WordPress 3.3.1 Security Update

January 3rd, 2012

WordPress version 3.3.1

WordPress version 3.3.1

WordPress 3.3.1 is available from January 3rd, 2012. Version 3.3.1 is a security update and fixed 15 bugs. While I didn’t meet any bugs in version 3.3 myself (and you?) I have updated my blogs as soon I got message about this security update (it fixes a cross-site scripting vulnerability that affected version 3.3) available. The same thing is highly recommended for other WordPress blog owners.
Do not wait when hackers exploit existing vulnerability, update your WordPress installation today, do not allow bad guys to use old and already closed black doors to your sweet WordPress blog home.

For more information, see the oficial release notes.

Internet Explorer and JavaScript copyright problem

December 31st, 2011

IE, JavaScript and copyright

IE, JavaScript and copyright

After publishing recent update for User Role Editor plugin (version 3.3.) I got a couple of messages about WordPress crash after updating of plugin. That was very strange as for about 2,000 downloads for that moment we have only 2 installations with such problem.

The reason was simple. Did you guess already?
Yes, that was the former and noisy for almost every web developer browsers compatibility issue. There are no any problem with FireFox and Google Chrome. The only Internet Explorer (I tested versions from 6.0 to 8.0) automatically replaces ‘&copy’ part in the ‘&copy_from_user_role’ URL parameter name inside JavaScript code to the copyright © sign. That’s invalid role name inserted into WordPress database and the whole user roles and capabilities list crashes as a result. To isolate this problem I should use other name for this URL parameter – user_role_copy_from.
Wow!!! It started work as expected. Thank you, darling Microsoft.

Read the rest of this entry

Show to author his posts comments only

December 25th, 2011

http://socalohv.com/images/General/Moderator.jpg

See your posts comments only

When authors of your blog click ‘Comments’ menu item in WordPress backend, they see all comments by default, not only from theirs posts. Yes, it’s not possible to do something with such comments (any actions are blocked in case are not a post author) but what the sense to see on all this mess and search comments from your posts to moderate inside full comments list? I think you agree, there is a little sense, if nothing at all.
Do you wish to show for your authors comments from theirs posts only?
Read the rest of this entry

WordPress 3.3 Sonny Welcome

December 14th, 2011

WordPress 3.3 Sonny Welcome

Welcome WordPress 3.3

Good news: After solid testing (4 beta versions and 3 release candidates) WordPress 3.3. “Sonny” is available for download.

As for me, it was ready for use in production environment from Beta 2. Yes, I installed and used WordPress 3.3 here at shinephp.com from the Beta 2. It helped me to resolve the issue, which I met from time to time under previous WordPress versions: when some large (2-3 screens) and complex (images, links inside) post content was not shown, only title was seen on the page. I was very happy, when tried WordPress 3.3. Beta 2 and discovered that such weird thing was dissapeared. That’s a miracle! So, welcome WordPress 3.3. I like you, in general.
I wrote a few words about main new features of this WordPress version here. In short, there are drag-and-drop uploader, hover menus for the navigation, the new toolbar, improved co-editing support, enhanced context help system, etc.

Read the rest of this entry

User Role Editor 3.3 is published

December 10th, 2011

User Role Editor v. 3.3 WordPress plugin

User Role Editor 3.3

I published today version 3.3 of “User Role Editor” WordPress plugin. What’s new in this version?
- New role can be created as a copy of other existing one.
- You can hide/show deprecated capabilties (level_1 – level_10).
- Users with “Administrator” role are not shown to other users with “list_users” capability.
- Plugin data cleanup is added – plugin options will be automatically deleted if you delete plugin via WordPress link.
- Some code enhancements are applied, e.g. optimization and using of WordPress API instead of self-written routine.
Read the rest of this entry

Phishing email to steal PayPal account

December 3rd, 2011

Phishing email - original image is iStockphoto.com/Dave Pilibosian

Phishing email

Checking email today morning I got warning about my PayPal personal information change. 1st thought which I should have: “Oh, my God! Someone compromised my PayPal account. I should go there and check, as fast as possible. Oh, I see paypal link right here in email text. Click it, input login credentials to check my account…”. Can you have such thoughts in similar situation? I think you can. Do not hurry. This is very important at such moment – do not make stupid things. Scammer wait you will go this way and act by his scenario. Do not become a victim.
First of all remember, on what email you PayPal account is registered and look, on what email you got this message. Other one? Do not worry about it. Investigate it together with me, just for pleasure, and delete. 2nd, thing we should always check from what email such message was sent. My email client shows ‘PayPal <support@pula.net>’. Is it from paypal.com domain? No. Delete this message.
Read the rest of this entry

activate_plugins WordPress capability

November 26th, 2011

activate plugins

activate_plugins

What is 1st WordPress user permissions system capability if we sort such list in alphabet order? Yes, activate_plugins one. Information about it at WordPress Codex is very brief: “Allows access to Administration Panel options: Plugins”. But according its name this capability should allow at least activate plugins and may be something more. Where we can get right information about WordPress if not at WordPress’s core source code? I made little investigation and wish to share with you its results in this post.
Summary: activate_plugins capability on the top of the mountain really gives user access to “Plugins” and “Installed Plugins” menu items of WordPress admin back-end menu system and lets him activate/deactivate plugins one by one or applying bulk action to the set of selected plugins.
Let’s look together under the WordPress hood and see on examples of WordPress 3.3 core source code how it’s realized.
Read the rest of this entry

Pages: Prev 1 2 3 4 5 6 7 8 ...15 16 17 Next