Today, we have a moderately critical SQL Injection Vulnerability that was discovered by HouSSaMix in the “WP-Cal” plugin version 0.x for WordPress. According to the Secunia Advisory:
Input passed to the “id” parameter in functions/editevent.php is not properly sanitised before being used in SQL queries. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code.
Users with a malicious intent can conduct SQL injection attacks which may result in the retrieval of usernames, password hashes, and email addresses for users and administrators. However, the malicious user must have knowledge of the database table prefix.
So far, version 0.3 has been confirmed as having this vulnerability with other versions possibly being affected. Secunia states that the solution involves editing the source code to ensure that input is properly sanitised.
Click here to read the original advisory which provides an example of the exploit as well as the vulnerable code.
It is strongly advised […]
Original post by Jeffro2pt0
Technorati Tags: blog
The Life Cycle of a Blog Post, From Servers to Spiders to Suits — to You:
You compose a new post. You click Publish and lean back to admire your work. Imperceptibly and all but instantaneously, your post slips into a vast and recursive network of software agents, where it is crawled, indexed, mined, scraped, republished, and propagated throughout the Web. Within minutes, if you’ve written about a timely and noteworthy topic, a small army of bots will get the word out to anyone remotely interested, from fellow bloggers to corporate marketers.
I could not have described this post (on Wired) better. It is a flash animation that follows a blog post as it makes its way through the Interweb. If you ever wondered how all these disparate peices fit into the blogosphere, this is the food for thought.
Technorati Tags: blog, advertising
Original post by Mark Ghosh
Technorati Tags: blog, blogger, advertising
One Column Themes
Stripped
Stripped is a minimalist one column theme with the text made up of red and black color. The theme contains no sidebars and the navigation is at the bottom of the page.
Demo | Release Page| Download
Two Column Themes
Forte Magazine Style
Forte is a two column theme which comes built in with lots of features. It comes with ample amount of space to do banner advertisements and tabbed content in the sidebar.
The theme is widget ready and comes with a extended sidebar in the footer.
Demo | Release Page | Download
Three Column Themes
Ansi Y
Ansi Y is a theme which makes use of black, gray, brown and white colors. The theme is widget ready and makes use of two sidebars.
The theme looks simple and content area is big enough to allow you addition of medium width images.
Demo | Release Page | Download
Artic
A widget ready theme with one sidebar on each side of […]
Original post by Keith Dsouza
Technorati Tags: blog
WordCamp is a conference type of event that focuses squarely on everything WordPress. Everyone from casual end users all the way up to core developers show up to these events. These events are usually highlighted by speeches or keynotes by various people. For example, WordCamp Dallas will feature the following speakers
Matt Mullenweg on WordPress 2.5 and Beyond
45 Ways To Power Up Your Blog by John Pozadzides
How to prevent, detect and stop content theft by Jonathan Bailey
Cali Lewis and Neal Campbell
C’mon, Let’s Talk! Building influence and interaction with blogging by Liz Strauss
WordPress Power Tips by Lorelle Van Fossen
SEO For Bloggers by Chris Smith
Aaron Brazell
A panel of people to discuss the business of blogging: Mark Ghosh, Liz Strauss, and Aaron Brazell
Testing With WordPress by Jacob Santos
WordCamp is a spin off from the popular BarCamp which was a spin off of FooCamp. Each one of these events are smaller in nature when compared […]
Original post by Jeffro2pt0
Technorati Tags: blog, blogger, blogging
List of WordPress tutorials: A bunch of WordPress tutorials on various topics in the form of screencasts. Topics include various tasks such as installation on a variety of platforms and tasks inside the WordPress admin.
Technorati Tags: blog, blogging, feed, news, google
Original post by Mark Ghosh
Technorati Tags: blog, blogging, feed, news, google
Two Column Themes
Sonette
Sonette is a two column theme which makes good use of the green color. The sidebar has enough space to add 125 x 125 banners. The date and comments meta information is displayed to the right of the post.
The theme is widget ready.
Demo | Release Page | Download
Gradient Brown Beauty
This is a widget ready two column theme which makes use of a mix of brown colors. There are ample amounts of advertising space and you can easily add 125 x 125 and 300 x 300 banners.
This theme also supports tabbed content in the sidebar. This theme is widget ready.
Demo | Release Page | Download
Advancetech
Advacetech is a two column theme which makes use of orange color, the header looks quite good and advanced.
The content area is big enough to hold large width images. This theme is widget ready.
Demo | Release Page | Download
Hope
Hope is a two column WordPress […]
Original post by Keith Dsouza
Technorati Tags: blog, advertising
We are very excited to announce that Web Designer Wall got into the finalist of the Eighth Annual Weblog Awards, also known as the “Bloggie” awards. We are nominated for the Best-Designed Weblog award, along with the other popular nominees: Design Sponge, Gizmodo, Engadget, and Dooce. If you have a minute, please head over to the Bloggies site and vote for us. Big thanks to everyone who has nominated or voted for us. Thank you!
Please note: voting will close at 10:00 PM EST on Thursday, January 31.
Technorati Tags: blog
Original post by Nick La
Technorati Tags: blog
I recently wrote an article that explained how to configure permalinks in WordPress. In that article, I go over a few different reasons why you would want to use pretty permalinks instead of using the default linking structure. Well, Ted Clayton published an article that took the other side of the permalinks argument. Ted goes into detail on why and how WordPress uses the default linking structure and explains that it’s not as bad as some would make you think. It’s an excellent read and I thank Ted for bringing up the other side of the equation.
There is, in truth, a maze of trade-offs & counterpoints involved in selecting a strategy & tactics for making nicer, people-friendly URLs, for each & every website. Yes, many typical blog-sites will be able to adopt typical, easily-identified Permalink configurations. In the end, though, only you can do it right for […]
Original post by Jeffro2pt0
Technorati Tags: blog
WPTEX: Turn you wordpress blog into a pdf ebook using LaTeX Now I wrote my Masters Thesis in Microsoft Word and I would rather pull my hair out one at a time than do that again. However, I bring that up because I jealously watched as the other cohorts of my MS class put together their thesis with LaTeX with relative ease and perfect formatting. WPTeX will let you publish your blog as a PDF eBook using LaTeX and includes a lot of very cool features such as auto indexing and TOC generation. It is released under the GPL I will have to show this to my blogging dad who will love to have an eBook made out of his blog on research of health and wellness!
Technorati Tags: blog, feed, news, google
Original post by Mark Ghosh
Technorati Tags: blog, blogging, feed, news, google
Calais which is a metadata generation web service that is powered by Reuters is offering up a $5,000.00 bounty to anyone who can develop a plugin that meets the following criteria.
Tag auto suggestion: Using the content of the blog entry the plugin will provide a list of suggested semantic tags. For example, if the post talks about company “a” buying company “b” the plugin would suggest “Acquisition”, “Company A” and “Company B” as potential tags
Semantic cloud: We all love tag clouds and we’d like to take it a step further. The plugin should support the generation of a configurable semantic tag cloud of entities and facts derived from the blog’s content
GUID Incorporation: The Calais web service returns a Globally Unique Identifier (GUID) for each document submitted. The plugin should modify the RSS feed for the site to incorporate the GUID in a TBD location.
The first and second criteria I believe […]
Original post by Jeffro2pt0
Technorati Tags: blog, rss, feed
