Blog Post Options

Header, Title Bar, Sidebar and Footer options

For single post pages you can apply all options described for regular pages.

Featured Image

The featured image is displayed: above the post title on the relevant post page, as corresponding post preview in any blog (list of posts) by default.

Featured Image Layout

This option sets appearance of Featured Image at the corresponding post page (see screenshots below). Note that this option overrides the global Featured Image Layout option from Theme Options.

Post Formats

A Post Format is used by the theme to differ appearance of a single post for better usability. You can set (or change) the needed format when adding a new post (or editing the existing one). Impreza includes the following post formats by default

Standard format

This is a default post format in WordPress.

Video format

It used to display live video instead of featured image as post preview. Post with "Video" format uses the first found video link (or embed) in the post content.

Gallery format

It used to display image slider instead of featured image as post preview.

Audio format

It used to display live audio instead of featured image as post preview. Post with "Audio" format is equivalent to video format for audio links (or embeds). Please check this table for music from what sites you can use. Note: only Classic and Masonry blog layouts will display the live audio for posts with "Audio" format. All other layouts will display featured image (if it set). So we recommend to add Featured Image for every post with "Audio" format.

Image format

It used to display the first found image in the post content instead of featured image. Note in that case the displayed image won't be resized, so it could be shown ugly in some blog layouts.

Quote format

It used to display the post content in a bolder way than standard posts typically do, this format is good to highlight some inspirational quotes. Note that post with "Quote" format has some specific appearance in all blog layouts: Post uses its title as quote author Post doesn't display date, comments number, post author, tags and categories Post doesn't have a link to itself, so site users cannot open this post page Post still has the ability to display Featured Image (if it set) in some blog layouts

Link format

It used for external links. Post with "Link" format uses the first found link (URL) in the post content and inserts it to the title of relevant post in any blog layout. Note that post with "Link" format has some specific appearance in all blog layouts: Post title has a "external link" icon to differ from other posts Post doesn't display comments number and excerpt Post doesn't have a link to itself, so site users cannot open this post page Post still has the ability to display Featured Image (if it set) in some blog layouts

FTP

FILEZILLA

FTP is a network protocol for downloading and uploading files from your local computer to the server. If you didn't use FTP clients before, we recommend using FileZilla ,
it's free of charge and available on most popular platforms.

Download and install FileZilla.

Navigate to Site Manager and click on the New Site button. Set logon type as Normal. Then open panel in your hosting account and find a host, port, username, and password. Fill them in corresponding fields in FileZilla.

Click on Connect button. After that, a list of files and folders on the server should be available. Now you can drag-and-drop files and folders from your local computer to the server.

WINSCP

Requirements and Compatibility

To run WordPress with wow themes you need a web host, that has the minimum requirements:

• PHP version 7.2 or greater
• MySQL version 5.6 or greater OR MariaDB version 10.0 or greater
• The mod_rewrite Apache module
• HTTPS support
• max_execution_time more than 180, we recommend 300
• memory_limit at least 256M to run all plugins without issues
• wow theme is fully compatible with WordPress 4.9.1

Please make sure you are installing WordPress latest version. Click for recommend WordPress version, PHP version, MySQL version and other system information. You need to increase the PHP limits before you install themes. You can do this on your own. If you experience problems, you can contact the your hosting company. Ask them to increase the PHP limits:

1. max_execution_time 600
2. memory_limit 256M
3. post_max_size 128M
4. upload_max_filesize 128M
5. Note: Use PHP7.

WP Features

WP Security

Learn more about WordPress core software security in this free white paper. You can also download it in PDF format.

To contribute a translation or update to the white paper, make a pull request at the WordPress repository on Github.

Overview

This document is an analysis and explanation of the WordPress core software development and its related security processes, as well as an examination of the inherent security built directly into the software. Decision makers evaluating WordPress as a content management system or web application framework should use this document in their analysis and decision-making, and for developers to refer to it to familiarize themselves with the security components and best practices of the software.

The information in this document is up-to-date for the latest stable release of the software, WordPress 4.7 at time of publication, but should be considered relevant also to the most recent versions of the software as backwards compatibility is a strong focus for the WordPress development team. Specific security measures and changes will be noted as they have been added to the core software in specific releases. It is strongly encouraged to always be running the latest stable version of WordPress to ensure the most secure experience possible.

Executive Summary

WordPress is a dynamic open-source content management system which is used to power millions of websites, web applications, and blogs. It currently powers more than 27% of the top 10 million websites on the Internet. WordPress' usability, extensibility, and mature development community make it a popular and secure choice for websites of all sizes.

Since its inception in 2003, WordPress has undergone continual hardening so its core software can address and mitigate common security threats, including the Top 10 list identified by The Open Web Application Security Project (OWASP) as common security vulnerabilities, which are discussed in this document.

The WordPress Security Team, in collaboration with the WordPress Core Leadership Team and backed by the WordPress global community, works to identify and resolve security issues in the core software available for distribution and installation at WordPress.org, as well as recommending and documenting security best practices for third-party plugin and theme authors.

