Category Archives: Internet

CSRF Attack on WordPress

February 13, 2008 – 11:47 am

Someone named Ferruh has a proof-of-concept cross-site request forgery (CSRF) attack against WordPress (HT: DK at BlogSecurity). I’ve tried it out successfully on my own version of WordPress 2.3.3.
The scenario is like this: you go to leave a comment on someone’s site, and surreptitiously that (evil) site tricks you into changing your WordPress admin password [...]

By Austin Matzko | Also posted in Pressed Words, WordPress | Please write a comment

New WordPress Plugin: Remember Attachment Link Preferences

October 30, 2007 – 1:01 am
I wrote this plugin to deal with a common complaint from my clients: when uploading pictures in WordPress and sending them to the editor, one has to repeatedly re-select how the image should appear. In the case of the screenshot below, I checked “Show: Full size” and “Link to: Page.” This can get [...]
By filosofo | Also posted in Attachments, plugin, WordPress | 3 comments

Filosofo’s WordPress Gravatar Plugin

October 23, 2007 – 12:50 pm

Automattic, the company behind WordPress, recently acquired Gravatar. In case you don’t know, gravatars—or “globally recognized avatars”—are images that you can associate with an email address, so a picture of your choice can appear alongside your comments on many others’ blogs.
Gravatar already provides a simple WordPress plugin, but it suffers from a common [...]

By filosofo | Also posted in gravatars, plugins, WordPress | 33 comments

Internet Explorer 7 Float Bug

July 25, 2007 – 12:49 am
Today while developing a WordPress theme for a client, I ran into a vexing Internet Explorer 7 bug. Anyone who’s done any website design is familiar with Internet Explorer 6 (or earlier) wreaking havoc with standards-compliant work that looks good in, say, Firefox. But thankfully IE 7 has for the most part been [...]
By filosofo | Also posted in Computers, Firefox, Internet Explorer 7, Web development | 1 comment

A Plugin for WordPress 2.3: Include Categories in the Tag Cloud

June 16, 2007 – 5:34 pm
I’m running the cutting-edge development version of the WordPress blogging platform (known as “trunk” to WordPress geeks). So I’m enjoying some of the features that will appear in the next version of WordPress, 2.3, which will probably be released towards the end of the summer. The biggest new feature for 2.3 so far is built-in [...]
By filosofo | Also posted in Categories, Tags, WordPress | 7 comments

WordPress 2.2: Three Things Developers Will Like

May 16, 2007 – 2:10 am
In the newly released WordPress 2.2 the built-in widget support is likely to get most of the attention. Here are three things you as a WordPress plugin or theme developer might also find useful. You can now set your site’s “home” and “siteurl” values in the wp-config.php file Say you have a production site and a [...]
By filosofo | Also posted in WordPress | 37 comments