WooThemes has recently released version 2.0 of their popular eCommerce plugin/toolkit called WooCommerce. The latest version, code named Daring Dassie is a huge step up from the previous version because not only does it include a set of new and improved features but most of its code has been rewritten.

For those who aren’t familiar with WooCommerce, it is a WordPress plugin that adds features like payment gateways and shipping methods transforming any WordPress-powered website into a full-fledged eCommerce store. Below is a video preview of WooCommerce 2.0.

Here are some of the new and improved features included in WooCommerce 2.0

• Better stock handling
• Easier email template editing
• Improved tax options and new input panel
• Multi download support
• New order screens
• New product panel
• Improved pagination & sorting
• Star ratings in archives
• Realtime checkout validation
• Quicklinks to cart when adding products via AJAX

If you haven’t tried or purchased WooCommerce yet and still have second thoughts whether or not to get it, here are some facts that might convince you: it is used by a lot of WordPress-powered websites, it is audited and approved by security service company Sucuri, it is listed in the official WordPress Plugin repository and last but not least, it’s FREE. It works with almost any WordPress theme but if non-WooThemes themes might require some editing to make it work nicely. If you’re an WooThemes customer, you’ll also be pleased to know that all WooThemes themes and extensions work with WooCommerce 2.0.

For those of you who are already running an older version of WooCommerce, make sure to read the instructions/documentation before upgrading to the latest version to avoid any problems or issues.

The latest version of WooCommerce is now available via the official WordPress Plugin repository. As of this writing, the latest version available is 2.0.2 which includes several bug fixes.

Some of the most popular or more commonly used WordPress plugins in the community are plugins created by Lester Chan. About a two weeks ago, he released an update for the WP-Email, WP-Polls, WP-PostRatings and WP-PostViews plugins that included some changes like assigning the /wp-admin/admin-ajax.php file to handle AJAX requests.

Due to those changes some users are experiencing AJAX-related problems. Below are the two most common issues:

• “-1″ or “Failed To Verify Referrer”
• Password Protected /wp-admin/ Will Not Work

If you are using of the plugins mentioned earlier and are experiencing any AJAX-related issues like the ones listed above, please check out Lester Chan’s most recent blog post for further details regarding the issues and how to fix them.

In the past I used several plugins like Cookies for Comments and Simple Trackback Validation along side Akismet to fight comment and tracback/pingback spam. Nowadays I only use Akismet because it does an excellent job of fighting spam all by itself and having less plugins lessens the load on the server.

The WordPress team just released an updated version of Akismet – version 2.5.6 which is a maintenance release and contains several bugfixes and improvements.

Akismet 2.5.6 Bugfixes and improvements:

• Prevent retry scheduling problems on sites where wp_cron is misbehaving
• Preload mshot previews
• Modernize the widget code
• Fix a bug where comments were not held for moderation during an error condition
• Improve the UX and display when comments are temporarily held due to an error
• Make the Check For Spam button force a retry when comments are held due to an error
• Handle errors caused by an invalid key
• Don’t retry comments that are too old
• Improve error messages when verifying an API key

To upgrade Akismet to the latest version, you can do it automatically via the admin dashboard or download the zip file from the official WordPress plugin repository and install the update manually via FTP. Take note that Akismet 2.5.6 requires WordPress 3.0+. If you still don’t have Akismet and would like to use/try it out, you can get your Akismet API key from this link. Akismet is FREE for personal blogs and websites.

I just updated Akismet to the latest version and it works fine. The upgrade process went smoothly and no issues or conflicts with other plugins.

Anyone else use Akismet? If not, what other plugin/s do you use to fight off spam on your blog or website? Please share your thoughts.

WooThemes, one of the well-known sources for premium WordPress themes just recently released a brand new product called WooDojo. This product is a WordPress plugin that works as a “functionality suite” that adds additional functionalities to any WordPress theme on any WordPress installation.

WooDojo features:

• WooSidebars – Specify custom widgetized areas for any posts, pages, archives etc. on your site. Probably justifies a download of WooDojo by itself.
• Tabs – The popular, elegant tabber widget in any widgetized space.
• Shortlinks – Add your URL shortener of choice & easily display shortened URL’s for all posts & pages.
• Custom Code – Easily add custom CSS to your site.
• Login Branding – Replace the default WordPress branding on the login screen with your own brand identity.
• Social Widgets – A collection of widgets to connect to your online social profiles.

Screenshots:
Tabs

Custom Code

Widgets

Shortlinks

Login Branding

WooDojo is an awesome plugin because not only does it add functionalities to any existing WordPress theme but it also eliminates the need for using separate/multiple plugins for those functionalities. The features listed above are only the ones available for version 1 of the plugin but WooThemes ninjas are already working on new features that will be made available in the coming weeks.

I’ve already downloaded a copy of WooDojo but yet have to try it but I’m sure it’s gonna be a very useful tool for any WordPress user. The timing of the release of WooDojo is just right because I’m planning on doing a theme reboot and I hope to be able to use and integrate this plugin into my WordPress installation.

Head over to the official WooDojo page to download a copy of this awesome plugin.

What do you think of WooTheme’s latest product – WooDojo? What other features would you like to see added in future updates of the plugin? Please share your thoughts.

Web security company Sucuri recently released a security alert concerning a WordPress plugin called Deans FCKEditor with PWWANGS Code for WordPress. The said plugin contains a very serious vulnerability that allowed hackers to gain full control – modify, upload and execute files on any website running WordPress.

With the plugin installed on a certain website, a hacker or malicious person can gain access to the web server via HTTP through a backdoor in the plugin’s directory and use a graphic user interface (GUI) to wreck havoc. The Deans FCKEditor with PWWANGS Code for WordPress plugin has already been removed from the official WordPress Plugin repository but unfortunately, a lot of users are not aware of this security vulnerability.

If you happen to have Deans FCKEditor with PWWANGS Code for WordPress plugin installed on your website, you need to completely REMOVE it from your web server (delete plugin folder and files). Deactivating the plugin is not enough because as long as the vulnerable files exist on your web server, hackers and malicious persons are still capable of uploading files to your web server.

NOTE: The plugin involved is different from these plugins – Dean’s FCKEditor For WordPress and Dean’s FCKEditor For WordPress (same name but different plugins).

Please help spread the word so more WordPress users will be aware of this vulnerability.