wordpress tricks, hacks, and tips

Tag: "security"

Crash! Burn! How to repair tables in the WordPress database

Rebecca Markowitz | September 23, 2008 | 16 Comments

We just got a scary phone call. Don't worry, everyone's ok. We logged into one of our Wordpress sites and, while the backend was still there, all the posts and pages and comments were gone. G-O-N-E. Poof. Just like that. I went into the PHPmyadmin section of the control panel to look at the ... View Post

Preventing email spam with the built-in WordPress email obfuscator

Miriam Schwab | July 10, 2008 | 10 Comments

If you want to give people the option to contact you by email, you need to display your email address on your site. But by doing so, you are putting yourself at the mercy of the low-lives out there harvesting email addresses so they can spam you with products that will enlarge certain parts ... View Post

4 reasons not to host your blog on WordPress.com

Miriam Schwab | April 15, 2008 | 24 Comments

When starting out, many bloggers seek out the cheap and easy route, either choosing to blog on Blogger, WordPress.com, or another free and hosted blogging platform. This approach makes sense, since a person can never know until they've started if they even like blogging, let alone whether they'll be successful.I ... View Post

Happy birthday to WordPress Garage!

Miriam Schwab | February 22, 2008 | 16 Comments

Birthday Cake

Today, WordPress Garage turns one year old. Hasn't our little baby grown up fast? Blow out the candles... It is exactly one year ago today that I wrote my first post here. It was about Jerome's Keywords Plugin, which was a popular ... View Post

Security problem with Search Unleashed plugin

| February 15, 2008 | 1 Comment

Security Focus has reported a security problem with the Search Unleashed plugin. The plugin stores search queries, but does not validate stored data and sends it back "raw" to the browser. Read more at SecurityFocus View Post

Wordspew Plugin has security vulnerability

| February 9, 2008 | 0 Comments

Secunia has reported an "id" SQL injection vulnerability in the WordSpew plugin for WordPress. Here's the description of the vulnerability: DESCRIPTION: S@BUN has reported a vulnerability in the Wordspew plugin for Wordpress, which can be exploited by malicious people to conduct SQL injection attacks. Input ... View Post

Is WordPress’ security vulnerable at its core?

Miriam Schwab | February 6, 2008 | 5 Comments

To my chagrin, my blog is telling me that it's time to upgrade again. A new version of WordPress is available! Please update now.

It's an urgent security release because if you allow registration on your WordPress blog, users can edit other users' drafts. WordPress development also mentions the ... View Post

WP-Cal plugin security vulnerability

| January 29, 2008 | 2 Comments

A vulnerability has been discovered in the WP-Cal plugin for WordPress, an event calendar plugin by Fahlstad. This vulnerability can be exploited by malicious people to conduct SQL injection attacks. Just last week another plugin by Fahlstad ... View Post

WordPress WP-Forum plugin security vulnerability

| January 22, 2008 | 2 Comments

Heads up to any users of the WP-Forum WordPress plugin: Secunia has reported that it can be exploited by malicious people to conduct SQL injection attacks. Too bad - just when I was looking for a simple forum solution for a WordPress ... View Post

Blog Oh Blog lists common WordPress myths and facts

| January 11, 2008 | 0 Comments

Blog Oh Blog has published a great article for people interested in entering the world of WordPress. The article lists 9 myths about WordPress related to what it is, plugins, security, costs, ... View Post