by Admin on February 16, 2010
Welcome back!
The new update of WordPress fixes a security vulnerability that was previously reported by Thomas Mackenzie on his personal blog. The vulnerability affects all Wordpress installations with the version number 2.9.0 or later. Previous Wordpress installations are not affected by the vulnerability (but are insecure because of other reasons).
Thomas Mackenzie alerted us to a problem where logged in users can peek at trashed posts belonging to other authors. If you have untrusted users signed up on your blog and sensitive posts in the trash, you should upgrade to 2.9.2. As always, you can visit the Tools->Upgrade menu to upgrade.
-WordPress Development Blog
You can download the latest update here or upgrade directly from your wp-admin.
Happy Blogging.
-Mahesh.
Related Posts Related Websites
by Admin on January 5, 2010
Wordpress has updated its blogging software to version 2.9.1. This release addresses a handful of minor issues as well as a rather annoying problem where scheduled posts and pingbacks are not processed correctly due to incompatibilities with some hosts.
You can download the latest version here, or you can update it from wp-admin.
Related Posts Related Websites
by Admin on December 20, 2009
Wordpress has released the latest version of its famous blogging software! The new version 2.9, code named “Carmen” is now available for download.
The new version comes with over 500 bug fixes, changes and enhancements which makes it a recommended download and install. Some of the new features include:
- Trashbin: Posts that are deleted are now moved to the trash instead of being deleted irrecoverably. It is possible to recover posts from the trash at a later time.
- Image Editor: A basic image editor that can be used to edit, rotate, scale and crop images.
- Batch plugin support: Update up to ten plugins at once.
- Video Embeds: video embeds for popular sites have become just a tad easier as it is now possible to simply paste the url into the post which will be turned into an appropriate viewer by Wordpress automatically.
- Automatic database optimization which can be enabled by adding define(‘WP_ALLOW_REPAIR’, true); to the Wordpress config file.
- Post Thumbnails options which can be used to display thumbnails in every post if the theme supports it.
- Better SEO thanks to rel=canonical
- Custom galleries with the ability to add pictures from several posts.
You can upgrade easily from your Dashboard by going to Tools > Upgrade, or you can download from WordPress.org.
Related Posts Related Websites
by Admin on November 5, 2009
Sometimes, it may happen that your Wordpress blog gets hacked and the hacker changes your administrator password. He may also change your e-mail address. In this case, you cannot reset your password directly from “Lost Password”. But don’t worry, I’ll tell you a way to reset your Wordpress password and also your e-mail address directly through phpMyAdmin. Resetting Wordpress administrator password is very easy through phpMyAdmin.
Following are the steps to change Wordpress password through phpMyAdmin:
Step 1: Login to your phpMyAdmin using your SQL Database username and password
This can be done through cPanel of your host.
Step 2: Browse to your blog’s database
Step 3: Find wp_users:
(Edit the default WordPress table prefix “wp_” if needed)
Once you click on browse in your wp_users database, you will be shown the users on this blog. Scroll down to the ID which says user_login as admin(by default). Once there click on edit button, the edit button will appear as a pencil logo.
Step 4: Edit the values:
Once clicked on edit, you will be taken to a page that appears as below. Here the third field user_pass will have MD5 hashed password under the value column. This value is not in plain text. Wordpress, by default, hashes the password to MD5 salt for security reasons.
If you want your Wordpress administrator password to be “password“, change the value of user_pass to 5f4dcc3b5aa765d61d8327deb882cf99 and click the Go button and then log in to WordPress using your new password..
If you want your password to be different, you can use online MD5 hash generators to generate hash of your required text. You can search Google for “online MD5 generator”, etc.
Example: http://www.adamek.biz/md5-generator.php
Also, if you want to change e-mail address, you can edit value of user_email row.
If you want to change Wordpress username, check this tutorial!
Related Posts Related Websites
by Admin on October 21, 2009
Wordpress has released a new version of it’s famous blogging software! It’s latest version is Wordpress 2.8.5. This release consists of several security features. Wordpress recommends that all sites must be upgraded to this new version of WordPress to ensure that you have the best available protection.
Some of the features of this release are:
- A fix for the Trackback Denial-of-Service attack that is currently being seen.
- Removal of areas within the code where php code in variables was evaluated.
- Switched the file upload functionality to be whitelisted for all users including Admins.
- Retiring of the two importers of Tag data from old plugins.
To upgrade Wordpress go to Tools > Upgrade in your WP Admin. Just select “Upgrade Automatically” or “Download 2.8.5″ and upgrade it manually.
