WordPress

WordPress is a free content management system (CMS) written in PHP and paired with a MySQL or MariaDB database. Currently, WordPress is used by more than 60 million websites.

UPDATE: In January 2021 I started another blog wp✘SS that is dedicated to troubleshooting most common WordPress problems, for more WordPress articles about please head over to wpxss.com.

www.wordpress.org

How to 🔄 re-install WordPress

Here is how to re-install WordPress in under 5 minutes! From the current WordPress installation delete everything except the wp-content folder and the wp-config.php file. Download the latest WordPress version from WordPress.org Go to your...

Remove jQuery from WordPress ✔️

To completely remove jQuery from your WordPress website add the following code in the functions.php file in your active theme folder: /** * Remove jQuery from front-end*/ function my_init() { if (!is_admin()) { wp_deregister_script('jquery');...

yet another variation of the CMSmap – WordPress Shell

Noticed a file named wp-logn.php file in the plugins directory that was trying to pass as a WordPress plugin, with the following code: <?php $password='will'; $shellname='will'; $myurl=null; error_reporting(0); @set_time_limit(0); function...

Screenshot of the Leaf PHP Mailer 2.8

🍃 LeafMailer – Malicious PHP Mailer script

A few weeks ago I was approached by a friend of mine, complaining about high load and CPU usage on one of his shared hosting servers (DELL) running CentOS 7, CloudLinux and cPanel. I was more than happy to take a look, and after a couple of minutes...

Screenshot of the WSO 2.6 Shell

⚠️ WSO 2.6 Shell 😲

WSO (web shell by oRb) is a simple and easy to use tool for any would-be hacker to learn and use. WSO 2.6 Shell This shell allows an attacker to perform the following actions: View detailed server informationFile management (uploading, downloading...

How to Upload SVG Images in WordPress

To upload SVG files (Scalable Vector Graphics) to WordPress you don’t need any additional plugin, simply add the following code to your theme’s functions.php file: /* Upload .svg images to WordPress */...

How to change Contact Form 7 Placeholder Style

Contact form 7 is one of the most used WordPress plugins nowadays for building simple or complex contact forms on your WordPress website. Here is some custom code you can use to change text color or upper case in cf7 forms. You can add the bellow...

IOptimization – Malicious WordPress plugin

Okay, it’s not really a WordPress plugin, but rather a malicious script that is trying to pass as one. Upon a regular security scan of one of the websites that I maintain, I stumbled upon a ZIP archive that contains two PHP files named “index...

How to Upload webp files 🖼️ in WordPress

To enable webp file extension add the following code to your active theme’s functions.php file: //** *Enable upload of webp files.*/ function webp_upload_mimes($existing_mimes) { $existing_mimes['webp'] = 'image/webp'; return...