We have already seen how to detect which theme a web uses even a trick to detect plugins but are there more ways to know what plugins a site created with WordPress uses? Well it can be, and with more precision than you imagine. We will see several ways to achieve it.
Know what plugins a web uses by automatic detectors
As with the themes, there are utilities from which you can detect which plugins a web uses, among other things. In fact there are some of these services that also detect the subject. The main ones are these:
- WordPress Plugin Checker : Specific utility to detect WordPress plugins, a bit slow in its process and not very accurate to say, but as an experiment it's not bad.
- What WordPress theme is that? : Something more spartan than the previous one but also very effective detecting the theme and the active plugins. Equally highly recommended.
- Build with : Broad spectrum tool, which detects all the technologies used in a web, in what is very effective, although not so much detecting plugins, that identifies through widgets and scripts. It is not the best to detect plugins but save it in your favorites for its multiple utilities.
Know what plugins a web uses checking the source code
A more manual process, but also very effective – if you know how plugins are integrated in WordPress – is to check the source code of the web you are viewing, since most of them insert code in various parts of the resulting HTML.
All current browsers offer utilities to view the source code of a web, and in all you can right click on a page and choose the option to see the code of it.
- Menu right click browser
- Source code display
And some also offer a web inspector that, In addition to showing the source code, they also offer tools to visualize, identify and modify elements such as scripts, resources or even CSS for testing.
If you read what I announced this morning you already know the reason for the security update from which you will be receiving notice right now. WordPress 4.2 is updated to version 4.2.1 and if you do not update only your site you are already taking it manually.
Part of the beauty of the WordPress community are these things; a vulnerability or failure is detected and in hours it is
In all versions of WordPress there are hidden functionalities sometimes known as easter eggs and sometimes they are really useful, as is the case of a discovered in the version ] 4.2 .
According to has discovered Ella Van Dorpe if you select a text and paste a URL the text is automatically linked without having to resort to the icon of the editor of WordPress to add links, fast and effective.
I do not know about you but this new hidden functionality – not announced – gives me life, because I've always thought it was a huge waste of time to click in the editor for such basic things.
Now available for download and update WordPress 4.2 a version that incorporates interesting improvements to our favorite CMS, although perhaps the most powerful are under the hood, that's up to you.
As always , do not update to major versions – and this one is – without first testing the compatibility with theme and plugins which then we get silly dislikes.
As you already know, there are several reasons why a plugin can be removed from the official WordPress.org repository and all those reasons are to give you security and that you do not use plugins without guarantees.  The reasons why a plugin can be removed from the official repository are the following:
Now, how do I find out that a plugin I use has been removed from the official repository? Seeing the reasons it would not hurt to have some system that warns me, and so I can make some decision on this to ensure the safety of my website right?
It exists, in the form of a plugin. Just install the No longer in directory and go through the new submenu in " Plugins -> No longer in directory " to check if any of the plugins you have installed they are no longer in the official repository of WordPress.org and, as a result, your site could be subject to some vulnerability by using an abandoned or problematic plugin .
The screen, after an instant review, will show you a list of those plugins that are potentially dangerous and the reason for danger as shown in the previous example.
If, in addition, there were any specific security alerts on any of they give you a link to the page where it is explained.
It is a great tool, especially for those of us who are fond of plugins.
If your site has not yet been updated automatically, you are already slow to update to WordPress 4.1.2 since corrects a good number of important security flaws .
that is not just a major minor update to the WordPress 4.1 branch but the push you needed to update if you're still using WordPress 3.9 .
Vulnerability takes advantage of misuse of functions
add_query_arg () and
remove_query_arg () . For years there has been incorrect information in the WordPres Codex s, which although it was modified about a year ago, seems to have led many developers to assume that these functions can do escape ] of user actions at the time of using
esc_url () .
400 of the more than 37,000 plugins of the official WordPress.org repository have been audited, finding the vulnerability up to 15 of them, among which are some as popular as WordPress SEO of Yoast, Jetpack, P3, Download Monitor, which is not a very broad sampling but can give a first impression of the scope of the problem .  The complete list of the plugins in which the vulnerability has been found is the following:
Some such as All in one SEO pack or JetPack have already been updated and do not currently contain the vulnerability but check your installation if you are using some insecure version of one of these plugins.
The vulnerability is not new by far, so if you develop plugins or themes you should review the updated Codex documentation to adapt your code to verify that you are not making undue use of the functions
add_query_arg () and
remove_query_arg () and that it is not insecure.
I know, has given me the Whatsapp but it is used a lot and we should not miss a single opportunity to spread our content do not you think?
Well, nothing simpler. You just have to go to the web
whatsapp-sharing.com and create yours in just three steps:
It automatically generates a code that you can place to your liking in the file single .php of the active theme, usually after the loop .
Of course, it's not just for WordPress, you can also use it on any other website, or Blogspot , yourself.
JetPack is a very reliable plugin, we like it or not and one of the most used modules is Share. However, it has its limitations, such as adding services to be able to share in more sites, for example in Whatsapp, the leading messaging application in Spain .
There is also a good amount of plugins that add the share button in Whatsapp but at the moment JetPack does not incorporate it, I suppose because it is not a service that is used a lot in the USA, but what do you do?  Fortunately someone has thought of you and has created a plugin that does exactly that, add a new service, JetSpace, WhatsApp, which you can drag and drop on the Share settings page to have your button to share on WhatsApp.
It's very simple, you just have to install and activate the plugin and you will have available the new button with which easily spread your WordPress publications in all those WhatsApp groups in the what do you spend ho ras .
You no longer have excuses for not share on Whatsapp from WordPress .