Related Posts Related Websites
by Admin on September 4, 2009
Many of you may be knowing that changing Wordpress login username is one of the ways to protect your Wordpress blog. After a fresh install of Wordpress on your host, you sign in with the default username “admin“. You cannot change this username directly from the Admin panel.
But don’t worry! There’s another way to change this username. It’s through phpMyAdmin. This is not a new hack/method. But, it’s quite useful from security point of view, esp. for Wordpress newbies.
Following are the steps to change Wordpress username through phpMyAdmin:
Step 1: Login to your phpMyAdmin using your SQL Database username and password
This can be done through cPanel of your host.
Step 2: Browse to your blog’s database
Step 3: Find wp_users:
(Edit the default WordPress table prefix “wp_” if needed)
Once you click on browse in your wp_users database, you will be shown the users on this blog. Scroll down to the ID which says user_login as admin(by default). Once there click on edit button, the edit button will appear as a pencil logo.
Step 4: Edit the values:
Once clicked on edit, you will be taken to a page that appears as below. Here the second field user_login will have admin under the value column. Change this from admin to anything you prefer.
Once done with the change save and click go on the page.
There we have changed the WordPress user from the default admin to something we prefer. This is one way to ensure your WordPress blog is one step secure than it was before.
Happy Blogging.
Related Posts Related Websites
by Admin on June 18, 2009
Step 1 – Write Your Post in Wordpress
To add a Youtube video to your blog post, write a new post in your Wordpress Admin area. Be sure to leave a blank line where you want the YouTube video to appear in the final, published post on your blog.
Step 2 – Switch to the HTML Editor View
After you’re done entering the text for your post, select the “HTML” tab to switch to the HTML Editor view in Wordpress.
Step 3 – Find the YouTube Video that You Want to Embed in Your Wordpress Post
Find a Youtube video that you want to embed in the post. Copy the code from the “Embed” box.
Notice that when you click in the Embed text box, the window may expand showing several options you can pick and choose from to customize the video’s appearance within your blog post. For example, you can choose to show related videos, include a border, and change the size. It’s up to you if you want to modify these settings or not. If you do change these selections, the code in the Embed text box will automatically update. Therefore, copy the Embed code after you make any customization changes.
Step 4 – Paste the Embed Code from YouTube into Your Wordpress Post
Return to the window where you have your Wordpress post open, and click within the HTML editor text box in order to place your cursor at the beginning of the first line where you want the YouTube video to appear within your final, published post. Paste the code here, and then select the “Publish” button on the right side of your screen to publish your post.
It’s important to paste the Embed code just before you hit the Publish button. If you do anything else to your post after pasting the Embed code, the YouTube video may not appear correctly in your final, published post. If that happens, you’ll have to return to the HTML editor, delete the code you pasted, re-paste it and republish your post.
Step 5 – View your post
Visit your blog to view your live post and ensure it published correctly. If not, return to Step 3 and repeat the copying and pasting of the Embed code and republish your post.
Related Posts Related Websites
by Admin on June 16, 2009
I recently encountered some problem with my Wordpress blog after updating it to version 2.8. Due to this update, the plugins also needed to be updated. So, while doing that, there was some problem and my blog wasn’t ready to open. So, I thought of disabling all the plugins and start over again.
But, my admin page was also not opening. So, I searched for methods that would disable plugins without logging in to WP-Admin.
I found out that the plugins could be disabled through phpMyAdmin.
Here are the steps to disable plugins through phpMyAdmin:
Login to phpMyAdmin:
This can be done through cPanel.
Browse to your blog’s database:
By default, you will be in Structure tab. Switch on to SQL tab, which is besides Structure tab.
