WordPress Plugins – January 2014

Get your website ready for 2014 with these new WordPress plugins that will help you maximize the functionality of your website:

Icon Box for Visual Composer

Icon Box plugin is an add on for Visual Composer Page Builder that allows you to create nice looking informative boxes with icons easily. Icon Box is ntegrated with real time icon search to help you find the right icon you need quickly. This plugin provides you with three box option styles with over 9 customization possibilities giving you more than 25 different designs to match your website design. This plugin works with all installations of Visual Composer.

WordPress User Bookmarks for UserPro

WordPress User Bookmarks for UserPro is an extension for the UserPro Profiles Plugin for WordPress. This plugin will allow users to bookmark any content they want, posts, forum topics, custom posts, and also manage their bookmarks into collections. This ajax-powered plugin offers a simple way to show the bookmarks and bookmark widget and can be integrated into any theme. You can show the bookmark widget in different ways: via dynamic sidebar widget, via automatic mode below post content, or via a shortcode.

Simple Social Bar

Simple Social Bar is a premium WordPress plugin with drag and drop functionality that allows you to show your social bar 3 ways: top, bottom, or static. Its floating feature allows it to be visible to your visitors all the time. Main features include: simple user interface, multiple languages support, Socialite support, floating bar, embedded color picker. It is also fully customizable.

Drag and Drop Shortcodes

Drag and Drop Shortcodes is a great WordPress plugin that lets you create remarkable things even with mediocre themes. Spice up your content and draw visitors attention with dynamic animation and modern parallax effects.
This plugin lets you create content of pages and posts by simply using the drag and drop interface, without messing with code. No need to remember any shortcode as each attribute is accessible from pop-up modal windows and forms.
For advanced users, this plugin supports shortcode editing in text editor. Simply highlight shortcode and press Add/Edit Shortcode button, and shortcode will be loaded in modal window form.

Commentator WordPress Plugin

Commentator WordPress Plugin is a fully featured ajaxified comments system for your WordPress website that lets you easily supercharge your discussions. Main features include: social login (LinkedIn, Twitter, Facebook, Google+), ajaxified comment form, login and register, and pagination, comments upvotes and downvotes, thread likes, front end comments sorting, customizable icons and colors, easy integration, translation ready, with more features on the way.

‘Tis The Season To Be Jolly With These Christmas WordPress Plugins

It’s the most wonderful time of the year indeed and what better way to spread the holiday cheer than to give your visitors a taste of Christmas on your website with these fun and cheery Christmas WordPress plugins.

Advent Calendar

Advent Calendar is a simple calendar plugin to show off a list of 24 days before Christmas. Each day can be viewed automatically once published. A preview of the featured image for that day is also displayed with a link to the actual page.

WP Super Snow

WP Super Snow is an awesome, customizable, and very lightweight free Christmas snow falling plugin that uses jQuery and CSS3. Create your own winter scene and add falling snow flakes to your website. You can also customize these snow flakes using various configuration options in your WordPress Dashboard.

Snow Storm

Snow Storm is a simple and festive Christmas plugin that displays falling snow flakes on the front page of your WordPress website. Give your visitors a glimpse of winter wonderland and let it snow, let it snow, let it snow.

Christmas Countdown Clock

Christmas Countdown Clock is a countdown plugin that displays days and hours until Christmas day. Select from a range of designs, sizes, background colours, pictures, and animations to build up excitement for the big day.

Christmas Snow – Snow Fall WordPress Plugin

Christmas Snow will turn your WordPress site into a snowy WordPress site – a great marketing move especially if you are targeting the Christmas Season Sales. This plugin has around 25 different types of snow flakes to choose from. You can create multiple types of snow flakes, control the number, speed, rotation speed, snow flake size, wind direction, and opt enable or disable for mobile devices.

Christmas Animation – Pro WordPress Plugin

Christmas Animation – Pro WordPress Plugin can be used to add fun, quirky animation Effects to welcome your visitors. You get 30 Christmas images to create multiple animations you can show on posts or pages. You can control image speed, size, rotation speed, and the slide in and slide out effects.

Have fun with these plugins and give your visitors something to smile about this Christmas.

