Nonce actions and names available via open source
I am using a plugin which makes its code publicly available. Therefore, anyone can see the $action and $name parameters used to generate … Read more
verification
wp_verify_nonce always returns false when logged in as admin
I’ve implemented some AJAX functionality for my plugin and it works fine as long as I’m not logged in as admin – then … Read more
Scanning Database for malicious Data
After a site of a friend has been hacked I told him he should just clean up the mess and restart from scratch … Read more
Email verification for new users
I would like to implement a plugin that requires new users to reply to an email, to verify their email address, on registration. … Read more
ssh remote host identification has changed
I’ve reinstalled my server and I am getting these messages: [user@hostname ~]$ ssh root@pong @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@ @ WARNING: REMOTE HOST IDENTIFICATION HAS CHANGED! @ … Read more
How does nonce verification work?
I can see that wp_nonce_field generates a value in the hidden field. <input type=”hidden” id=”message-send” name=”message-send” value=”cabfd9e42d” /> But wp_verify_nonce isn’t using that … Read more