Site developers and administrators should pay particular attention to the correct use of core APIs and underlying server configuration which have been the source of common vulnerabilities, as well as ensuring all users employ strong passwords to access WordPress.

An Overview of WordPress

WordPress is a free and open source content management system (CMS). It is the most widely-used CMS software in the world and it powers more than 27% of the top 10 million websites¹, giving it an estimated 58% market share of all sites using a CMS.

WordPress is licensed under the General Public License (GPLv2 or later) which provides four core freedoms, and can be considered as the WordPress "bill of rights":

1. The freedom to run the program, for any purpose.
2. The freedom to study how the program works, and change it to make it do what you wish.
3. The freedom to redistribute.
4. The freedom to distribute copies of your modified versions to others.

The WordPress Core Leadership Team

The WordPress project is a meritocracy, run by a core leadership team, and led by its co-creator and lead developer, Matt Mullenweg. The team governs all aspects of the project, including core development, WordPress.org, and community initiatives.

The Core Leadership Team consists of Matt Mullenweg, five lead developers, and more than a dozen core developers with permanent commit access. These developers have final authority on technical decisions, and lead architecture discussions and implementation efforts.

WordPress has a number of contributing developers. Some of these are former or current committers, and some are likely future committers. These contributing developers are trusted and veteran contributors to WordPress who have earned a great deal of respect among their peers. As needed, WordPress also has guest committers, individuals who are granted commit access, sometimes for a specific component, on a temporary or trial basis.

The core and contributing developers primarily guide WordPress development. Every version, hundreds of developers contribute code to WordPress. These core contributors are volunteers who contribute to the core codebase in some way.

The WordPress Release Cycle

Each WordPress release cycle is led by one or more of the core WordPress developers. A release cycle usually lasts around 4 months from the initial scoping meeting to launch of the version.

A release cycle follows the following pattern²:

• Phase 1: Planning and securing team leads. This is done in the #core chat room on Slack. The release lead discusses features for the next release of WordPress. WordPress contributors get involved with that discussion. The release lead will identify team leads for each of the features.
• Phase 2: Development work begins. Team leads assemble teams and work on their assigned features. Regular chats are scheduled to ensure the development keeps moving forward.
• Phase 3: Beta. Betas are released, and beta-testers are asked to start reporting bugs. No more commits for new enhancements or feature requests are carried out from this phase on. Third-party plugin and theme authors are encouraged to test their code against the upcoming changes.
• Phase 4: Release Candidate. There is a string freeze for translatable strings from this point on. Work is targeted on regressions and blockers only.
• Phase 5: Launch. WordPress version is launched and made available in the WordPress Admin for updates.

Version Numbering and Security Releases

A major WordPress version is dictated by the first two sequences. For example, 3.5 is a major release, as is 3.6, 3.7, or 4.0. There isn't a "WordPress 3" or "WordPress 4" and each major release is referred to by its numbering, e.g., "WordPress 3.9."

Major releases may add new user features and developer APIs. Though typically in the software world, a "major" version means you can break backwards compatibility, WordPress strives to never break backwards compatibility. Backwards compatibility is one of the project's most important philosophies, with the aim of making updates much easier on users and developers alike.

A minor WordPress version is dictated by the third sequence. Version 3.5.1 is a minor release, as is 3.4.2³. A minor release is reserved for fixing security vulnerabilities and addressing critical bugs only. Since new versions of WordPress are released so frequently — the aim is every 4-5 months for a major release, and minor releases happen as needed — there is only a need for major and minor releases.

Version Backwards Compatibility

The WordPress project has a strong commitment to backwards compatibility. This commitment means that themes, plugins, and custom code continues to function when WordPress core software is updated, encouraging site owners to keep their WordPress version updated to the latest secure release.

WordPress and Security

The WordPress Security Team

The WordPress Security Team is made up of approximately 50 experts including lead developers and security researchers — about half are employees of Automattic (makers of WordPress.com, the earliest and largest WordPress hosting platform on the web), and a number work in the web security field. The team consults with well-known and trusted security researchers and hosting companies³.

The WordPress Security Team often collaborates with other security teams to address issues in common dependencies, such as resolving the vulnerability in the PHP XML parser, used by the XML-RPC API that ships with WordPress, in WordPress 3.9.2⁴. This vulnerability resolution was a result of a joint effort by both WordPress and Drupal security teams.

WordPress Security Risks, Process, and History

The WordPress Security Team believes in Responsible Disclosure by alerting the security team immediately of any potential vulnerabilities. Potential security vulnerabilities can be signaled to the Security Team via the WordPress HackerOne⁵. The Security Team communicates amongst itself via a private Slack channel, and works on a walled-off, private Trac for tracking, testing, and fixing bugs and security problems.

Each security report is acknowledged upon receipt, and the team works to verify the vulnerability and determine its severity. If confirmed, the security team then plans for a patch to fix the problem which can be committed to an upcoming release of the WordPress software or it can be pushed as an immediate security release, depending on the severity of the issue.