WordPress Plugins and Widgets To Help You Manage Your Content Efficiently

Managing large volumes of content can be quite a task if not managed well especially if you are handling multiple contributors, authors, and guest authors. Here are some useful WordPress plugins to help you streamline and monitor your content activities:

Postrunner

Postrunner is a guest posting system connecting authors with site owners. This plugin facilitates the process of hooking a WordPress site into Postrunner to receive guest posts. PostRunner streamlines the guest posting process for authors and publishers who want to share content, but don’t want to deal with the normal prospecting, pitching, and negotiating traditional guest posting requires. Authors get abundant guest posting opportunities; publishers get quality content for their blog or website while maintaining total editorial control.

Really Simple Guest Post Plugin

Really Simple Guest Post Plugin allows your visitors to submit posts even without registration (as a guest author). Anyone will be able to submit post and it will be added automatically as a pending post for review, approval or rejection. Posts will be directly saved into WordPress database and will show up in Admin Dashboard as pending post with given Title, Description, Category and Tags.Moderator will be able to review and approve them as needed. Authors Name, Author url and email will be added as custom field.

Frontend Publishing

Frontend Publishing is a lightweight plugin that allows you to accept guest posts/articles without giving your members access to the sensitive WordPress control panel. It will automatically filter out all the posts that don’t meet the submission guidelines of your website. It can be a huge time saver if you have a very popular blog or article directory. You can allow members with a certain user level to publish posts instantly. All other posts are added to the ‘pending’ queue.

Custom Content Type Manager

The Custom Content Type Manager (CCTM) is a WordPress plugin that allows users to create custom content types (a.k.a. post_types) with virtually any type of custom field. This plugin allows users to create custom content types (also known as post types) and standardized custom fields for each, including dropdowns, checkboxes, and images and more. You can select multiple images, posts, or media items and store them in a single field making it easy for you to store a gallery of images or long lists of values. This plugin also lets you export and import your content definitions, making it easy to ensure a similar structure between multiple sites.

Ajax Content Filter

Ajax Post Content Filter allows you to filter your content with a drop down box. Just install the plugin, activate and open the ACF Posts located in the left side menu bar. You will need to add new ACF posts by filling up the post title and placing your content in the editor then publish it. Simply put the shortcode [ACF] in a page or post in admin. You can also put the shortcode ajax_content_filter() in your template file and you will get the simple dropdown box on your page at front side.

Fancier Author Box

Give identity to your single or multi-author WordPress website with Fancier Author Box – a WordPress plugin that allows you or your authors to connect with your audience on all levels and encourages people to read the author’s bio and engage on major social networks. You can modify display settings and color settings according to your preferences.

Editorial Calendar Plugin

The Editorial Calendar Plugin gives you an overview of your blog and when each post will be published. You can drag and drop to move posts, edit posts right in the calendar, and manage your entire blog. See all of your posts and when they’ll be posted. You can drag and drop to change your post dates, manage your drafts with our new drafts drawer, quick edit post titles, contents, and times, publish posts or manage drafts, easily see the status of your posts, manage posts from multiple authors.

Custom About Author

This plugin acknowledges authors for their post by displaying a brief biography about them at the end of their post. It is perfect if you have multiple guest bloggers on your website and they do not each have a user account. It also gives an added incentive for bloggers to write guest posts on your site. Multiple custom profiles can be created and they take preference over website user profiles. You also have the option to specify a specific profile to display for each post. Custom profiles are completely configurable, it can include links to social media (such as Twitter, Facebook, LinkedIn & Google+) or you can specify any HTML/text you want to display. This plugin displays the author profile at the end of the post. It gives you have the option to display the author’s website user profile or a custom profile.

WP Biographia

This plugin allows you to add a customisable biography to posts, RSS feeds, pages, archives and to each post on your blog’s landing page as well as via a widget in your sidebar. It integrates out of the box with the information that can be provided in each user’s profile and supports custom post types. Display of the Biography Box can be hidden on a global or per user basis for posts, pages and custom post types as well as on a per category basis.

