSS with 1 error Demo | Release Page | Download Three Column Themes My Starcraft 2 My Starcraft 2 is a theme based on Starcraft 2. The theme uses dark and vibrant colors with a mix of black and gray. The links are orange color making it more visible on the darker background. Overall […]
[Continue Reading...]Quite often, we hear of the terms (permalinks or pretty permalinks) which can also be called SEO-friendly URLs. These URLs are not only SEO friendly, but I believe they are human friendly as well. By default, WordPress uses URLs that look like a mishmash of letters and numbers with a few question marks mixed in for good measure. These types of links are frowned upon by search engine spiders and as a human being, they are also hard to read. Fortunately, WordPress provides a way for us to change this linking structure to something understandable. WordPress calls these Permalinks. Permalink settings can be configured a number of different ways. One of the ways to quickly configure permalinks is by choosing one of the Common Options. These common options include: Default – http://www.domain.com/?p=123 Date and name based – http://www.domain.com/2008/01/15/sample-post/ Numeric – http://www.domain.com/archives/123 There is no sense in using the default option […]
[Continue Reading...]One Column Themes DePo Skinny A very simple one column theme with easy integration for your Flickr pictures at the top of the page. It is a real bare bone theme and is only 500 pixels wide. Though DePo Skinny does not have a sidebar it makes it up in the footer with a bottom sidebar to display additional information. Being a one column theme main advertisement options are within the post itself. Widget Ready: No Sidebar Options Compatibility: There were no issues that I saw with this theme on Firefox 2+, IE6, IE7, Flock and Opera browsers. Validations: Invalid XHTML 1.0 Transitional with 30 errors | Valid CSS Demo | Download Two Column Themes Twister 2.0 Twister 2.0 is made up of dark colors with a mix of gray and black with on a grayish background. The links are white in color and easy to spot with the darkish […]
[Continue Reading...]About the Author
- Jeff Chandler
Categories
- bbpress
- Best of WordPress
- Blog Templates Blog Skins Blog Themes
- Blogging
- Blogging Essays
- Blogging News
- brainstorming
- buddypress
- Business of Blogging
- CMS
- Code
- Cold Fusion
- Community Interviews
- Cool Scripts
- General
- HOW-TO
- LinkyLoo
- Movable Type Plugins
- Photolog Script
- Podcasting
- QuickLinking
- Spam
- SXSW
- TLA
- Tutorials
- User Reviews
- Web Design
- Web Ethics
- Weblog Add-Ons
- Weblog tools blog tools blogging tools
- Weekly Plugin Review
- WLTC Community
- wordcamp
- WordPress
- WordPress Discussions
- WordPress FAQs
- Wordpress for Beginners
- WordPress Hack
- WordPress News
- WordPress Plugin Competition
- WordPress Plugins
- WordPress Polls
- WordPress Security
- WordPress Templates WordPress Skins WordPress Themes
- WordPress Tips
- WordPress Tools
- WordPress Troubleshooting
- WordPress Weekly
- WordPress Widgets
- WordPress WishList
- XHTML Tips
Obviously Powered by WordPress. © 2003-2013
