JaypeeOnline // Blogging News & Reviews

WordPress 2.5 RC 2 + Screencast

It seems that the long wait for WordPress 2.5 is still not yet over. Inspite of the delay, WordPress users should be happy to know about the new features that it will include once it gets released. For now, you can try it out for yourself if you download the WordPress 2.5 Release Candidate 2 which was released earlier today.

Below is a screencast made by Matt Mullenweg, showing off the new dashboard and …

Is Your Blog Ready For WordPress 2.5?

Last March 10th, I was busy migrating JaypeeOnline to MediaTemple and at the same time, I was waiting for WordPress 2.5 to be released. I was hoping it would be made available just in time for me to install and use it when I move to my new web host. Later it was announced that the scheduled release was postponed. I wasn’t disappointed because I know that the developers wanted to make sure that …

WordPress Footed Bistro Mug

First was the WordPress T-Shirt. After that came the WordPress Hoodie. This time around, the latest product from the WordPress Shop is the WordPress Footed Bistro Mug which you can get for $10 (not-inclusive of shipping or tax).

I tried looking for the exact measurements or dimensions of the mug, but I couldn’t find it anywhere …

WordPress 2.3.3

If you haven’t read or seen the announcement on your WP Dashboard, several hours ago the WordPress Development team released WordPress 2.3.3 as an urgent security release. They found a flaw in the way XML-RPC was implemented and that it allowed a valid user to edit posts of a different user on that blog via a well designed request. Aside from this issue, WP 2.3.3 also these minor bugs:

• gettext fails to determine byteorder on …
  
  Continue reading...

WordPress Reverting Default Theme Fix

Recently, I talked about how a member of the WP Pinoys forum encountered a problem using Extended Live Archives on WP 2.3. This time, another member complained about a WordPress blog that keeps on reverting to the default theme. When I checked the WP support forums, it seems that this is an issue that’s been bothering many WordPress users.

Why does this happen? …

Permalinks Migration Plugin Vulnerability

EDIT: Thank you Connie for bringing up the issue about the PacketStorm advisory regarding this issue. I’ve added a link to that advisory at the bottom of this post.

Over at Weblog Tools Collection, an article was posted earlier today regarding a vulnerability in version 1.0 of the Deans Permalinks Migration Plugin. The said vulnerability involves XSRF or Cross-site request forgery and allow the attacker to steal valid credentials.

The person …

WordPress Hoodie

This is the time of year when the weather gets cold and what better way to keep warm than with a WordPress hoodie! I’m sure WordPress fans and users would love to get their hands on this new product.

WordPress 2.3.2

A few hours ago, the WordPress development team decided to release WordPress 2.3.2 which is an urgent security release. This version fixes two particular bugs the first one being the bug that can expose your draft posts and the second is it suppresses some of the database error message which can give away vital information about your database. It also prevents informations leaks during XML-RPC and APP implementations.

Aside from the stuff mentioned above, the guys from WordPress has added something nice WordPress users. Version 2.3.2 allows the user to use a custom database error page. All you need to do is create a custom template and insert into the wp-content/db-error.php file. What does it do? Whenever WordPress has a problem connecting to the database, it will display this page instead of the default error page. Cool huh? I’m sure we’ll be seeing some creative DB error pages like the creative 404 pages we’ve seen in the past.

Another Warning To WordPress Users

Around three months ago, I posted a warning to WordPress and Joomla users about downloading themes from TemplateBrowser.com which contained hidden spam and malware links. What they did was collect public themes for WordPress and Joomla, modify it and redistribute it on their site. Well it seems that they’re not the only ones doing it because just recently another site was discovered to distributing modified WordPress.

“How To Secure WordPress”

BlogSecurity, the only organization that deals with social networking and web blog security has recently released a WordPress security whitepaper entitled “How to Secure WordPress”.

I haven’t finished reading the whole thing but I’ve already learned many things and gained more knowledge about securing WordPress installations. When I find the time, I’ll try to apply some of the things I’ve learned. One thing I’m really interested in trying out is the WPIDS plugin …

WordPress: Best Open Source Social Networking CMS

WordPress just won the Best Open Source Social Networking CMS Award in the recent 2007 Open Source CMS Awards sponsored by Packt.

Packt is pleased to reveal that WordPress is the first winner of the 2007 Open Source CMS Award, picking up the best Open Source Social Networking Content Management System. In a very close category, WordPress came out in front of Elgg and Drupal, who finished joint second.

Packt [packed], a publishing company …