WordPress Plugins To Try This September 2013

Enhance your WordPress site with these useful plugins that will help beef up features and functions you already have:

Ajax Portfolio Grid for WordPress

Ajax Portfolio Grid plugin allows for smooth loading and reloading of pages because of its Ajax feature. Features include: flexible columns, Youtube and Vimeo support, Drag and drop support, and hardware accelerated touch swipe support among a few. This robust plugin is built around the MVC core and makes full use of HTML5, CSS3, PHP 5.2+, and jQuery 1.7 – latest technologies that allow it to render fast and lightweight results including effects that are responsive and adapt to most if not all handheld and mobile devices.

Paper Grid

Paper Grid is a lightweight and powerful content grid plugin for WordPress that allows you to showcase your team, your services and products, or any other type of content in a dynamic and interactive way. You can select images, icons, change colors and you can also easily share your team members or even content on your social networking sites. The Content Grid frontend css file is only 5 KB and the javascript file is only 2KB making it really lightweight which means your website’s loading performance will be fast.

Mobile.nav

Mobile.nav is an easy to install and easy to use mobile and responsive navigation menu plugin for WordPress that creates an awesome mobile menu for your website. It supports top level + nesting up to 3 sub levels (4 levels totally) but can expand to how many you need by copying few lines of css. This plugin uses the native WordPress built-in design language and easily integrates with the WordPress menu system and supports expanding menu tree. Mobile.nav works on iOS, Android and Windows Mobile.

Hashtag for WordPress

The Hashtag WordPress plugin uses the new auto-complete system in the WordPress editor which allows you to set up an integrated hashtag system for your website. You can easily add a hashtag (#word) in your posts based on # character and on other hashtags already existing on your site. This plugin filters all the sentences containing the hashtag and displays them with links and thumbnails to the related posts. The #hashtag word link and the #hashtag page can also be easily customized (font, border, radius, padding, margin, etc.) according to your preferences.

FormCraft WordPress Form Builder

Create your own stylized forms with FormCraft WordPress Form Builder plugin – an AJAX powered form interface that allows you to create responsive forms and add as many as 23 fields (conditional or not), add multi-columns, save form progress, generate form analytics, integrate MailChimp, Campaign Monitor and Aweber and send to auto responders, embed objects, maps and videos, upload multiple images (retina-optimized), add form validation, get all submissions in your inbox, and many other useful features.

Frontend Builder

Frontend Builder WordPress plugin allows you to design your web page using intuitive frontend and backend options and a drag & drop system that allows you to add all the content that you need regardless of the template that you are using. This plugin is an easy-to-use solution for all users regardless of their skill level whether as designers or developers. Developers will find this plugin useful because they can assign this plugin to their templates with their own shortcodes and enable their potential users to design their own web pages using their own template’s elements. Other features include: clone options, WordPress shortcodes, pre-made UI system, live preview, and tons of other options.

Useful WordPress Plugins to Enhance Customer Support

WordPress professionals like theme and plugin authors, developers and other WordPress service providers constantly face the challenge of providing ample, quality after-sales support to their customers. It is a tricky area that even seasoned professionals need to constantly juggle. For those who are starting out new in the WordPress marketplace, it can be overwhelming to have a successful and highly-popular WordPress theme doing well as far as sales go because of the twin responsibility of providing high-volume customer support. Customer support can be the straw that breaks the camel’s back on any theme that sells like hotcakes which explains a lot of WordPress theme one-hit wonders. That’s why it is crucial to also include setting up a framework for addressing customer support during a WordPress theme’s development process and not be caught unprepared. Here are some useful tools and plugins to consider to address that need:

Live2support

Live2support is a leading live chat software with advanced features. Live2Support! Live Chat Software service is a simple plug and play hosted service and does not require any software installation or IT expertise.
You just need to place small code into your webpage to enable Live Support on your website. Live2Support’s flexibility and versatility allows you to tailor independent and separate chat windows for departments such as sales, product promotions, technical support, billing and customer service departments. Live2Support’s live support application generates detailed chat transcripts. This enables you to use these transcripts to conduct market research, develop customer profiles, train chat operators and evaluate chat operator performance.

