How To Keep A PHP5.6 Website (Or Lower) Online With Ease

HardenedPHP hosting for old PHP versions

Picture this!

You have spent years, tons of time, and money creating a website.

But technology evolves.

As it does, you discover that the PHP version the website is using is no longer compatible with the website framework, the plugins/extensions, and/or theme/templates.

You took a look, ran some tests, and lo and behold, the website goes down every time you switch to a new upstream supported PHP version.

Kinda a dilemma you find yourself in, huh.

And to make things even more tricky, you see no clear upgrade path.

Today, we are reaching out to tell you that there is an option.

You see, we have been providing a service called HardenedPHP hosting service.

Our HardenedPHP supports using older versions of PHP.

This service is capable of hosting (at the time of this writing):

  • PHP 4.4.9 (not really recommended to be used for any production website but available if you must)
  • PHP 5.1
  • PHP 5.2
  • PHP 5.3
  • PHP 5.4
  • PHP 5.5
  • PHP 5.6
  • PHP 7.0
  • PHP 7.1
  • PHP 7.2
  • PHP 7.3
  • PHP 7.4
  • PHP 8.0
  • PHP 8.1

But there is more.

This service also patches these PHP versions against known vulnerabilities.

That means no script re-writes.

No website breakage with a forced upgrade.

All without compromising your website security.

If you ever have the need for the service, check out and use our HardenedPHP hosting packages to ensure maximum security and flexibility.

Possible RCE Vulnerability In Chamilo LMS Patched

Chamilo LMS at Web Hosting Magic

mPDF is a PHP library that generates PDF files from UTF-8 encoded HTML.

Chamilo uses this library to convert HTML to PDF.

It has been discovered that this can be abused in all 1.11.* versions by anyone able to edit the HTML (so with edition permissions) to trigger a Remote Code Execution vulnerability.

Softaculous, a 1-click app installer has released an update for Chamilo to patch this.

Customers installing new Chamilo applications will use the updated version.

While existing installations were not updated (since the current Chamilo version number is the same), Chamilo believes there are enough conditions and features in Chamilo to mitigate or remove this issue.

There is every reason to believe so as the team behind Chamilo LMS has a great track record for fixing reported security issues & publishing fixes prior to the official publication of the vulnerabilities on official sites.

So when the Chamilo team releases a new version (including the Chamilo 2.0 which is still in development), Softaculous will release the new version.

And existing users can then upgrade their installations to the latest version with the patch.

For more information on the nature of this vulnerability, please visit

If you want to manually tweak your files, then visit

Note that this is not limited to Chamilo only.

It is an issue that affects any application using the library.

Chamilo is a learning management system (LMS) and web application often used by schools and educational institutions.

If you would love to know more about this LMS, please visit to learn more.

Softaculous automates the installation of web applications to a website so that you can focus on using your apps, rather than spending time on installing/managing them.

cPanel's Paper Lantern Theme Deprecation

cPanel Jupiter Theme

We understand that some of our customers prefer Paper Lantern because of its visual icons.

And until now, customers have had the ability to switch between the two themes that cPanel provides: Paper Lantern and Jupiter.

However, the cPanel team has deprecated the Paper Lantern theme.

So we will be switching all cPanel accounts to the new Jupiter theme on Friday, the 7th of February 2022.

If you would want to switch to Jupiter before then, please log in to your cPanel.

Take a look at the upper right side of the cPanel interface (the General Information panel).

You will be able to select Jupiter as your default cPanel theme from the drop-down menu.

You can read more about the Jupiter theme by visiting

As always, we're available 24/7 and will be here to assist you if you need help getting this done.

Please stay safe and healthy.

WordPress Toolkit Backup/Restore MySQL 8.0 Database Issue

It was recently discovered that databases with special functions in MySQL 8.0 fail to backup. 

This is due to a change in MySQL 8.0 when handling specific types of data. 

The MySQL documentation states the following:

Incompatible Change: Access to the INFORMATION_SCHEMA.FILES table now requires the PROCESS privilege.

This change affects users of the mysqldump command, which accesses tablespace information in the FILES table, and thus now requires the PROCESS privilege as well. Users who do not need to dump tablespace information can work around this requirement by invoking mysqldump with the --no-tablespaces option.

