Remove cronjobs from AnonymousFox malware - 🔴 FoxAuto WordPress malware

🔴 FoxAuto WordPress malware

The AnonymousFox Hack guide by Sucuri misses a huge step in cleaning a hacked WordPress website, and that step is: removing the cronjobs While removing AnonymousFox malware from a website I noticed the following cron: It downloads a script from http://hello.hahaha666.xyz/xxxd and runs it, the script is: It creates a new folder css and replaces … Read full article →

prevent xss - ⚠️ What is Cross-site scripting (XSS) and How to prevent WordPress XSS attacks

⚠️ What is Cross-site scripting (XSS) and How to prevent WordPress XSS attacks

The most regularly seen attack type is script injection (XSS attack), rogue scripts are injected into the webpage for malicious purposes. This includes redirects to third-party websites, collecting user data, downloading malware to visitors, etc. WordPress has a bunch of useful developer functions that are used to sanitize data (Validating Sanitizing and Escaping User Data) … Read full article →

sec checkpoints for wp website - 4 Security Checkpoints for your WordPress Website

4 Security Checkpoints for your WordPress Website

Security is a result of security “practices” rather than plugin “functionality”. No security plugin is perfect, but we make do, and that, like everything else in life, is what defines the outcome. Here’s a simple diagram of how an attacker tries to get inside your website. There are 4 levels that each request has to … Read full article →

How to Create a WordPress Child Theme - How to Create a WordPress Child Theme

How to Create a WordPress Child Theme

60 seconds or less, that’s all that takes to create a WordPress child theme and I highly recommend that you do it before even thinking about making any code or style modifications to your active theme. There are two files that you can use inside a child theme to overwrite parent theme’s functionality or style: … Read full article →

Reset WordPress password from the command line - Reset WordPress password from the command line

Reset WordPress password from the command line

1. log in to the MySQL: mysql -u root -p; 2. Select the database: use database_name; 3. List all users: select * from wp_users\G 4. Change the password for the user you require: UPDATE wp_users SET user_pass=MD5(‘new_password_here’) where ID=user_id_here;

woocommerce phone number verification - WooCommerce 📱 phone number verification (+381)

WooCommerce 📱 phone number verification (+381)

One of the most important checkout fields for online stores that is also prone to oversight is phone verification. Order confirmation and delivery can both be made much simpler with proper phone verification. In WooCommerce, the phone number field provides an HTML check for a straightforward number: But by ensuring that the number contains a … Read full article →

How to Show Different Themes to Logged in Users in WordPress - How to Show Different Themes to Logged-in Users in WordPress

How to Show Different Themes to Logged-in Users in WordPress

In this example, we’ll use the is_user_logged_in() to display a different theme on our website for visitors: if(is_user_logged_in()) { function wpxss_set_my_custom_theme() { //replace your theme name here return ‘your-theme-name’; } add_filter( ‘template’, ‘wpxss_set_my_custom_theme’ ); add_filter( ‘stylesheet’, ‘wpxss_set_my_custom_theme’ ); } else { // leave the default theme active for visitors } The template and stylesheet filters are responsible to select the activated … Read full article →