WordPress Advanced Ticket System

WordPress Advanced Ticket System (WATS) is the ultimate ticketing system for all organizations looking at enhancing their customer relationship experience. This is a plugin that adds to WordPress the features of a complete ticket system: ticket numbering, ticket integration, ticket keys, ticket submission, ticket followup, ticket notification, et cetera. This allows users to submit tickets to report problems or get support on whatever you want. Users can set the status, priority, product and type of each ticket.

wpsc Support Tickets

wpsc Support Tickets is an open source WordPress support ticket system for WordPress using jQuery. It is a plugin for WordPress that allows you to offer support tickets to your website visitors & customers. It is lightweight, open source, Ajax enabled, and easy to use and administrate.

FAQ and Knowledge Base Plugin

Add a powerful FAQ & Knowledge Base on your WordPress Blog or Website with this plugin from Casengo. Casengo’s Cloud-based, affordable social customer support software brings the human touch back into customer service. Regardless of channel type, it simplifies real-time conversation by presenting a unique Hybrid Messaging Timeline.

Live Chat Casengo

Add live chat to your blog or website quick and easy with Casengo, so you can handle enquiries via email and live chat directly from your website. Casengo helps you to respond to customers faster than ever and improve their satisfaction with a groovy mixture of real-time chat and email. Casengo’s cloud application for customer support blends the best of email and chat. It empowers web shops and other small businesses to more readily deliver the right answer at once.

Zendesk for WordPress

Zendesk for WordPress allows you to bring your helpdesk, powered by Zendesk, into your blog or site. Zendesk offers: easy-to-use self-service options with knowledge-base and community features, one-on-one support through any channel (website, phone, email, Twitter, Facebook, chat) and turns it into a ticket, a ticketing system built for speed (simplified support team workflow) with streamlined systems for managing support content, access to all the info you need all in one workspace, efficient group conversations, and last, but not the least, portability through mobile apps on all devices.

SabaiDiscuss Plugin – CodeCanyon

SabaiDiscuss is a premium questions and answers plugin for WordPress. The plugin features the ability for users to ask and answer questions similar to Stack Overflow or Yahoo Answers. SabaiDiscuss is an ideal tool not only for building a community driven question-and-answer website but also for building a discussion forum, a knowledge base, or even a helpdesk portal for WordPress.

Unplug Those High Risk WordPress Plugins!

WordPress is a free and open source blogging tool based on PHP and MySQL that has evolved into a full content management system (CMS) with a plug-in architecture and a template system that extends its power and functions beyond basic expectations.

Because of its open source nature, one of the greatest benefits WordPress users enjoy is that hundreds of people all over the world are free to use it, work on it, and develop other products based on it that get plowed back into the WordPress marketplace and community. This has resulted in tens of thousands of plugins and themes flooding the market today. However, this freedom has also made WordPress a popular target for attacks, especially 3rd party plugins that fail to go through or pass coding standards and security guidance or requirements, making it vulnerable to hackers and malicious mass infections.

In a recent research conducted by Checkmarx, a security solutions provider using automated code analysis, it identified that more than 20% of the most popular WordPress plugins are vulnerable to web attacks.

According to the Report:

20% of the 50 most popular WordPress plugins are vulnerable to common Web attacks. This amounts to nearly 8 million downloads of vulnerable plugins.

  • these plugins are vulnerable to: SQL Injection (SQLi), Cross Site Scripting (XSS), Cross Site Request Forgery (CSRF), and Path Traversal (PT).

7 out of top 10 most popular e-commerce plugins are vulnerable to common Web attacks. This amounts to more than 1.7 million downloads of vulnerable e-commerce plugins.

There is no correlation between the number of Lines of Code (LOC) and the vulnerability level of the plugins.

  • the smaller the code does not necessarily mean the safer the code. On the contrary – some plugins that included only a few thousand lines of code contained more types of vulnerabilities than plugins containing tens of thousands lines of code.

Vulnerable top 50 general plugin types vary.

  • – e-commerce, feed aggregators, APIs, social network linking

Only six plugins were completely fixed in a 6-month time period – although all plugins updated their versions during this time.

  • A first scan ran in January 2013 showed a higher rate of vulnerable plugins where more than a third (18 out of 50) of the plugins were vulnerable. In total, this meant that nearly 18.5 million vulnerable plugins were downloaded. Vulnerabilities in that first scan also presented the existence of RFI/ LFI vulnerabilities.