This error is specific to users created under cPanel accounts, for use with applications (such as DB_USER variable in WordPress wp_config.php). 

There is no known workaround to allow this to function in the WordPress Toolkit though the WordPress Toolkit developers are aware of the issue.

Until they release a solution for this issue, please use either:

  1. PHPMyAdmin
  2. cPanel's Backup Wizard or 
  3. Jetbackup

to take backups of MySQL databases of your WordPress websites.

WordPress Database Malware Infection Clean-up Made Simple


Database infections are destructive.

But even more so, they can be a persistent threat. 

With over 30% of all malicious files caused by this kind of infection, cleaning them up can be very tasking to you, the website owner.

The vector of infection can be a situation:

  • where a developer copies and pastes a code without understanding what it actually does.
  • via an installed plugin or extension.
  • or a deliberate infestation that occurred because the website owner has not enforced available two-factor authentication and someone gains access to his or her system.

It doesn't matter how this happens.

One thing that is certain is that this often stays hidden and the authors can selectively call them to function without anyone being any wiser.

But even more so is that the account will stay compromised and will cause malicious files to keep on reappearing.

Today, we are announcing a Malware Database Scanner feature.

Our Malware Database Scanner gets to the bottom of such problems and eliminates those DB infections.

It is a solution designed to get to the bottom of the problems and eliminate those DB infections.

MDS automatically uses information from WordPress configuration files to get DB connection details for each CMS. 

Then it safely and reliably backs up suspicious DB data ensuring that each step can be unmade in case an issue arises.

This happens 100% out of sight without you needing to do anything at all.

No SQL knowledge, no connection strings, passwords, etc needed.

For the moment, only WordPress databases are supported.

But it is good to know that all WordPress CMS hosted on our systems have access to this feature.

But the feature will be extended to include all content management systems (CMS) once released.

Please note that while this has been enabled, it is still a beta feature.

Our team (alongside the CL engineers) is closely monitoring its performance and hoping that it will help protect you even better.

If you noticed any odd database behavior, do let us support team know at once.

Thanks and have a beautiful and wonderful weekend.

Recently Updated Web Applications

Our web hosting platform gives you the capability to do more with the best web applications.

And these are always updated to keep you safe.

These are the current ones updated this week:

Mahara has been updated to version 21.04.2. Mahara is an open-source e-portfolio system with a flexible display framework. To install visit our Mahara web hosting packages.

UVdesk has been updated to version 1.0.18. UVdesk community helpdesk project skeleton packaged along with the bare essential utilities and tools to build and customize your own helpdesk solutions.

Bugs package has been updated to version 1.87o. Bugs is a simple issue tracking for teams.

CE Phoenix package has been updated to version CE Phoenix is a powerful e-commerce shop ready to use out of the box, putting you online and in full control of your business.

Symfony3 has been updated to version 4.4.33. Symfony aims to speed up the creation and maintenance of web applications and to replace the repetitive coding tasks with power, control, and pleasure.

Symfony has been updated to version 5.3.10. Symfony aims to speed up the creation and maintenance of web applications and to replace the repetitive coding tasks with power, control, and pleasure.

WHMCS has been updated to version 8.3.1. WHMCS is an all-in-one client management, billing, and support solution for online businesses. WHMCS handles everything from signup to termination, with automated billing, provisioning, and management.

To install visit our WHMCS web hosting packages.

Pimcore has been updated to version 10.2.3. Pimcore is a powerful and robust Zend Framework-based PHP content management system (WCMS) for creating and managing digital content and assets.

To install visit our Pimcore web hosting packages.

TastyIgniter has been updated to version 3.1.1. TastyIgniter is a free open source restaurant ordering and management system. TastyIgniter provides a professional and reliable platform for restaurants wanting to offer customers ways to order food online.

Chevereto Free has been updated to version 1.5.1. Chevereto Free is an application that allows you to set up your own image-sharing website.

DHTMLX has been updated to version 7.2.5. DHTMLX Suite is a JavaScript library that provides a complete set of Ajax-powered UI components to build rich web apps.

UIkit LogoUIkit has been updated to version 3.8.0. UIkit A lightweight and modular front-end framework for developing fast and powerful web interfaces.

