Not just Flickr has a new interface, WordPress too. They have published WP 2.7 Wireframe Interface .pdf that list and explain the changes planned for the next major release of WordPress. This is only a mock-up and not the final description of how the WordPress will look and function in future.

WordPress has a new release to fix the danger of SQL Column Truncation. It is recommended if you are allow open registration on your blog. This problem is not critical but it is annoying.

Upgrade to the latest version is highly recommended.

In this vulnerability you can change admin password if the registration enabled. It can be done by duplicating admin username. The vulnerability is related to MySQL Column Truncation Vulnerabilities.

If the attacker however tries (to register) the username ‘admin            x’ the application will search for it in the database and will not find it, because it is impossible to find a username with a length of 17 in a database field that has a 16 character limit. The application will accept the new username and insert it into the database. However the username column is to short for the full name and therefore it is truncated and ‘admin            ‘ is inserted into the database.

But this is not critical since the new password will be send to correct admin email.

WordPress 2.16.1 has been released. It is fully recommended to upgrade to latest stable version.

If you note that the comment page in my blog has been added with TinyMCE Editor.

This is the only code you have to insert into your header.php (theme).<br /> <script type="text/javascript" src="<?php bloginfo('url'); ?>/wp-includes/js/tinymce/tiny_mce.js"></script><br /> <script type="text/javascript"> tinyMCE.init({ mode : "exact", themes : "simple", theme_advanced_toolbar_location : "top", elements : "comment" }); </script><br />

Yeah, it’s just that simple. For more options, go to TinyMCE site.

p/s: should be working with wordpress 2.1.

I have change the look and feel of my blog. I can say it’s simple & “sexy?”. What say you?

If you can see, “Archive” block on the right sidebar is hidden onload. The block will expand on mouse click. There is a simple way to do this in wordpress. Actually, you’ll need prototype (a javascript framework). You can include prototype.js in wordpress by using wp_enqueue_script(). No need to download prototype.js because it’s already in your wp-includes/js/ folder. All you need to do is to insert this code into your header.php (it should be in /wp-content/themes/<your theme folder>/).

<?php wp_enqueue_script(‘prototype’); ?>

Prototype is not the only script that can be loaded with wp_enqueue_script(). Take a look in wp-includes/script-loader.php to see some of the other scripts that wp_enqueue_script() can load by default.

Okey! We’re now able to use prototype. It means we can use all its functions and Element.Toggle is one of them. We need to modify the sidebar.php (it depends on your theme). This is the code :

<li> <h2 onclick="$('archives').toggle();" style="cursor: pointer"><?php _e('Archives'); ?></h2> <ul id="archives" style="display:none;"> <?php wp_get_archives('type=monthly'); ?> </ul> </li> <p>

In prototype, $('archives') is the same as document.getElementById('archives'). That’s it! Hope it’s useful for those who want to make their “Archive” block looks nice.