How to avoid Wordpress Remote SQL Injection

Wordpress Remote SQL Injection could be a pre-disaster for your Wordpress blog, it has been discovered a SQL Injection vulnerability that allows an attacker to retrieve remotely any user credentials from a vulnerable site, this bug is caused because of early database escaping and the lack of validation in query string like parameters.
Wordpress Remote SQL Injection most likely not a destructive job for your Wordpress blog, they just inject a redirect or iframe to their own page/website. This is a blackhat SEO injection technique that could hurt your website SEO campaign.

To prepare yourself, read some tips below:
- Always check your AWSTATS to determine your suspicious visitor activity.
- Backup your Wordpress files and database weekly incase you need to restore it if needed
- Always update your Wordpress instalation to the latest stable version. On the main dashboard, you’ll always see new release information. [Read more]

Popularity: 11%

Wordpress Plugin for Auto Nofollow and Opened in New Window

Couple weeks ago I wrote about how to make your Paid Post safe for Google, and for this purpose I found a great Wordpress plugin to do this automatically. This Wordpress plugin will automatically make any link on your post to be rel=nofollow and target=_blank (will make it opened in a new window)
This could save your time if you have a large post on your Wordpress blog and make your selling link list more safe on Google’s eye. Great for any SEO campaign!

You can download the plugin here and read the manual instructions, it’s not too difficult anyway. [Read more]

Popularity: 19%

Tips to Maximize CTR of Chitika RPU on Wordpress

This is a small tips to maximize your CTR (Click-through rate) of your Chitika RPU (Related Products Unit). Chitika RPU system don’t have the section targeting facilities like what Adsense does, and sometimes it will make your Chitika ads not relevant to your website content. And for Wordpress user, this could be done by automatically fill the chitika keywords with your post title.

It’s simple, just insert the Wordpress post title code : <?php echo the_title(); ?> to your Chitika ads code.
Here’s the sample code:

<script type="text/javascript"><!–
ch_client = "chitika_client";
ch_type = "rpu";
ch_noprice = "1";
ch_shufflequeries = 1;
ch_width = 728;
ch_height = 90;
ch_non_contextual = 1;
ch_default_category = "93767";
var ch_queries = new Array( );
var ch_queries = new Array( "<?php echo the_title(); ?>" );
var ch_selected=Math.floor((Math.random()*ch_queries.length));
if ( ch_selected < ch_queries.length ) {
ch_query = ch_queries[ch_selected];
}
//–></script>
<script src="http://scripts.chitika.net/eminimalls/mm.js" type="text/javascript">
</script>

Hope it works to maximize your Chitika RPU earning.

Popularity: 20%

Gallery Navigation Plugin

Gallery Navigation Plugin is a simple Wordpress 2.5 plugin that allows you to quickly add page navigation to your wordpress 2.5 gallery.

Installation

1. Upload `galnav.php` to the `/wp-content/plugins/` directory
2. Activate the plugin through the ‘Plugins’ menu in WordPress
3. Place ‘<?php isgal($post->ID); ?>` before the contenty loop (the_content();)
in your post templates
Example:
<?php the_content(’<p class=”serif”>Read the rest of this entry »</p>’); ?>

4. Don’t forget to fill the Custom Fields
Key: isgallery
Value: true

The demo page can be seen here

Download Gallery Navigation Plugin

Give your feedback/comments, so we could develop this plugin more for you

Popularity: 29%

Make Directory on Wordpress

Done! Now my web tech directory is up. I will put some website link there that related to website development and technology sources. Off course you also can add your own website there, don’t forget the reciprocal link

This directory was build with the help of WP Link Directory plugin, that only works for Wordpress 2.05 or above. Also you need GD enabled in order to get the Captcha working for the verification.
Some features that listed for this plugin are:
1. Creation of link categories, sub-categories with descriptions
You can create any number of categories with description in the directory, including sub-categories.
2. Quick add of link from admin backend and visitor front-end
Your visitor will be able to click on this link “Insert your link here”, it will pop out a form below for submission. Clean and simple.
3. Search engine for admin to find link
You can search for a particular link based on its title, domain name, email address, etc, thus never have to worry about can’t find a link that you want to delete or edit.
4. Easy integration to your Wordpress theme
Now, this is one of the highlights of the plugin. You don’t have to worry about the template because this directory will use your Wordpress theme. You can easily modify styling using the external style sheet provided in the directory folder.
5. Backlink cleansing for checking reciprocal links
What it is, is enabling you to run a link cleansing process that checks each reciprocal links and see if the site is linking back to you as it promised. A list of broken links will be listed and you can either remove them or do something else.
6. Non-reciprocal link allowance
Another great great great thing of the script. There’s many time when we want to allow a link to have non-reciprocal link, eg. you might just start setting up the directory and you’d need to stuff some default links in it. Thus, you can simply check the tickbox of “Allow non reciprocal”, and then the link will not be checked when performing link cleansing check.
7. Email notification templates
Sure you want to be able to have a good email template system that manage communication for submitters and webmaster. Thus, this script allows you to set a custom email template system for link notification and approval.
8. SEO friendly url rewrite
Wow! What more do you want? SEO friendly URL rewrite feature, that re-writes all url to search engine friendly format. Note that this requires you to be running on an apache though.

Cool enough?? Go download the WP Link Directory plugin here

After the installation, you will need to modify some layout code to fit your Wordpress theme layout. Good luck!

Popularity: 20%

How to Install Wordpress Plugin Without Upload It

If you found that installing wordpress plugin is difficult and time consuming things because of the big files to upload to your host, you can try this trick. You can install the Wordpress plugin without upload. But first, you have to make sure that the plugin that you want to install is listed on Wordpress Plugin Directory and you are using Wordpress v2.5 and/or above.

Next step is make a new file on your wp-content/plugins directory, just make any name for it.
Then edit the file and fill with this:
1. /*
2. Plugin Name: name_of_the_plugin_you_want_to_install
3. Plugin URI: the_plugin_URL_at_WP_Plugin_Directory
4. Description: plugin_descriptions
5. Version: 0.0001
6. */

Here’s the sample:
1. /*
2. Plugin Name: Get Recent Comments
3. Plugin URI: http://wordpress.org/extend/plugins/get-recent-comments/
4. Description: This plugin shows excerpts of the latest comments and/or trackbacks in your sidebar. You have comprehensive control about their appearance.
5. Version: 2.0.2
6. */

Then login to your Wordpress dashboard and go to Plugins tab. If your steps above was correct, it will shows this message under the related plugins:
“There is a new version of plugin_name available. Download the new version here or upgrade automatically.”
Then click the “upgrade automatically” button. Your plugin will be installed on your Wordpress blog

Credits to Cosaaranda.com

Popularity: 8%

Test the limit post

I just want to test the limit post plugin. An error occured when I use this plugin to limit the character listed on some featured category here.

Let’s see how it works, I’ll try to make some modification on the plugin and templates. The error report is : [Read more]

Popularity: 12%