On his blog Konstantin Shestopalov recently shared How to disable Cyrillic or Latin characters at checkout in Woocommerce with the following example to disable Latin characters on the checkout page: While the code does not actually disable Cyrillic characters, it simply checks if the letters are in Latin, and if not, prints an error message … Read full article →
In this post, I will discuss the most realistic phishing popup that I’ve seen in years. These popups appear only on WordPress websites that use Cloudflare and can easily be mistaken with the original Cloudflare’s “sorry you have been blocked” screen. The post is divided in two sections: Analysis of the malware and malicious code … Read full article →
In this post, I will be using 3 free tools to scan WordPress websites for vulnerabilities. NAME PLATFORM HOW TO USE LIMITS WPScan Windows & Linux terminal free plan: 25 reports daily WPSEC website online free plan: 20 scans daily Burp Suite Windows & Linux application ∞ 1. From the terminal: WPScan If you have … Read full article →
XML-RPC is a remote procedure call (RPC) protocol that uses XML to encode its calls and HTTP as a transport mechanism. It is often used by WordPress to allow remote access to the WordPress functions from external clients. Here are some examples of how XML-RPC can be used in WordPress: Enabling XML-RPC in WordPress To … Read full article →
Recently I was migrating a website from GoDaddy shared hosting using WP-CLI and noticed the PHP version in cli was outdated. Here is how to install WP-CLI and set custom PHP version for the cli. Setup WP-CLI To download WP cli: To run it use php wp-cli.phar To make it easier to call We’ll rename … Read full article →
I’ve been a WordPress user for over a decade and back at the beginning of my first WP blog (around 2010), I did a comparison between at the time most popular WordPress Caching plugins, and various caching methods: APC, XCache, and eAccelerator. Most of those plugins are long dead but some of their functions still … Read full article →
Like many other scripts, WordPress also uses PHPmailer to send transactional emails. If no email is set for sending emails, WordPress will use the default cPanel email account ([email protected]) which isn’t pretty. SMTP (Simple Mail Transfer Protocol) is an industry-standard for sending emails. Proper SMTP configuration helps increase email deliverability by using authentication. To specify … Read full article →
In short: WP_MEMORY_LIMIT is the default limit set for the front end, but it can be raised up to WP_MAX_MEMORY_LIMIT in wp-admin pages. WP_MEMORY_LIMIT WP_MEMORY_LIMIT allows you to specify the maximum amount of memory that can be consumed by PHP. This setting may be necessary in the event you receive a message such as “Allowed memory size of X … Read full article →
WordPress has many built-in functions that can help you debug. They can be activated by editing them in the wp-config.php file: 1. Enable debug mode By default Debug mode is disabled in WordPress, so you need to enable it by editing the wp-config.php file and changing the value from define( ‘WP_DEBUG’, false ); to define( … Read full article →
I got the method I’ll describe below from Krasen Slavov, who shared it on his blog wprotary.com back in December ’21, and I’ve been using it for my WordPress plugins ever since. If you require anything more complicated with eslint, stylelint, and PHP standards, I recommend using Composer + nodeJS, or looking into Gulp. Requirements … Read full article →