For an immediate security release, an advisory is published by the Security Team to the WordPress.org News site⁶ announcing the release and detailing the changes. Credit for the responsible disclosure of a vulnerability is given in the advisory to encourage and reinforce continued responsible reporting in the future.

Administrators of the WordPress software see a notification on their site dashboard to upgrade when a new release is available, and following the manual upgrade users are redirected to the About WordPress screen which details the changes. If administrators have automatic background updates enabled, they will receive an email after an upgrade has been completed.

Automatic Background Updates for Security Releases

Starting with version 3.7, WordPress introduced automated background updates for all minor releases⁷, such as 3.7.1 and 3.7.2. The WordPress Security Team can identify, fix, and push out automated security enhancements for WordPress without the site owner needing to do anything on their end, and the security update will install automatically.

When a security update is pushed for the current stable release of WordPress, the core team will also push security updates for all the releases that are capable of background updates (since WordPress 3.7), so these older but still recent versions of WordPress will receive security enhancements.

Individual site owners can opt to remove automatic background updates through a simple change in their configuration file, but keeping the functionality is strongly recommended by the core team, as well as running the latest stable release of WordPress.

2013 OWASP Top 10

The Open Web Application Security Project (OWASP) is an online community dedicated to web application security. The OWASP Top 10 list⁸ focuses on identifying the most serious application security risks for a broad array of organizations. The Top 10 items are selected and prioritized in combination with consensus estimates of exploitability, detectability, and impact estimates.

The following sections discuss the APIs, resources, and policies that WordPress uses to strengthen the core software and 3rd party plugins and themes against these potential risks.

A1 - Injection

There is a set of functions and APIs available in WordPress to assist developers in making sure unauthorized code cannot be injected, and help them validate and sanitize data. Best practices and documentation are available⁹ on how to use these APIs to protect, validate, or sanitize input and output data in HTML, URLs, HTTP headers, and when interacting with the database and filesystem. Administrators can also further restrict the types of file which can be uploaded via filters.

A2 - Broken Authentication and Session Management

WordPress core software manages user accounts and authentication and details such as the user ID, name, and password are managed on the server-side, as well as the authentication cookies. Passwords are protected in the database using standard salting and stretching techniques. Existing sessions are destroyed upon logout for versions of WordPress after 4.0.

A3 - Cross Site Scripting (XSS)

WordPress provides a range of functions which can help ensure that user-supplied data is safe¹⁰. Trusted users, that is administrators and editors on a single WordPress installation, and network administrators only in WordPress Multisite, can post unfiltered HTML or JavaScript as they need to, such as inside a post or page. Untrusted users and user-submitted content is filtered by default to remove dangerous entities, using the KSES library through the wp_kses function.

As an example, the WordPress core team noticed before the release of WordPress 2.3 that the function the_search_query() was being misused by most theme authors, who were not escaping the function's output for use in HTML. In a very rare case of slightly breaking backward compatibility, the function's output was changed in WordPress 2.3 to be pre-escaped.

A4 - Insecure Direct Object Reference

WordPress often provides direct object reference, such as unique numeric identifiers of user accounts or content available in the URL or form fields. While these identifiers disclose direct system information, WordPress' rich permissions and access control system prevent unauthorized requests.

A5 - Security Misconfiguration

The majority of the WordPress security configuration operations are limited to a single authorized administrator. Default settings for WordPress are continually evaluated at the core team level, and the WordPress core team provides documentation and best practices to tighten security for server configuration for running a WordPress site¹¹.

A6 - Sensitive Data Exposure

WordPress user account passwords are salted and hashed based on the Portable PHP Password Hashing Framework¹². WordPress' permission system is used to control access to private information such an registered users' PII, commenters' email addresses, privately published content, etc. In WordPress 3.7, a password strength meter was included in the core software providing additional information to users setting their passwords and hints on increasing strength. WordPress also has an optional configuration setting for requiring HTTPS.

A7 - Missing Function Level Access Control

WordPress checks for proper authorization and permissions for any function level access requests prior to the action being executed. Access or visualization of administrative URLs, menus, and pages without proper authentication is tightly integrated with the authentication system to prevent access from unauthorized users.

A8 - Cross Site Request Forgery (CSRF)

WordPress uses cryptographic tokens, called nonces¹³, to validate intent of action requests from authorized users to protect against potential CSRF threats. WordPress provides an API for the generation of these tokens to create and verify unique and temporary tokens, and the token is limited to a specific user, a specific action, a specific object, and a specific time period, which can be added to forms and URLs as needed. Additionally, all nonces are invalidated upon logout.

A9 - Using Components with Known Vulnerabilities

The WordPress core team closely monitors the few included libraries and frameworks WordPress integrates with for core functionality. In the past the core team has made contributions to several third-party components to make them more secure, such as the update to fix a cross-site vulnerability in TinyMCE in WordPress 3.5.2¹⁴.

