Reinstall WordPress Core using WP-CLI
Useful WP-CLI commands that I use when cleaning hacked WordPress websites in order to reinstall WP core, all themes, and plugins from WordPress.org
How to Rename wp-login.php
It is generally not recommended to rename the wp-login.php file in a WordPress installation as this can cause issues with the WordPress site and may make it difficult or impossible to log in to the WordPress administration panel. However, if you still want to rename the wp-login.php file, you can do so by following these … Read full article →
Use PHP Regex Replace Line-by-Line to remove Malware from large Database Dumps
When it comes to cleaning huge websites of malware, if the database is several GB in size, it becomes difficult to navigate and remove bad code. PHPMyAdmin and text editors become completely useless for databases over 2GB in size. Here’s a script I came across recently and turned to be quite helpful in removing malware … Read full article →
Publishing a WordPress site, the complete checklist (15 tips for Production)
The following checklist highlights the most important steps when publishing a WordPress webiste, that I do mysqlf and recommend to everyone else. By following this steps you will avoid common mistakes and make sure your website is ready for visitors. Tip 1. Check Website Name and Description A most common error that gets past even … Read full article →
Increase the WordPress default upload file size limit ⬆️
To check the current WordPress file upload limit, navigate to WordPress dashboard, click Media -> Add, and the upload limit will be displayed on the bottom. And the second method, edit your theme’s functions.php file and add the following
WP DEV: How to check if a WordPress Plugin is Active?
To check if a plugin is active in WordPress, you can use if ( is_plugin_active( ‘plugin-directory/plugin-file.php’ ) ) { if ( is_plugin_active( ‘akismet/akismet.php’ ) ) { // plugin is active } else { // plugin is inactive } You can also use the get_plugins() function to retrieve all the plugins installed on the site and … Read full article →
What is 💉 SQL injection and How to prevent WordPress SQLi attacks
SQL (Structured Query Language) is a language that allows code to interact with databases. Injecting SQL commands into a vulnerable user input section on your WordPress website such as a contact form or search box is considered an SQL Injection attack. Depending on the actual SQL command, this could purge the database, send the data … Read full article →
5 Easy Ways To Speed Up Your WordPress ⚡
WordPress is an awesome content management system. You can install it in one click, you can find professional-looking themes for as little as a few dollars, and you can use a wide range of plugins for added functions and features. Nonetheless, WordPress websites can become sluggish sometimes, chasing impatient visitors away. This article is going … Read full article →
Display visitor IP address without any plugin
Here is how you can create a WordPress plugin with a shortcode to display the user’s IP address: <?php /* * Plugin Name: IP * Plugin URI: https://wpxss.com/application/ip * Description: Provides a shortcode to display the user’s IP address. * Version: 1.0 * Author: Stefan Pejcic * Author URI: https://pejcic.rs */ function ip_shortcode( $atts ) … Read full article →
Purge cache from W3 Total Cache plugin using WP-CLI
Here are some useful commands to clear cache from the terminal with wpcli: cdn_purge purge URLs from CDN and Varnish flush all flushes all cache related to W3TC (Page Cache, OC, DB Cache, Minify, etc.) flush page flushes pages cache only flush posts flushes both pages & posts cache flush database flushes DB cache flush … Read full article →