Arras WordPress Theme Community Forums
Community support for Arras and other WordPress projects
You are not logged in. Please login or register.
Arras 1.5.2-RC2 Now Available: Download Here
Forum Rules: Please ensure that you have clearly read and understood the forum rules before posting.
User Confirmations / Password Reminders: Please check your spam folder before emailing for help if you have not received the confirmation or password reset emails.
Arras WordPress Theme Community Forums → Posts by zy
Remove this in the first sidebar widget (text widget):
<object width="297" height="250"><br />Like I mentioned in my previous post, check your text widgets. You have some unused HTML tags flying around, like
<td class="windowbg2">Please take a look at this topic:
http://www.arrastheme.com/forums/post29807.html#p29807
Moved to WordPress Help.
I do know there's a few out there, but most of them are probably paid plugins.
http://sitemile.com/products/wordpress-autopost-plugin/
http://wprobot.net/
Check your text widgets. One of them does not have a closing tag (eg. </div>).
zy wrote:There have been reports that versions prior to 1.3.4 of timthumb script have a serious security vulnerability that allows hackers to access sensitive information from your web server via the script.
http://markmaunder.com/2011/zero-day-vu … ss-themes/
As such, it is HIGHLY RECOMMENDED that you update the timthumb script to its latest version to fix the security hole.
Two ways to patch the theme for timthumb:
1. Download timthumb 1.3.4 and overwrite the file at /wp-content/themes/arras/library/timthumb.php:
http://timthumb.googlecode.com/svn/trunk/timthumb.php2. Download and update Arras to 1.5.1.2, which has the latest version of timthumb:
http://www.arrastheme.com/forums/post29318.html#p29318There may be plans to remove timthumb support for the next major version of the theme, in favour of WordPress' built-in post thumbnail system. I'll give more details about it in the next future.
--------
Is it better to remove the array entirely ? as some reports have noted... from$allowedSites = array (
'flickr.com',
'picasa.com',
'img.youtube.com',
'upload.wikimedia.org',
);// STOP MODIFYING HERE!
// --------------------to
$allowedSites = array ( );
// STOP MODIFYING HERE!
// --------------------Also it seems like later comments suggest that using WP core to do this rather than keeping tomthumb is a very good idea (so any plans to move in that direction?)
You can remove the array as well if you don't intend to link images from external allowed sites like those above, though I would highly recommend it if you don't use timthumb at all.
Arras already supports built-in thumbnails since 1.5, but the timthumb feature is still available for users who wish to continue using it.
There have been reports that versions prior to 1.3.4 of timthumb script have a serious security vulnerability that allows hackers to access sensitive information from your web server via the script.
http://markmaunder.com/2011/zero-day-vu … ss-themes/
As such, it is HIGHLY RECOMMENDED that you update the timthumb script to its latest version to fix the security hole.
Two ways to patch the theme for timthumb:
1. Download timthumb and overwrite the file at /wp-content/themes/arras/library/timthumb.php:
http://timthumb.googlecode.com/svn/trunk/timthumb.php
2. If you are not using timthumb as your primary thumbnail management method, you can simply replace timthumb.php with a blank file.
3. Download Arras 1.5.1.2 with TimThumb functionality removed:
http://arras-theme.googlecode.com/files … mthumb.zip
There may be plans to remove timthumb support for the next major version of the theme, in favour of WordPress' built-in post thumbnail system. I'll give more details about it in the next future.
This is a security bugfix release for Arras 1.5.1 users. It is highly recommended that you either update the timthumb script for the theme to 1.3.4, or update the theme to 1.5.1.2.
Changes:
- Updated timthumb script to 1.3.4 to fix zero day security vulnerability
Moved to Guides Database.
You need to ensure both themes are installed correctly:
Arras should be at wp-content/themes/arras
CG should be at wp-content/themes/arras-classical-gamer
Previous versions of 1.5 are available here:
http://code.google.com/p/arras-theme/downloads/list
I like simplepress as well. It offers a simple math verification question to protect from spam. In the upcoming version 5 they will be supporting akismet as well.
Akismet may have a solution for your current forums.
http://akismet.com/development/The only thing I don't like about these forums is the "security token" warning and that I don't get emails for private messages.
There's a Akismet plugin for punBB but it doesn't work.
@zy Thanks for that - I've already edited the widgets.php at line 404, this error is new and in the pluggable.php in Wp-includes, so I suspect a cascade problem.
Did you have any whitespace (eg. space, empty line) right after ?> at the end of the file?
Well having a simple one like this is good, but with a large amount of spammers registering and posting spam links we need to have a more sophisticated one to control them.
I've changed widgets.php, line 404. But am now receiving this error.
Warning: Cannot modify header information - headers already sent by (output started at wp-content/themes/arras/library/widgets.php:971) in wp-includes/pluggable.php on line 934
Roll back and reinstall don't work. Now can't post or make any changes to site. Disabling plugins also doesn't work.
Haven't found a solution when searched site for similar warnings.
Any ideas?
Rename the file to widgets.php and replace it in /wp-content/themes/arras/library/. Does it work?
Download the patch file:
http://www.arrastheme.com/forums/post28286.html#p28286
Information on how to fix the error is added on the first post.
Fix is available here:
http://www.arrastheme.com/forums/post28286.html#p28286
Megami wrote:Before I upgraded (to new WP and new version of Arras) my front page had the latest 6 sticky posts on the top slideshow, then in Featured Posts #1 3 posts from a category (in my case 'travel') they were NOT featured in the slideshow (so basically what had been bumped from that top 6) and then in Featured Posts #2 3 posts from another category (in my case 'home education') which also were NOT in the slideshow.
Now I have EVERY sticky post featuring in the slideshow (I have set it in options to six, and only sticky, no categories), and Featured Posts #1 and #2 are showing posts that are also in the slideshow. Does anyone have a fix/answer for this? Thanks.
Ditto. Mine has crashed also. Slideshow feature has crashed as well as this error message appearing:
Warning: array_unique() [function.array-unique]: The argument should be an array in /home/content/12/7820212/html/wordpress/wp-content/themes/arras/library/template.php on line 254
At the top of the Slide Show, Breaking News, etc.
Fix is available here:
http://www.arrastheme.com/forums/post28286.html#p28286
I've attached the file that fixes the array_unique error. Simply rename it to template.php overwrite the file in /wp-content/themes/arras/library/.
Dear all,
We're currently planning to "upgrade" the forum software to a more sophisticated one to curb with the huge number of users. Do give a vote on what you wish to have here as you will still be the ones using the community forums for theme support. 
hi zy, thanks for the link!
no problems what-so-ever with 1.5.0.1. however, when i tried to upgrade to WP 3.2 on a test forum, i got the Arras_Widget_Tag_Cloud fatal error.
My hope is to just make the minimal changes to my site so that I can upgrade to 3.2 with no problems.
1.5.0.1 can still be used after adjusting some lines of code: http://www.arrastheme.com/forums/post28179.html#p28179
Arras WordPress Theme Community Forums → Posts by zy
Powered by PunBB, supported by Informer Technologies, Inc.
Currently installed 9 official extensions. Copyright © 2003–2009 PunBB.
Generated in 0.052 seconds, 6 queries executed