If necessary, the core team may decide to fork or replace critical external components, such as when the SWFUpload library was officially replaced by the Plupload library in 3.5.2, and a secure fork of SWFUpload was made available by the security team¹⁵ for those plugins who continued to use SWFUpload in the short-term.

A10 - Unvalidated Redirects and Forwards

WordPress' internal access control and authentication system will protect against attempts to direct users to unwanted destinations or automatic redirects. This functionality is also made available to plugin developers via an API, wp_safe_redirect()¹⁶.

Further Security Risks and Concerns

XXE (XML eXternal Entity) processing attacks

When processing XML, WordPress disables the loading of custom XML entities to prevent both External Entity and Entity Expansion attacks. Beyond PHP's core functionality, WordPress does not provide additional secure XML processing API for plugin authors.

SSRF (Server Side Request Forgery) Attacks

HTTP requests issued by WordPress are filtered to prevent access to loopback and private IP addresses. Additionally, access is only allowed to certain standard HTTP ports.

WordPress Plugin and Theme Security

The Default Theme

WordPress requires a theme to be enabled to render content visible on the frontend. The default theme which ships with core WordPress (currently "Twenty Fifteen") has been vigorously reviewed and tested for security reasons by both the team of theme developers plus the core development team.

The default theme can serve as a starting point for custom theme development, and site developers can create a child theme which includes some customization but falls back on the default theme for most functionality and security. The default theme can be easily removed by an administrator if not needed.

WordPress.org Theme and Plugin Repositories

There are approximately 50,000+ plugins and 4,500+ themes listed on the WordPress.org site. These themes and plugins are submitted for inclusion and are manually reviewed by volunteers before making them available on the repository.

Inclusion of plugins and themes in the repository is not a guarantee that they are free from security vulnerabilities. Guidelines are provided for plugin authors to consult prior to submission for inclusion in the repository¹⁷, and extensive documentation about how to do WordPress theme development¹⁸ is provided on the WordPress.org site.

Each plugin and theme has the ability to be continually developed by the plugin or theme owner, and any subsequent fixes or feature development can be uploaded to the repository and made available to users with that plugin or theme installed with a description of that change. Site administrators are notified of plugins which need to be updated via their administration dashboard.

When a plugin vulnerability is discovered by the WordPress Security Team, they contact the plugin author and work together to fix and release a secure version of the plugin. If there is a lack of response from the plugin author or if the vulnerability is severe, the plugin/theme is pulled from the public directory, and in some cases, fixed and updated directly by the Security Team.

The Theme Review Team

The Theme Review Team is a group of volunteers, led by key and established members of the WordPress community, who review and approve themes submitted to be included in the official WordPress Theme directory. The Theme Review Team maintains the official Theme Review Guidelines¹⁹, the Theme Unit Test Data²⁰, and the Theme Check Plugin²¹, and attempts to engage and educate the WordPress Theme developer community regarding development best practices. Inclusion in the group is moderated by core committers of the WordPress development team.

The Role of the Hosting Provider in WordPress Security

WordPress can be installed on a multitude of platforms. Though WordPress core software provides many provisions for operating a secure web application, which were covered in this document, the configuration of the operating system and the underlying web server hosting the software is equally important to keep the WordPress applications secure.

A Note about WordPress.com and WordPress security

WordPress.com is the largest WordPress installation in the world, and is owned and managed by Automattic, Inc., which was founded by Matt Mullenweg, the WordPress project co-creator. WordPress.com runs on the core WordPress software, and has its own security processes, risks, and solutions²². This document refers to security regarding the self-hosted, downloadable open source WordPress software available from WordPress.org and installable on any server in the world.

Appendix

Core WordPress APIs

The WordPress Core Application Programming Interface (API) is comprised of several individual APIs²³, each one covering the functions involved in, and use of, a given set of functionality. Together, these form the project interface which allows plugins and themes to interact with, alter, and extend WordPress core functionality safely and securely.

While each WordPress API provides best practices and standardized ways to interact with and extend WordPress core software, the following WordPress APIs are the most pertinent to enforcing and hardening WordPress security:

Database API

The Database API²⁴, added in WordPress 0.71, provides the correct method for accessing data as named values which are stored in the database layer.

Filesystem API

The Filesystem API²⁵, added in WordPress 2.6²⁶, was originally created for WordPress' own automatic updates feature. The Filesystem API abstracts out the functionality needed for reading and writing local files to the filesystem to be done securely, on a variety of host types.

It does this through the WP_Filesystem_Base class, and several subclasses which implement different ways of connecting to the local filesystem, depending on individual host support. Any theme or plugin that needs to write files locally should do so using the WP_Filesystem family of classes.

HTTP API

The HTTP API²⁷, added in WordPress 2.7²⁸ and extended further in WordPress 2.8, standardizes the HTTP requests for WordPress. The API handles cookies, gzip encoding and decoding, chunk decoding (if HTTP 1.1), and various other HTTP protocol implementations. The API standardizes requests, tests each method prior to sending, and, based on your server configuration, uses the appropriate method to make the request.