LEPTON has been updated to version 5.3.0. LEPTON is an easy-to-use but full customizable Content Management System (CMS). LEPTON enables you to run nearly all the websites most others current CMS promises but never deliver.

To install visit our Lepton CMS web hosting packages.

GRAV has been updated to version 1.7.24. Grav is a modern, fast, simple, and open-source flat-file CMS. Packed to the gills with amazing features and tools, coupled with heaps of detailed documentation, Grav will make you look like a hero developer. To install visit our Grav web hosting packages.

Invoice Ninja has been updated to version 5.3.29. Invoice Ninja was built to serve freelancers and business owners with a complete suite of invoicing & payment tools to advance your business.

To install visit our Invoice Ninja web hosting packages.

For all others, create a web hosting account and install over 430 web applications with just a click.

Lastly, WordPress Toolkit Deluxe is now included as part of the cPanel & WHM license.

Every cPanel & WHM web hosting package now automatically have access to the Deluxe feature-set, providing enhanced security, cloning, staging, smart updates, and more.

WordPress Toolkit Deluxe Available To All Accounts

WordPress Toolkit Deluxe is now a standard hosting feature for all paying hosting accounts at Web Hosting Magic.

WordPress Toolkit is an all-in-one WordPress management solution for WordPress® installations.

better WordPress hosting with WordPress Toolkit Deluxe

WordPress Toolkit makes working with WordPress easier even if you have 1000 of them installed.

With WordPress Toolkit Deluxe, you get:

  • feature-rich & hassle-free management of WP websites, with plugin & theme set management.
  • staging and cloning functionality make experimenting and testing updates easier than ever.
  • advanced security features such as smart updates to ensure the safety of your websites.

To use WordPress Toolkit, visit the Domain section of your cPanel.

If you are unable to see WordPress Toolkit, use the search field in cPanel to look for it.

As recommended before, do not use Softaculous WordPress Manager at the same time with WordPress Toolkit.

Elect to go with one: Softaculous WordPress Manager or WordPress Toolkit Manager.

We hope that this will make your WordPress hosting experience even better.

If you are not a customer yet, please visit our web hosting plans at ⁣ to gain access to a better WordPress hosting with WordPress Toolkit Deluxe.

How To Turn On ModPagespeed For Your Domain

mod_pagespeed, a Google web server module that automatically optimizes and boosts your site performance is now available to all web hosting accounts.

Web Hosting Magic mod_pagespeed web hosting

While it is available to be used, customers have to explicitly enable it on their domains and websites to start reaping its benefits.

Before enabling mod_pagespeed for any domain, we highly recommend that you double-check to ensure that it has a valid SSL/TLS certificate (which by the way is FREE to all web hosting accounts).

How To Turn On ModPagespeed For Your Website

To enable mod_pagespeed on your domain:

Log in to cPanel

Select File Manager from the Files section.

Select the .htaccess file and click on Edit

If the file is not visible, configure File Manager to show hidden files.

how to enable htaccess file in cPanel

If you are still unable to see a .htaccess file after toggling File Manager to show hidden files, then you need to manually create one.

Once you have opened your .htaccess file, add the following to the rule found at to the file.

Save to close the file then visit the website to make sure that everything is OK.

How To Check To See If ModPageSpeed Working

You can easily verify it works either by:

  • reviewing the response headers via your favorite browser's Developer Tools
  • checking for the headers using the curl command:
    curl -v --silent 2>&1 | grep pagespeed
  • viewing your web page source code and looking for instances of "x-mod-pagespeed "
  • or using third-party tools such as or to check the header and look for ModPagespeed.

ModPagespeed comes with standard core filters that are configured to be safe for most websites.

If you are adding additional filters, we assume that you understand the risk.

We highly recommend that you try everything out in a development environment before enabling mod_pagespeed on a live website.

If you discover after enabling mod_pagespeed that your website is having issues, please disable mod_pagespeed.

If you are not a customer yet, please visit our web hosting plans at ⁣ to gain access to a better web hosting service with mod_pagespeed.

How To Optimize Your PHP Website Using PHP X-Ray

The Web Hosting Magic team is happy to announce that our PHP optimization tool called PHP X-Ray has exited beta testing and is now available to customers.

