Security Alert: 3 WordPress Plugins Need Upgraded ASAP

Written by Bec on January 15, 2015 – 7:04 PM -

It may be a New Year, but the hackers haven’t taken a holiday. Thanks for the heads-up from the Wordfence Security team!

1. The popular Pods content development framework for WordPress has a XSS and CSRF vulnerability. This was fixed in version 2.5 which was released on 30 December. Please upgrade immediately. (plugin is popular with over 200,000 downloads)

2. The CformsII plugin suffers from a remote code execution vulnerability via unauthorized file upload. Please upgrade immediately to version 14.8 which contains a fix if you’re using this plugin. (plugin has approximately 20,000 downloads)

3. The Banner Effect Header plugin has a XSS and CSRF vulnerability . This has been fixed in version 1.2.7 so upgrade if you’re using this plugin. (plugin has approximately 20,000 downloads)

Please use the links to download newest versions and upgrade immediately if you are using any of these plugins.


Tags: , , , , , , ,
Posted in Blog Plugins & Widgets, Blog Services, Security Issues, Wordpress | No Comments »

Need A “Search and Replace” Plugin for WordPress?

Written by Bec on April 17, 2013 – 6:38 AM -

Wordress Tutorial Whether you have a sponsor that has gone belly up, has changed their links or you’ve just purchased an established blog from another webmaster you’ll want to go download this “search and replace” plugin. It works just like the find and replace feature in Microsoft Office Word, and is going to save you a ton of time trying to edit posts by hand.

It does a simple search to find specific strings in your database and replaces the string with new data. You can search in ID, post-content, GUID, title, excerpt, meta-data, comments, comment-author, comment-e-mail, comment-url, tags/categories and categories-description. It is possible to replace the user-ID in all tables and the user-login for more security in the WordPress-Application.


Tags: , , ,
Posted in Articles & Tutorials, Blog Plugins & Widgets, Wordpress | No Comments »

Configuring FeedWordPress and Importing RSS Feeds

Written by Bec on April 17, 2013 – 6:20 AM -

From Steve Burge on OSTraining.com comes this excellent tutorial on how to use the Feed WordPress Plugin to import and add sponsor hosted feeds into your blogs.

This tutorial will show you how to take an RSS feed and import it into your WordPress site. Each item on the RSS feed will become a separate WordPress post. We use this technique for a couple purposes:

1. Distributing our content to other WordPress sites.
2. Importing blogs and news on a particular topic from other sites. This way people can read them all in one place.

To accomplish this we’re going to use a free plugin called FeedWordPress.

Step 1: Go to the FeedWordPress page on WordPress.org and download the file.
Step 2: Extract (unzip) the files into a folder on your desktop or into a plugin folder you’ve created for WordPress on your hard drive. The extracted folder will be called, unsurprisingly, “feedwordpress”
Step 3: Login to your site’s server files via FTP and navigate to /wp-content/plugins/.
Step 4: Upload the “feedwordpress” folder to /wp-content/plugins/.
Step 5: Go to wp-admin >> Plugins and click “Activate” under “FeedWordPress”.
Step 6: Once you’ve enabled it, you’ll see a new tab on the sidebar called “Syndication”. Click the first link called “Syndication”. You’ll see a screen like below:
Step 7: Enter your RSS feed into the box called “Add new source” and click “Syndicate”
Step 8: FeedWordPress will check the feed and if it’s valid, you can click “Use this Feed” to import the posts.

settings

Now that you’re set up, there are two ways to import feeds:

Manually: If you’d like to manually import feeds, go to the “Syndication” link, check the feeds and click “Update Checked”.
Automatically: If you’d like to auto-import feeds, go to the “Feed and Updates” link and FeedWordPress will give you instructions on how to set-up a cron job that will check for feed posts for you.


Tags: , , , ,
Posted in Articles & Tutorials, Blog Plugins & Widgets, Wordpress | No Comments »

Multiple WP Blog Installations Can Now Be Managed From One Dashboard

Written by Bec on January 14, 2011 – 8:00 AM -

When I get pulled into discussions for ideas about how to deal with some blog issue I usually end up doing more research, and inevitably, find new products or sites that may provide a better solution to a problem. Such is the case with the multiple WordPress blog management options that are being discussed in a thread on GayWideWebmasters.