Permissions and current user API

The permissions and current user API²⁹ is a set of functions which will help verify the current user's permissions and authority to perform any task or operation being requested, and can protect further against unauthorized users accessing or performing functions beyond their permitted capabilities.

White paper content License

The text in this document (not including the WordPress logo or trademark) is licensed under CC0 1.0 Universal (CC0 1.0) Public Domain Dedication. You can copy, modify, distribute and perform the work, even for commercial purposes, all without asking permission.

A special thank you to Drupal's security white paper, which provided some inspiration.

Additional Reading

• WordPress News https://wordpress.org/news/
• WordPress Security releases https://wordpress.org/news/category/security/
• WordPress Developer Resources https://developer.wordpress.org/

---

Authored by Sara Rosso

Contributions from Barry Abrahamson, Michael Adams, Jon Cave, Helen Hou-Sandí, Dion Hulse, Mo Jangda, Paul Maiorana

Version 1.0 March 2015

---

https://wordpress.org/about/security/

TROUBLESHOOTING WORDPRESS

1. TROUBLESHOOTING WORDPRESS IN 60 SECONDS
2. Wordpress Problem - Broken Image Link Issue
3. How To Reset A WordPress Website Back To Default

TROUBLESHOOTING WORDPRESS IN 60 SECONDS

WordPress site problems can have many causes, but even so, a few basic steps will help you catch most of them. Here’s how to troubleshoot WordPress sites in 60 seconds!

Wordpress Problem - Broken Image Link Issue

How To Reset A WordPress Website Back To Default

Setup → Installing WordPress

WordPress is well-known for its ease of installation. Under most circumstances installing WordPress is a very simple process and takes less than five minutes to complete. Many web hosts now offer tools (e.g. Bluehost, mediatemple) to automatically install WordPress for you. However, if you wish to install WordPress yourself, click below button to read about Famous 5 Minute Installation.

• Things to Know Before You Begin Installing WordPress
• The Famous 5-Minute Installation
• Detailed Installation Instructions
• Common Installation Problems
• WordPress in Your Language
• Installing WordPress in Your Language
• How to Install Multiple Blogs
• How to Install on Your Own Computer
• Easy 5 Minute WordPress Installation on Windows
• How to Install with Amazon's Web Services (AWS)
• Getting Started with WordPress (much more installation info)

Setup → Theme Installation

You can install the theme in two ways: via a WordPress theme upload function or via FTP.

1. Installing through wordpress
2. Uploading through FTP (File transfer protocol)

Installing a theme through wordpress is quite a simple process. After you have logged into wordpress account and are ready to go, in the admin panel’s sidebar navigate to appearance and then select themes. After that, click on the install themes tab and select upload from the navigation bar right below it. Click “choose file” button and locate your theme zip file (Nucleon.zip) then hit install now. After Nucleon has been installed locate and click activate. Please be informed that you should not upload the whole item you have downloaded from Themeforest as you will get an error of broken stylesheet file. Instead locate the Nucleon.zip file inside the main file you have downloaded.

Installation via FTP

• Step 1: Connect to your hosting via FTP software
• Step 2: Unzip the archive Impreza.zip on your computer
• Step 3: Upload the extracted theme folder into wp-content/themes in your WordPress installation

The recommendation for advanced users or people that always like to add a high level of customization is to activate the Child Theme. Also, you can quickly set up your theme same way as our demo site using Demo Content.

THEME INSTALLATION VIA WORDPRESS ADMIN PANEL

• Step 1 – Login to the WordPress admin panel, go to Appearance > Themes.
• Step 2 – Click on the Add New button at the top of page.
• Step 3 – Then, click Upload Theme button at the top of page.
• Step 4 – Click to Choose File and open the Main Theme folder, select themename.zip file. Click to Install Now button.
• Step 5 – Wait for theme upload to complete. Then, click to Active button.
• Step 6 – Then, install the theme plugins. Please look at the Install Plugins page.

THEME INSTALLATION VIA FTP

• Step 1 – Login to your hosting via FTP. Recommended software: FileZilla
• Step 2 – Then you download the .zip package from ThemeForest and unzip it.
• Step 3 – Open the Main Theme file and extract the themename.zip file.
• Step 4 – Then, upload the extracted themename folder to the /wp-content/themes/ directory on your FTP server.
• Step 5 – Login to the WordPress admin panel, go to Appearance > Themes and activate theme.
• Step 6 – Then, install the theme plugins. Please look at the Install Plugins page.

Installation via FTP

• Step 1: Connect to your hosting via FTP software
• Step 2: Unzip the archive Impreza.zip on your computer
• Step 3: Upload the extracted theme folder into wp-content/themes in your WordPress installation

The recommendation for advanced users or people that always like to add a high level of customization is to activate the Child Theme. Also, you can quickly set up your theme same way as our demo site using Demo Content.

