« Posts under WordPress

Alleged XSS-Vulnerability in WordPress a Fake

October 27, 2012 / posted in cross-site scripting, security, Uncategorized, vulnerability, WordPress / 2 Comments

On Wednesday, October 24th 2012, this report was sent to the BugTraq-Mailinglist, describing an alleged XSS-vulnerability in WordPress, presumably in all versions of the wide-spread blogging software. What’s the fuss about? As I run this blog using WordPress myself, I am of course very interested in keeping my blog secure, so I took my time to [...]

WordPress MU and memcached

March 21, 2009 / posted in memcached, update, WordPress, WordPress MU, WP Object Cache / 5 Comments

Yesterday, I finally upgraded my WordPress MU installation from 2.6.something to 2.7 – which went surprisingly smooth, even the plugins seem to work. In addition to the upgrade, I added memcached-support, but was a bit disappointed because all I could find was the link to the svn-repository of the object-cache.php file. No manuals, no installation [...]

CodeHighlighter for WordPress MU (2)

May 5, 2008 / posted in CodeHighlighter, GeSHi, Patch, Plugins, WordPress, WordPress MU / No Comments

With yesterday’s post, I noticed that the codehighlighter-plugin i am using was doubly converting certain special characters, rendering the source-code quite useless. This is an incompatibility of the plugin with WordPress MU. The Plugin uses GeSHi, the “Generic Syntax Highlighter”, and that again is converting incoming text into html-entities for security reasons. For just the [...]

Follow up: lighttpd rewrite-rules for WordPress MU

April 10, 2008 / posted in lighttpd, rewrite-rules, WordPress, WordPress MU / 2 Comments

While looking closer at those rules I posted earlier I noticed an important but missing rule, which would prevent e.g. the preview-functionality of the post-/page-editor. The following rule enables this: 1 "^/(.*/)??(.*=.*)$" => "index.php?$2" “^/(.*/)??(.*=.*)$” => “index.php?$2″ The whole ruleset would thus now look like this: 1 2 3 4 5 6 7 8 9 [...]

lighttpd rewrite-rules for WordPress MU

April 10, 2008 / posted in lighttpd, rewrite-rules, WordPress, WordPress MU / 5 Comments

Today, someone in the channel #wordpress on freenode (see WordPress.org’s IRC-page for more information about the channel) asked whether WordPress would work with lighttpd. As I am running such an installation myself, I took it up to help him, looking for rewrite-rules on the net, since my own were only for WordPress MU. I was [...]

CodeHighlighter for WordPress MU

March 14, 2008 / posted in CodeHighlighter, Opensource, Plugins, programming, WordPress, WordPress MU / No Comments

As I wrote the previous posting, and tried to apply the syntax-highlighting provided be the CodeHighlighter-plugin by Wongoo Lee to the code-snippets, I was suprised, because it did not work. All information I found through google and Wongoo Lee’s website seemed as if it should have worked, though it did not. So I asked a few people, but they did not know anything either.