You know that feeling you get when you have done everything you could to optimize your PHP website performance, and still, nothing seems to work.

As a good webmaster, you have gone through the code, done everything you could, and even reinstall the CMS software.

You just can't seem to nail the cause of the sluggish-performing website which can be because of:

  • poorly-coded plugins & theme
  • slow database queries
  • poorly-written code functionality
  • external calls
  • slow APIs
  • and even possibly spikes in website traffic.

The fact is that without a dedicated tracing tool that easily plugs into your CMS and analyzes the site to help you identify the root cause, resolving this might be like shooting in the wind and hoping something will stick.

Enter PHP X-Ray.

PHP X-Ray (located in the Software section) is a tool you can use to monitor and diagnose performance in content management systems (CMS) applications such as WordPress, Joomla, or Drupal easily without affecting uptime.

So instead of tediously combing through web application code and plugins, you can scan your website, identify performance bottlenecks in case of a slow website and resolve them swiftly.

How To Find Your Slow Website Issue Using PHP X-Ray

For accounts or hosting packages with PHP X-Ray enabled, all you need to do is to:

  1. Log in to your cPanel and scroll down to Software.
  2. Click on PHP X-Ray and when the page loads, create a tracing task. If you are unable to see the tool in Jupiter, please change your theme to paper_lantern.
  3. Specify the site URLs or domains that have performance issues by selecting the domain from the drop-down list. To specify URL or wildcard, end-users should use the input field next to the domain. Please note that the URL option should be a valid URL of the domain that exists on your current hosting account. The field supports wildcard matching. Click How to use special characters to learn more about wildcard matching.
  4. Click Run, then visit the site and perform an action.

For instance, you can submit a form on the site to perform a POST request, which will trigger PHP X-Ray data collection.

Now return to the tracing dashboard to review feedback.

You will see the task in the list of tracing tasks.

PHP X-Ray will sort requests by order of the slowest requests at the top so that you can prioritize issues.

View the Details page to get additional information about the performance issue and feedback on the root cause.

Let's say that a WordPress plugin is using extensive resources for the request, you will find the details on this page.

All you have to do is to disable the plugin in the CMS administrative dashboard.

Revisit the site, and performance should improve.

The Details page in the trace dashboard should also show no performance issues.

We hope that this will help you optimize your website without the need to spend a fortune on doing just that.

Not yet a customer yet?

Get one of our budget-friendly web hosting packages at

Behold Jupiter, Our New cPanel Theme

We are delighted to introduce you to our new cPanel theme that is designed to improve the cPanel interface for both new/experienced users and cPanel more user-friendly.

The name is called Jupiter and if you log in to your cPanel, switch to the new theme, you will notice on the side-pane that it now has two main pages: the Tools page and the Solutions page.

The Tools Page lists cPanel’s applications and grouped them into categories. Like in Paper Lantern, you can click on and drag these groups to arrange them in any order. On the right sidebar, the General Information and Statistics panels display website and server information at a glance.

The Solutions Page is created with first-time cPanel users in mind. It is designed to guide you on how to use cPanel effectively and efficiently. Experienced users may also find this page to be a valuable source of information.

On the Solution page, the top twenty questions asked by our users are listed.

Clicking on any of these questions will take you to our public documentation to help you find a solution to your issue.

If you don’t see the problem you are experiencing, we have also included links to our documentation at

The Main Menu allows you to easily switch between these two pages.

While Jupiter is now the default for all newly-created accounts, customers with existing accounts can choose the one you are most comfortable with or switch between these two modern user interfaces.

Note: Before proceeding with the theme switch, please note that some plugins that we provide haven't been configured to work with the new Jupiter theme. If you are unable to see or use the JetBackup, Softaculous, etc after switching to Jupiter, please switch back to Paper_Lantern/Glass to use them.

In the Paper Lantern theme – From the cPanel interface, select your theme in the General Information panel from the drop-down menu:

cPanel Paper_Lantern Theme

In the Jupiter theme – From the Tools page in the cPanel Interface, select your theme in the General Information panel from the drop-down menu:

cPanel Jupiter Theme

We hope that you will find Jupiter as useful as we believe you would and have a great weekend!

Show Previous EntriesShow Previous Entries