Setup → Plugins Install

1- Setup → Theme Installation

1. Installing through wordpress
2. Uploading through FTP (File transfer protocol)

Installing a theme through wordpress is quite a simple process. After you have logged into wordpress account and are ready to go, in the admin panel’s sidebar navigate to appearance and then select themes. After that, click on the install themes tab and select upload from the navigation bar right below it. Click “choose file” button and locate your theme zip file (Nucleon.zip) then hit install now. After Nucleon has been installed locate and click activate. Please be informed that you should not upload the whole item you have downloaded from Themeforest as you will get an error of broken stylesheet file. Instead locate the Nucleon.zip file inside the main file you have downloaded.

Setup → Installing WordPress Importer

HOW TO DOWNLOAD THEME LAST VERSION AT THEMEFOREST?

• Step 1 – Go to xxxxx, login to website via your account.
• Step 2 – Click to here and go to Downloads page. Find the your theme from this page.
• Step 3 – Click the Download button and after choose to download All Files & Documentation.

THEME UPDATION VIA ADMIN PANEL

• Step 1 – Go to xxx Market from admin panel menu.
• Step 2 – Click to generate a personal token..
• Step 3 – Create the token code from opening page. After, copy the created code.
• Step 4 – Write created code in Token field from the Envato Market page..
• Step 5 – Click to Save Changes button.
• Step 6 – You can update theme from this panel.
• Step 7 – Login to WordPress admin panel. Go to Plugins from admin panel menu.
• Step 8 – Delete the Themename Theme: Elements and Visual Composer: Page Builder for WordPress plugins. It isn’t required for each theme. Click the here for theme reinstall plugins.
• Step 9 – After , go to Appearance > Install Plugins from admin panel menu and reinstall Themename Theme: Elements and Visual Composer: Page Builder for WordPress plugins.

This plugin can install WordPress themes and plugins purchased from ThemeForest & CodeCanyon by connecting with the Envato Market API using a secure OAuth personal token. Once your themes & plugins are installed WordPress will periodically check for updates, so keeping your items up to date is as simple as a few clicks. You can add a global token to connect all your items from your account, and/or connect directly with a specific item using a singe-use token & item ID. When the global token and single-use token are set for the same item, the single-use token will be used to communicate with the API.

Skins

• Author
• Last and Popular post TAB
• Advertisement
• Contact
• Flickr
• Social
• Popular post

Author

---

Front

Admin Panel

Last and Popular post TAB

---

Front

Admin Panel

Advertisement

---

Front

Admin Panel

Contact

---

Front

Admin Panel

Flickr

---

Front

Admin Panel

Popular Post

---

Front

Admin Panel

Social

---

Front

Admin Panel

Header Select

Wow theme currently offers 3 different Footer Styles, each with its own unique design. Every layout comes with a logo spot which powers up your web identity and a custom ad spot to maximize your income.

How To Setup The Header:

• Step 1 – Navigate to Theme Setting > Header and Footer Settings style to access the header options.
• Step 2 – Expand the Header Style section and select the desired Header template. All options will automatically load based on your selection.
• Step 3 – Click the Save Setting button

Header layout

• Stretched
• Boxed
• Boxed -Attached

How To Setup The Header layout

• Step 1 – Navigate to Theme Setting >Theme style Settings style to access the Body Layout Setting dropdown options.
• Step 2 – Expand the Header Style section and select the desired Body Layout Setting. All options will automatically load based on your selection.
• Step 3 – Click the Save Setting button

Standart Header View

Minimal Header

Top Minimal Header

Footer Select

Wow theme currently offers 4 different Footer Styles, each with its own unique design. Every layout comes with a logo spot which powers up your web identity and a custom ad spot to maximize your income.

How To Setup The Footer:

• Step 1 – Navigate to Theme Setting > Header and Footer Settings style to access the footer options.
• Step 2 – Expand the Header Style section and select the desired FOOTER template. All options will automatically load based on your selection.x
• Step 3 – Click the Save Setting button

Big Footer

Big Footer 2

Minimal Footer

Minimal Footer 2

Header Select

Wow theme currently offers 5 different Footer Styles, each with its own unique design. Every layout comes with a logo spot which powers up your web identity and a custom ad spot to maximize your income.

How To Setup The Header:

• Step 1 – Navigate to Page > page or page edit to access the header options.
• Step 2 – Expand the Header Style section and select the desired Header template. All options will automatically load based on your selection
• Step 3 – Click the update/save button

Fixed Header

Standart Header

Minimal Header

Top Minimal Header

No header

Logo & Favicon in Wow Theme

It is only required to upload one logo and it will be used in every location. Wow theme is retina ready, so your have an additional option to upload a retina logo for high resolution devices.

How to add a logo:

Logo upload:

To upload your logo, go to Theme setting >Home Setting section. Logo upload is the section where you add a logo for the desktop. Logo must be a .png or .jpg file. After finishing the upload click the Save Setting button.

