Hana Flv Player WordPress Plugin

9/17/2009: Please visit the new home for the Hana Flv Player and Hana Flv Player Plugin Forum.
As part of ongoing personal project for creating and embedding Flash Video in my WordPress, I have decided to create a WordPress plugin to help me writing embed tags inside the articles. If you are interested on my previous quests, check out below links.

Change Log

  • V 2.0 (7/23/2009) :
    1. For easier Hana Flv Video tag creation, new popup dialog is added. You can directly define the values using the form and click OK to create the tag. Please see the screenshot 4 for the example. The buttons in the editor will only appear for WP v2.5+


  • v 1.8 (7/21/2009) :
    1. Fixed Minor bug with FlowPlayer v2 . It was not properly showing under IE7.
    2. FlowPlayer v3.1.1 player is added. Originally intended to upgrade the old version, but decided to leave old version due to some minor differences.
  • v 1.7: Adding additional attributes for the players more advanced options. Also added a method to show FLV movie within the theme template files (such as sidebar.php)
  • v 1.5: Adding FLV Player Maxi
  • v 1.1: Lots of debuging.
  • v 1.0: Initial Release with OS FLV (GPL) , FlowPlayer (GPL) flv players

Now you can easily embed the FLV Flash videos in your WordPress Blog. I have packaged the two GPL FLV Flash player, OS FLV and FlowPlayer. So you can use them freely without worries even for the commercial purpose unlike the JW player – If you have AdSense or display ads showing , you should purchase the player according to its website.


Read More

WordPress blog hacked with admin-ajax.php vulnerability

I just upgraded my old (don’t even know what the old version was) WordPress to the latest 2.5.1 because somebody hacked into my site and added bunch of hyper links in my latest post. And it was very clever that the hyperlinks are not shown in the browser since the position of the div is out of screen. But probably search engines will see the links and increase the pagerank or simliar action could have been done I guess.

Anyway, the migration was very easy except that I had to redefine the tag keywords from the old UTW (Ultimate Tag Warrior 3) to the WordPress.

I guess my blog was attacked by this admin-ajax.php vulnerability. They say that a hacker can run the SQL query through admin-ajax.php.

Here are some of the blogs explaining the vulnerability.

Read More