Blogs Organizer was, and still is, a great way to manage a large blog empire. It can handle new blogs built within the program as well as “remote blogs” ie:… your wordpress blogs.

But for many of us, the price tag is a tad out of reach, the program is too complex, or, like ponyboy, you just want to hang out with the WordPress dashboard because it’s familiar. You’d think that by now, someone would have put together a plugin that lets us manage a large volume of blogs from one admin panel. Plugins have been, and continue to be, one of the best things to come from the whole WordPress Open Source phenomenon. Well the wait is over! The folks at Kish Press actually heard all of those voices clamoring for a multiple blog management solution, and have developed a plugin called Kish Multi Pro.

Simply install the Kish Multi Pro Plugin on to any ONE of your WordPress blogs and then configure it to manage all of your blogs by entering the blog urls and the admin login details and you are in full control of all your blogs. Yes, you read that right … You can now manage multiple blogs that use WordPress or WordPress MU from one administration panel! The advantage of this plugin is that you can switch between your blogs with just one click on a single page without a page reload. It does not matter if your blogs are hosted on different servers or on different domains.

You can write new posts, edit existing posts, upload images for all posts, moderate comments and use feed and search features for reading and/or blogging with in realtime. Kish Multi Pro lets you concentrate on your post creations by allowing you to be more efficient and focused. Check out the video and all of the other features this plugin offers on the KishMultiPro website. For $49.95 it sure looks like it’ll make your multiple blog management a LOT easier.


Tags: , , , , , ,
Posted in Blog Plugins & Widgets, Blog Program Tools, Blog Services, From the Forums, Wordpress | No Comments »

Pretty Link WordPress Plugin

Written by Bec on October 4, 2010 – 8:00 AM -

Now you can easily cloak, track and share any URL on the Internet from your WordPress website. Unlike other link shrinking services like tinyurl, budurl, and bit.ly, this plugin allows you to create shortlinks coming from your own domain! Pretty Link Pro tracks each hit on your URL and provides a full, detailed report of where the hit came from, the browser, operating system and host. Pretty Link Pro is a dynamite plugin, created by Blair Williams, for people who want to cloak their affiliate links, track clicks from emails, increase the reach of their website by spreading their links via Twitter, on forums or with comments on other blogs.

This is just a few of the features of Pretty Link Pro:

  • Gives you the ability to create clean, simple URLs on your website that redirect to any other URL
  • Generates random 2-3 character slugs for your URL or allows you to name a custom slug for your URL
  • Tracks the Number of Hits per link
  • Tracks the Number of Unique Hits per link
  • Provides a reporting interface where you can see a configurable chart of clicks per day. This report can be filtered by the specific link clicked, date range, and/or unique clicks.
  • View click details including ip address, remote host, browser (including browser version), operating system, and referring site
  • Download hit details in CSV format
  • Great things you can do with Pretty Link
    •Clean up / mask affiliate links or merchant shopping cart links
    •Track the effectiveness of email campaigns by embedding Pretty Links in your emails
    •See how many times an email is opened by creating a “Tracking Pixel” Pretty Link and embedding it in the email
    •Kickstart and Fuel the SEO on your site by posting Pretty Links from your site on Digg, Twitter, Facebook, other blogs and everywhere else on the Internet.
    •Create Pretty Links for private special offers (to your email list) using a randomized slug to prevent the URL from being “guessed”
    •Write custom scripts in PHP, Ruby on Rails, ASP or anything else that accept parameters and use Pretty Link to make their URLs “pretty” and forward on the parameters
    •Setup pretty links for your zip, pdf & binary files and track how many times they are downloaded
    •Use to track results of your PPC campaigns by setting your ads to go to Pretty Links
    •Track Everything!

    I know I’ll be adding this to one of my affiliate blogs and testing it out asap!

    Shrink, Track, Share, Control ... Dominate

    Note from the developer, Blair Williams: If you have the free version of Pretty Link, please be aware that it can no longer cloak and track links, as WordPress has decided to disallow link cloaking in any plugin offered free via wordpress.org. I had to create a Pretty Link Lite that doesn’t include cloaking and a few other options. You can, however, regain all of the features outlined (in this post) with Pretty Link Pro.