Recommendations

WordPress plugin vulnerabilities affect three major parties: the web admins, the plugin developers, and WordPress itself. Below are some of the recommendations stated in the report.

For Web Admins

  • Download plugins only from reputable sources. For WordPress, this means WordPress.org
  • Verify the security posture of the plugin by scanning it for security issues
  • Ensure all your plugins are up to date
  • Remove any unused plugins

For Plugin Developers

  • Integrate security within the plugin development
  • Run the plugin through a code scanner to ensure that it stands up to a security standard

SMBs or simple home-based businesses that do not have a built-in or sophisticated IT department to go through all these checks and balances, run a high risk of vulnerability because of the great deal of trust they place in available 3rd party plugins (especially the free ones). Web administrators need to be more discerning and thorough in their research before installing any plugins on the sites they manage. Plugin developers need to be self-governed and abide by security coding best practices. As each one does his part, this ensures that the whole WordPress community stands to benefit in the end.

Popular WordPress Plugins Updated for Security

In an article on WordPress Plugin vulnerabilities, we mentioned that the top 50 most popular plugins were tested for security and vulnerability by Checkmarx, a leading provider in application security. The first scan was conducted in January 2013 where it was discovered that more than a third of the 50 plugins were vulnerable. The second scan, conducted in early June 2013, was performed on the updated versions of all plugins. However, only six of these updates were free of those previously found vulnerabilities. These were:

BuddyPress

– creates a social network for the organization. # Downloads: 1,319,743.

A BuddyPress Plugin is a program, or a set of one or more functions, written in the PHP scripting language, that adds a specific set of features or services to the BuddyPress site, which can be seamlessly integrated with the site using access points and methods provided by the BuddyPress Plugin API. BuddyPress allows easy modification, customization, and enhancement to a BuddyPress powered WordPress site. Instead of changing the core programming of BuddyPress, you can add functionality with BuddyPress Plugins.

BBPress

– forum software. # Downloads: 483,28. Alerted by Checkmarx to their vulnerabilities.

bbPress is forum software, made the WordPress way – simple to setup, fully integrated, multisite forum, simple interface, customizable templates, highly extensible

E-Commerce

– shopping cart plugin. # Downloads: 2,209,352.

WP e-Commerce is a free WordPress Shopping Cart Plugin that lets customers buy your products, services and digital downloads online.

WooCommerce

– an e-commerce store. # Downloads: 469,503

WooCommerce is a free, powerful WordPress eCommerce plugin. With the extendability of a huge catalog of commercial themes and extensions we have all the tools you might need to get your shop running. Transform your WordPress website into a thoroughbred eCommerce store, delivering enterprise-level quality and features whilst backed by a name (WooThemes) you can trust.

W3 Total Cache

– site optimization by caching. # Downloads: 1,450,980. Most likely fixed as part of a security overhaul following an external full disclosure of some vulnerabilities.

W3 Total Cache improves the user experience of your site by increasing server performance, reducing the download times and providing transparent content delivery network (CDN) integration.

Super Cache

– site optimization by caching. # Downloads: 3,984,976. Most likely fixed as part of a security overhaul as with W3 Total Cache.

A very fast caching engine for WordPress that produces static html files. This plugin generates static html files from your dynamic WordPress blog. After a html file is generated your webserver will serve that file instead of processing the comparatively heavier and more expensive WordPress PHP scripts. Supercache really comes into it’s own if your server is underpowered, or you’re experiencing heavy traffic. Super Cached html files will be served more quickly than PHP generated cached files but in everyday use, the difference isn’t noticeable.

Note: Downloads statistics are as of the time of the tests.

5 Great WordPress Redirect Plugins

Orphan, dead, or broken pages affect user experience on any site. This can be very annoying and frustrating and will cause users to leave your website and go to the next search result. Take the time to conduct a site maintenance audit and install any one of these useful redirect plugins to manage and keep your site error free.

