Techtites Featured

WordPress Post Slug

How to change your post slug in WordPress for good SEO

If you have configured your WordPress blog to display permalinks, WordPress will automatically generate a post slug using the title of your post. However, this post slug tends to be very long if you have a long title. Good SEO dictates that you keep your post slug as short as possible and you can do this by removing some stop words.

Advertisements

Game for the weekend: Redline Rush

If you have been regularly following my Game posts, you’ll know I love the racing games. Redline Rush is a racing game with a slight difference. Test your driving skills in this high speed driving game where you have to weave through traffic to escape the police.

MEDIAN IF example

MEDIAN IF tutorial in Excel 2007 and Excel 2010

Excel 2007 brought a host of new functions to Excel that were missing in Excel 2003. One of these functions was AVERAGEIF which returns the average (arithmetic mean) of all the cells in a range that meet a given criteria. One essential function that is still missing is MEDIANIF or MEDIAN IF which should ideally return the median of all the cells in a range that meet a given criteria.

Bejeweled Blitz - Boost your score

Game for the weekend: Bejeweled Blitz

The highly popular and addictive Bejeweled Blitz has been released for Android devices. Bejeweled Blitz was originally a Facebook application which is developed and published by PopCap Games, a subsidiary of Electronic Arts. It soon expanded into a downloadable game, based on the then-in-development Bejeweled 3 engine, due to popularity of the differences from Bejeweled 2 and its new graphics.

WordPress

How to prevent CSRF vulnerability in WordPress plugins and themes

Recently the folks at Secunia contacted me regarding a vulnerability in my plugin Contextual Related Posts.

Contextual Related Posts is a powerful plugin for WordPress that allows you to display a list of related posts on your website and in your feed. The plugin comes with a tonne of options and inbuilt caching that can possibly increase user retention.

This vulnerability was on the settings page of the plugin and opened up the blog to a potential cross site request forgery (CSRF)

The application allows users to perform certain actions via HTTP requests without performing proper validity checks to verify the requests. This can be exploited to change plugin settings and e.g. insert malicious script to pages or posts when a logged-in administrator visits a specially crafted web page.

Since then, I’ve been scouring the web for material on this and you might also want to take a look this article on crunchify for a solution. In this post, I’ll tell you what I did to fix the vulnerability. But first, let’s understand what’s CSRF.

Read More »How to prevent CSRF vulnerability in WordPress plugins and themes