    Tags: , , , , ,
    Posted in Blog Plugins & Widgets, Blog Program Tools, Blog Traffic, Wordpress | No Comments »

    All In One Video Pack Plugin for WordPress

    Written by Bec on June 26, 2009 – 12:58 PM -

    Just about every sponsor/site post I do lately contains a video, so it’s no surprise that I take an immediate interest in new video plugins. From Kaltura.org, an outsourcing video community, comes this new video plugin for WordPress: All In One Video Pack. This isn’t just another video embed tool – as it supposedly includes every functionality you might need for video and rich-media, including the ability to upload/ record/import videos directly to your post, edit and remix content with an online video editor, enable video responses, manage and track your video content, create playlists and much more…  And Kaltura covers all hosting and streaming costs for FREE up to 10GB.

    All in One Video Pack Plugin Highlights:

    Upload, record from webcam and import all rich-media directly to your blog post;

    Edit and remix videos using Kaltura’s online full-featured video editor;

    Easily import all rich media (video, audio, pictures…) from other sites and social networks, such as MySpace, Flickr, CCMixter, Jamendo, New York Public Library, any URL on the web etc.;

    Allow readers and subscribers to add video and audio comments, and to participate in collaborative videos;

    Manage and track interactive videos through the management console;

    Sidebar widget displaying thumbnails of recent videos and video comments

    Complete administrative capabilities. You decide who can add and edit each video;

    Supports more than 150 video, audio and image file formats and codecs

    Choose your preferred video player style for each player you embed

    Custom sizing of the video player

    Update thumbnail of video by selecting frame from video

    Advanced sharing options for videos

    Sidebar widget showing all recent videos posted and video comments.

    Easy installation that takes just 4 steps and a few minutes.

    Widescreen support – you can now upload widescreen videos into a 16:9 player

    New cool video player designs to choose from

    Choose between uploading a single media file or creating a mix with more than one file

    Bug fixing and maintenance

    You can showcase your blog,  and see examples and pictures of the plugin and get support at their forum: All In One Video Pack Forum

    Download the Plugin, or just hit the Add New under Plugins and have WordPress install it for you.


    Tags: , , , , , , , , , , , , , , ,
    Posted in Blog Plugins & Widgets | No Comments »

    WordPress Link Directory Plugin

    Written by Bec on December 17, 2008 – 8:00 AM -

    As often happens, I was looking for something else entirely when I came across a relatively new plugin for WordPress (released Oct. 2008) … a LINK DIRECTORY PLUGIN! I kid you not! I have so been hoping someone would code a decent directory plugin and it looks like my prayers have finally been answered.

    WordPress Link Directory is a link directory plugin from Sean Bluestone, and made for WordPress. It allows you to create a directory of links and you can even allow other webmasters to add their link to your site. The plugin can check for reciprocal links and even check the Pagerank of the other site. The WordPress directory plugin will then accept or refuse the link based on criteria you specify.

    The main features are:

    • Automatically checks for reciprocal links on pages specified by Pagerank.
    • Displays the Pagerank of all sites in the directory.
    • Option to display more detailed information on each link.
    • Available in several languages.
    • Option to notify the admin when a new link is submitted.
    • Integrates seemlessly with WordPress and adopts whichever theme you’re using.

    You can view a DEMO here, and DOWNLOAD the directory plugin here. Sean also offers a pro version with additional features, but requires you to fill out a short survery that he gets a little commission off of before unlocking the pro version for a free download. Visit Sean Bluestone’s site for more information on the pro version.


    Tags: , , ,
    Posted in Blog Plugins & Widgets | No Comments »

    WordPress Plugin Compatability Lists

    Written by Bec on August 5, 2008 – 11:11 AM -

    If you’re having problems trying to determine which plugins are compatible with whatever version of WordPress you’re currently using, this Plugin Compatability page should help eliminate some of the guess work.


    Tags: , ,
    Posted in Blog Plugins & Widgets, Wordpress | Comments Off on WordPress Plugin Compatability Lists
    RSS