Run SQL Query:
Navigate to the “active_plugins” column of the “wp_options” table using the following SQL query (edit the default WordPress table prefix “wp_” if needed):
SELECT * FROM wp_options WHERE option_name = 'active_plugins';
Once the active_plugins column appears, click to edit it. You will see something similar to the following, depending on the number and type of plugins you have installed:
a:26:{i:0;s:19:"akismet/akismet.php";i:1;s:43:"all-in-one-seo-pack/all_in_one_seo_pack.php";i:2;s:25:"blog-stats/blog-stats.php";i:3;s:14:"copyescape.php";i:4;s:31:"dd-formmailer/dd-formmailer.php";i:5;s:36:"google-sitemap-generator/sitemap.php";i:6;s:32:"login-lockdown/loginlockdown.php";i:7;s:18:"mybloglog_wp_2.php";i:8;s:33:"related-sites/RelatedWebsites.php";i:9;s:21:"sociable/sociable.php";i:10;s:23:"statpress/statpress.php";i:11;s:23:"tweetmeme/tweetmeme.php";i:12;s:27:"tweetmyblog/tweetmyblog.php";i:13;s:37:"twittercounter/ald-twittercounter.php";i:14;s:53:"what-would-seth-godin-do/what_would_seth_godin_do.php";i:15;s:17:"wp-ban/wp-ban.php";i:16;s:29:"wp-dbmanager/wp-dbmanager.php";i:17;s:21:"wp-email/wp-email.php";i:18;s:43:"wp-google-analytics/wp-google-analytics.php";i:19;s:27:"wp-imagefit/wp-imagefit.php";i:20;s:61:"wp-limit-posts-automatically/wp-limit-posts-automatically.php";i:21;s:27:"wp-pagenavi/wp-pagenavi.php";i:22;s:29:"wp-postviews/wp-postviews.php";i:23;s:33:"wp-security-scan/securityscan.php";i:24;s:21:"wp-table/wp-table.php";i:25;s:31:"wp-useronline/wp-useronline.php";}
That entire array of code represents every active plugin on your site. Thus, to quickly disable all plugins without using the WP Admin area, highlight the entire block of code, cut it out, and paste it into a safe, offline text file. After removing the code, click the button to save your changes and that’s it. All WordPress plugins are now deactivated (yet still installed, and with all plugin options intact). This obviously is a huge time-saver that really comes in handy during those mission-critical, time-sensitive situations where every second counts. Once you are ready to re-activate your entire set of plugins, simply cut/copy & paste the preserved code back into the “active_plugins” field. Click save and done. Again, don’t forget to backup your database before editing it 
Alternately, here is a one-second query to disable all plugins:
UPDATE wp_options SET option_value = '' WHERE option_name = 'active_plugins';
Upon execution, this query will clear the active_plugins field of all active plugins, effectively disabling (without uninstalling or modifying) the entire set. This method is great if you plan on re-enabling each plugin individually, say, after resolving some heinous server error. Whereas the previous technique makes it easy to re-enable all plugins en masse, this query is perfect for simply “nuking” all active plugins with no remorse.
Related Posts Related Websites
by Admin on April 2, 2009
New plugins are being released for WordPress on a fairly regular basis, but not all are so easily able to blow away bloggers with their capabilities as a recent release by the name of Blog Traffic Exchange. While not many people actually know much about Blog Traffic Exchange right now, it will not take long for this new WordPress plugin (Related Sites) to take off because it is providing a means of building high quality links on autopilot without any spamming. Rather than simply having your related posts listed beneath each of your blog posts, this is a plugin that is going to make it possible for you to show off articles and blog posts that are related on other blogs within your same niche.
As you know, when you create links to other blogs, you receive track back links from them in response. But when it comes to related websites, however, you simply get put into the cloud, and people who decide to blog about similar topics as you will have links to your blog in their related website link. These are relevant and powerful links that relate to your content and help gain exposure for your blog without requiring anything from you. Your readers will be able to check out relevant content in other websites and other blogs, and visitors to these other websites and other blogs will gain extra exposure to your blog, and you do not have to do anything to make this happen.
Kevin, who created the Blog Traffic Exchange, has been receiving a great amount of incredible feedback from everyone who has used the plugin so far. Some of the users who have given consideration to this plugin have seen as much as a 20 percent increase in the traffic they are receiving, simply as a result of using the plugin.
As the owner of a blog or a website, one of your biggest priorities should always be to hunt for new and effective ways for driving an increase in traffic to your website (like using Twitter to drive more traffic). One of the greatest strategies that you can employ is link exchange or traffic exchange, but there are too many flaws in systems like these. The guys who are behind the Blog Traffic Exchange or BTE created this word press plug-in as a means of alleviating some of the issues that relate to normal link exchange and traffic exchange systems, making it significantly easier to exchange links without any of the flaws or hassles. In other words, every blogger should absolutely be utilizing this plugin to the best of their ability if their priority is to increase traffic, because it allows bloggers from all niches and from all over the internet to significantly increase their traffic on autopilot without any spamming or gray-area tactics. This is the best way for bloggers to get targeted, interested traffic without having to employ older types of link exchange or traffic exchange tactics which have been flawed in the past.
Related Posts Related Websites