Font customization

Default fonts:

The theme comes with two preset default Google Fonts: Roboto Condensed,sans-serif. This ensures out of the box functionality and cross-browser visual consistency. The fonts usage is spread on various elements like the menu, post titles, blocks title, etc. For the elements which are not defined we added a general font family on the body and paragraph(p) tags: Verdana, Geneva, sans-serif;

The icons and other small design elements (ex. social icons, menu arrows, etc.) are included in the “fontawsome” font which is located in the \wow\assets\fonts folder.

Font customization:

Wow Theme has a fully customizable Theme Fonts section where you can set custom, Google, Typekit or standard fonts, font sizes and font line heights. Everything you need to adjust your website fonts you will find under the Theme Fonts tab! Theme fonts panel section is structured in a multitude of expandable areas related to the elements you can customize. In each area, you will find loaded by default a standard font, size, line height, style, and weight. All these elements are fully customizable.

Google Fonts:

For each element from the Theme Setting > Typography you can use a different type of Google Fonts. Select the section where you want to apply the Google fonts. Google Fonts are included in the drop-down list.

Mobil Menu

Wow theme currently offers 2 different Mobil menu Styles, each with its own unique design. Every layout comes with a logo spot which powers.

• How To Setup The Mobil menu select:
• Step 1 – Navigate to Theme Setting > Mobil Menu Settings Settings options and select layout
• Step 2 – Click the Save Setting button

Simple

Advanced

Video Tutorial

Mobil Menu Skin Select Tutorial

SOCIAL MEDIA SETTINGS

• Step 1 – Go to Theme Settings from the admin panel menu.
• Step 2 – Click the Social Media tab.
• Step 3 – Open the Social Links tab.
• Step 4 – You can change the social media links from this panel.
• Step 5 – Click the Save Changes button after the process is finished..

ACTIVATING HOMEPAGE

• Step 1 – After installing theme, go to Settings > Reading from the admin panel menu.
• Step 2 – Under Front page displays, choose A static page (select below).
• Step 3 – Select a Homepage from Front page.
• Step 4 – Enter 8 or 10 number in the Blog pages show at most and Syndication feeds show the most recent input.
• Step 5 – Click Save Changes.

EDITING LIST HOMEPAGES

• Step 1 – Go to Appearance > Customize from admin panel menu.
• Step 2 – Open Home tab from left menu.
• Step 3 – You can updating homepage content from this panel.
• Setting Homepage Post Count: Go to Settings > Reading from admin panel menu. You can update homepage post count from this page.
• Setting Category For Homepage: You can use extra plugin for this feature. Click for plugin.
• Step 4 – Click Save & Publish button after process is finished.

CREATING NEW PAGE

• Step 1 – Go to Pages > Add New.
• Step 2 – You can create the new page from this panel.
• Step 3 – Click the Publish button after the process is finished.

EDITING PAGES

• Step 1 – Go to Pages > All Pages.
• Step 2 – Click to Edit button on the page title.
• Step 3 – You can update the page from this panel.
• Step 4 – Click the Update button after the process is finished..

Page Settings

Options

• Page Background Options (Background picture,background color vss)
• Page Title
• Current Page Header
• Current Page Footer
• Current Page Class (css)

Uses

• Step 1 – Go to Pages > All Pages.
• Step 2 – Click to Edit button on the page title.
• Step 3 – You can update the page from this panel.
• Step 4 – Click the Update button after the process is finished..

Sidebar for pages

• Step 1 – Go to Theme Settings > Page Setting from admin panel menu.
• Step 2 – Choose select Main Page Layout
• Step 4 – After, click to Save Changes button.

Sidebar Column

• Left Column – container at the bottom of the left sidebar.
• Right Column – container at the bottom of the right sidebar.
• Full Width – container below the content area and below sidebars

Sidebar Model for Skin

• Step 1 – Go to Theme Settings > Theme Style Settings > Sidebar Setting from admin panel menu.
• Step 2 – Choose select Sidebar model
• Step 4 – After, click to Save Changes button.

Sidebar Skin Setting (Video)

CREATING NEW POST

• Step 1 – Go to Posts > Add New.
• Step 2 – You can create the new post from this panel.
• Step 3 – Click the Publish button after the process is finished.

UPDATING POST EXCERPT

• Step 1 – Go to Posts > All Posts from admin panel menu.
• Step 2 – Click Edit button on post title.
• Step 3 – Click Screen Options from top right of page.
• Step 4 – Choose Excerpt option.
• Step 5 – Scroll to Excerpt row.
• Step 6 – Click the Update button after the process is finished.

UPDATING POST EXCERPT

• Step 1 – Go to Posts > All Posts from admin panel menu.
• Step 2 – Click Edit button on post title.
• Step 3 – Click Screen Options from top right of page.
• Step 4 – Choose Excerpt option.
• Step 5 – Scroll to Excerpt row.
• Step 6 – Click the Update button after the process is finished.

EDITING POSTS

• Step 1 – Go to Posts > All Posts from admin panel menu.
• Step 2 – Click Edit button on post title.
• Step 3 – Choose a format from the Format panel on screen left.