Redirection Plugin

Redirection is a WordPress plugin to manage 301 redirections, keep track of 404 errors, and generally tidy up any loose ends your site may have. This is particularly useful if you are migrating pages from an old website, or are changing the directory of your WordPress installation. Some features include: Supports both WordPress-based and Apache-based redirections, captures a log of 404 errors and allows you to easily map these to 301 redirects, RSS feed for 404 errors, custom ‘pass-through’ redirections allowing you to pass a URL through to another page, file, or website, full logs for all redirected URLs, create redirections based upon a URL, browser, referring site, or login status, and automatically add a 301 redirection when a post’s URL changes.

Permalink Redirect Plugin by Yoast

This permalink redirect plugin fixes all sorts of weird addons to your URL’s by automatically 301 redirecting to the permalink for that post, page, category or tag page. Note: this plugin can create issues when other plugins that query variables. It has since then been succeeded by WordPress SEO also by Joost de Valk, and is considered one of the most complete WordPress SEO plugin that exists today for WordPress.org users.

Quick Page/Post Redirect Plugin

This plugin redirects Pages/Posts to another page/post or external URL. This plugin adds adds an option box to the edit section where you can specify the redirect location and type of redirect that you want, temporary, permanent, or meta. You can redirect without needing to create a Page or Post. This is very useful for sites that were converted to WordPress and have old links that create 404 errors. This option does not allow: open in a new window or nofollow functions. Redirect location can be to another WordPress page/post or any other website with an external URL.

Permalink Finder Plugin

The Permalink Finder Plugin detects when WordPress cannot find a permalink. Before it generates the 404 error the plugin tries to locate any posts with similar words. It does this by searching through the database trying to find any of the word values from the bad link. It takes the best match and then, rather than issuing a 404 error, it sends back a redirect to the correct page. Users will see the page that they are looking for, and search engine spiders will see the 301 redirect and update their databases so that the page appears correctly in searches.

Simple 301 Redirects

Simple 301 Redirects provides an easy method of redirecting requests to another page on your site or elsewhere on the web. This plugin is especially handy when you migrate a site to WordPress and can’t preserve your URL structure. By setting up 301 redirects from your old pages to your new pages, any incoming links will be seamlessly passed along, and their pagerank will be passed along with them.

Don’t forget to always check plugins for compatibility with your current WordPress version before installing them.

WordPress Plugins for Front End Content Management

As the internet continues its path towards building stronger online communities, greater interconnectivity and increased social networking, website owners are opening up their doors to accepting content contributions from their audiences. To address the issue of privacy and confidentiality, some plugin developers have come up with front-end solutions to enable website owners to accommodate contributions from the community without compromising their backend controls.

Here are some useful plugins you can use to put everything you need for posting, editing, and uploading content on the front-end.

Front-End Editor by Scribu

Front-end Editor is a plugin that allows you to edit your content directly from the front end of your site. This comes in really useful when all you need is just to correct a typo or something you overlooked.

Front-End Uploader

This plugin is useful if you have multiple contributors to your site because this plugin allows them to generate content and easily upload it right on the frontend of your website. Essentially, the plugin is a customizable upload form that adds files with allowed MIME-type to your WordPress Media Library under a special tab “Manage UGC”. There you can moderate your user submissions – whether to: Approve, Delete, or Re-attach to other post/page/custom-post-type before they are officially published.

Frontend Checklist

Create HTML or PDF checklists your visitors can save or print anytime they come back to your site. These lists are saved via cookies which enables visitors to continue using the checklist where they left off when they re-visit your site.

MarketPress FrontEnd

MarketPress Frontend is a powerful ecommerce plugin that can be used to set up a stylish online store easily. This WPMU Dev created plugin can help you: manage orders, create and edit products, product tags, and categories, set up store settings such as shipping, payment gateways, and coupons, all through the front end. This means that all your confidential dashboard information will be hidden away from sellers or other users who don’t need to see all that information.

FV Community News

Need more content but challenged? This plugin allows users to contribute articles while still maintaining full control over what gets published.

With this Community News plugin you allow your visitors to add fresh or related content to your blog. This plugin comes with a moderation panel and a settings page including support for custom post types, images, widgets, and shortcodes. You can simply sit back and relax knowing that your blog will have a continuous supply of fresh content.

Just make sure that the plugins are compatible with your current WordPress version before you install any of them.