Whats the highest racial or template charisma boost you can get for a +1 LA?

I’m currently working on a Sha’ir Gish character that will eventually PrC into Zhentarim Skymage(LoD) and I need to buff my charisma as much as possible. Skymage has a gimmick of giving you a paladin mount, or at least a close facially thereof, which can be any creature that’s a size larger than you and has no more hit die than your Skymage level + Charisma mod + 1. I already have Spark(Dragon Mag) for +2. I’m also considering Prestige Races (also Dragon) for another +1. Unseelie Fey is unfortunately banned so that’s not an option. Other than that just about anything official is allowed. I’d prefer to stay at or below LA +1 is possible. Some other options i considered were Athasian Human (also Dragon mag) +2 to two stats, Draconic Creature for +2 to strength, con, and charisma, and savage progression half fey. Spark was ruled to only work on PHB races and not variants like Athasian so that’s probably off the table, and it kind of negates the benefits of any +2 charisma LA 0 race like Spellscale and Savage Progression Aasimar.

I could use magic items like tomes eventually to raise it farther, but i can’t rely on temporary boosts like cloaks of charisma because if my charisma gets lowered, like taking the cloak off, my mount might rebell and attack or abandon me, and that’s not fun for anyone. I’d prefer human for story reasons in the setting and to open up Human paragon as an option for another +2 untyped bonus, though small races aren’t a bad choice either because that opens up a medium mount. I’m aiming for a Wyvern to be my first mount with a True dragon of some kind as my final. Mostly likely a 11-14 hit dice gold dragon for general power and the ability to turn into a smaller animal for easy transportation. Though if anyone want’s to make a better suggestion id be happy to hear it.

Handlebars.js 4.1.1 Server Side Template Injection exploitation – running system commands with a Node.js RCE when require() is not available?

I’m currently reading the following article and trying to exploit the vulnerability (Handlebars.js 4.1.1 Server Side Template Injection):


Sure enough, the proof of concept code works fine. Specifically, the final snippet from Matias works in my setup. However, after all those context changes, I no longer have access to the require keyword, and therefore I cannot do require('child_process').exec(), because it says require is not defined.

I tried looking for global variables in the current context which might help me, but found nothing.

I also considered copying the whole child_process library’s source code into my payload, but that’s not trivial, since the library uses other libraries and some specific variables, which are not initialized for me (primordials, for example).

In order to continue the assignment, I need to get a reverse shell on the target machine. How can I use the RCE to run system commands/get a reverse shell if I cannot use require()?

Professional template

Today we will offer you a free foreign blogger template that is very responsive, one of the most important features of this template is that it is very very fast and that characteristic is one of the most important factors of seo, and it is one of the most important factors that will make your topics appear in the early search results, which increases the number Visitors to the blog.
Mold Features:
A template compatible with all screens.
The template is free.
Beautiful arrangement…

Professional template

Add custom template ‘sub-page’ to Custom Post type?

I have a custom post type called ‘Inspections’

Doing this, you can access an inspection record by going to example.com/inspections/inspection-slug-here

However, I want to add some ‘sub-pages’ if you will:

/inspections/<inspection-slug-here>/sub-page1 /inspections/<inspection-slug-here>/sub-page2 

In this case, I would really like sub-page1 and sub-page2 to be templates that I can author in elementor, or something similar.

In a perfect scenario, I would like to pass the details of the parent (inspection-slug-here) to be loaded in this sub section so I can use custom fields or something of the likes.

Is there anything out there that does this? I am using elementor and an elementor templates tool, but cannot find any ways to do what i want.


Conditionally check if page is using template from plugin directory

I am having trouble loading the script conditionally in my plugin.

I have a DataTables page and want to load datatables scripts only for that page. So I made a page template called datatables-template.php and loading dynamically so can set the template in page attribute.

The template path is my-plugin/public/templates/datatables-template.php

So far so all is working fine. However, when I try to load script explicit fore that template using is_page_template()

When I have checked with get_page_template() that returning theme current page template which is page.php in my case.

Note: is_page working fine, of course, since it will check the current page, that would work. I have also checked my path using file_exists and that returns true. That means I am giving a correct path for the template. So no idea how to check it.

Additionally: I have tried with global $ template which returns the correct plugin template but that doesn’t work in conditional check in my plugin file.

global $  template;  if('datatables-template.php' == $  template){     //load script } 

Question: How can I check if the page has set the specific page template in page attributes, in my case datatables-template.php and load script explicit for that page?

Template Monster…your opinion ?

Hi Friends,

I was looking at the 100's of Templates on TM and was wondering 'how difficult is it' to work with them? (they have some very nice templates to choose from).

  • I've read some bad reviews about their WordPress themes…but what about their HTML sites…has anyone tried successfully to use their HTML Templates?
  • Anyone have an opinion on their products?

thanks very much!

Add custom admin menu item for pages using a certain template

I am looking to add a new, custom menu item to the WordPress admin sidebar that displays pages that use a certain template. For example: a group of pages uses the template called “Retailer Sendout” (page-retailer-sendout.php) would be displayed below the default “Pages” top-level menu item.

I have tried the following URL combinations, but none of them have worked so far.

  • http://domain.test/wp-admin/edit.php?post_type=page&page_template=page-retailer-sendout
  • http://domain.test/wp-admin/edit.php?post_type=pagetemplate=page-retailer-sendout
  • http://domain.test/wp-admin/edit.php?post_type=page&page_template=retailer_sendout

I have also tested some admin menu customization plugins, but they do not offer the ability to link to pages with a specific template name.

I am comfortable with adding a custom function to the theme’s functions.php file, but I do not know where to start.

Any help is greatly appreciated.

Change default template in the block editor (Gutenberg)

I want to change the default template for my pages to a template called fullwidthpage.php.

I have seen this question posted and answered for pre-Gutenberg WordPress, but I have not found a working answer for Gutenberg WordPress (version 5.3.2 at the time of this question).

This is the non-working answer I found. When I try the non-working answer the template is set to fullwidthpage.php but when I try to update the page I get a message that says “Updating failed.”

Why is client requesting error template

I’ve noticed in my logs that after a client requests a page from my WP website, there is a second request like this:


What is this second request for, and why is it happening?

Help: I would like to download a basic template for a hyperlink favs page

Hi this is a strange request.

Where can I download a premade single page of text hyper links?

Basically I would like to open this file each time and set it as my home page.

I have a lot of favorites, favs bar is too small. I would like a one pager.

If it has a cool background that would be even better.