Post Format List

1. Video
2. Audio
3. Gallery
4. Link
5. Quote
6. Status

Video

Audio

Gallery

Link

Quote

creating new post category

• Step 1 – Go to Posts > Categories.
• Step 2 – You can create the new category from this page
• Step 3 – Click the Add New Category button after the process is finished.

Editing post categories

• Step 1 – Go to Posts > Categories
• Step 2 – Click to Edit button on the category title..
• Step 3 – You can update the category from this panel.
• Step 4 – Click the Update button after the process is finished.

Sidebar for Post Pages

• Step 1 – Go to Theme Settings > Post Settings from admin panel menu.
• Step 2 – Choose select Post List Layout Type
• Step 4 – After, click to Save Changes button.

Sidebar Column

• Left Column – container at the bottom of the left sidebar.
• Right Column – container at the bottom of the right sidebar.
• Full Width – container below the content area and below sidebars

Sidebar Model for Skin

• Step 1 – Go to Theme Settings > Theme Style Settings > Sidebar Setting from admin panel menu.
• Step 2 – Choose select Sidebar model
• Step 4 – After, click to Save Changes button.

Sidebar Skin Setting (Video)

BLOG →Configure Image Overlay Hover Effects Type

Staff

Staff

1- Provide the doctor name

2- Enter the text contents about doctor

3-Select or Add the languages, related department and service ,hospital location

Provide the doctor related information in Doctor Info meta box

Publish the staff post once it is ready.

Hospital location

Hospital location

1- Provide the location name

2- Enter the text contents about location

Provide the location related information in Location info meta box

Publish the staff post once it is ready.

Languge

Languge

1- Provide the languge name

2- Enter the text contents about location

enter the languge description

Publish the update / save it is ready.

Custom Time Slots

Admin Appointment Creation/Cancellation

Timetable and Event Schedule

• Check Timetable and Event Schedule Plugin Demo
• Please find the step-by-step instructions of working with the plugin here

Key advantages

Responsive design. It’s optimized to be viewed perfectly on different devices. A good step forward, the plugin was supplied with the ability to manually adjust the way to show your timetable on mobile devices and desktops.

A well thought-out toolkit of shortcode settings. It eliminates the difficulties of timetabling as all preferable settings can be applied in minutes. Each setting is supplied with sufficient clarifications to ensure you coordinate and edit your events fast without additional help.

Handy event filtering. The visitors can filter the timetable to display the only events they are interested in.

Color controls. Highlight important activities by presenting them in different colors. Additionally, it simplifies and speeds up the search as the needed events marked with the same color can be noticed faster even without being filtered. Various color markers can become helpful in making the timetable more colorful or in customizing it to fit your website color scheme.

More precise visual time frames. Hourly time frames are generally large enough for showing the events, but using the MotoPress Timetable plugin you still can increase them by setting the timetable to show up to 15 minutes accurate time in the left ‘time’ column.

Flexibility. If any unexpected delays or total dates’ changes take place, your timetable can bend easily in one direction or another thanks to a couple of qucik time edits in the backend.

Main features

• Several column types
• Selecting/deselecting the preferable columns and events to be displayed in the timetable
• Ability to add event tags and categories
• Ability to display the events by the appropriate categories
• Hour measure to be displayed in the left timetable column to show more accurate duration of each activity (event)
• Several filter styles: drop-down list and tabs
• Option to display/hide ‘All Events’ view mode, hours column and empty rows
• Customizable event parameters (title, time, subtitle, etc.) and the ability to display only preferable ones in the timetable
• Featured images for individual events
• Opportunity to set event URL to link it any external website
• Text align options for event blocks
• Unique IDs for multiple timetables on a single page
• Color settings for background, background hover, text, and text hover
• Export/import of your data

Credits

Plugin bundles the following third-party resources:

• GUMP, Copyright (c) 2015 wixelhq.com, MIT License
• jQuery UI, Copyright (c) 2013 jQuery Foundation and other contributors Licensed MIT
• Spectrum Colorpicker, by Brian Grinstead, MIT License
• jBox, by Stephan Wagner, MIT License
• jQuery UI Timepicker, Copyright 2010-2013, Francois Gelinas, Dual licensed under the MIT or GPL Version 2 licenses.

Timetable

Detail Page

Add Events

The events will be featured in the actual timetable and the details of each event will be displayed on its individual page.
To add a new event, please go to Timetable > Add Departmans & Event

1. Name the event.
2. Write its description. It’ll be displayed on the event’s page
3. Add time slots of the event:
   • Choose the Column this event will be displayed in. Use the dropdown menu.
   • Specify Start Time and End Time of this time slot
   • Write its description. It’ll be displayed on the event’s page just like a regular post.
   • Select the Event Head (a person responsible for the event). It’ll be shown in the timetable.
4. Apply the general settings:
   • Adjust colors. Using the color picker choose the Background Color, Background Hover Color, Text Color, Text Hover Color.
   • Set Custom Event URL to redirect the site visitor from the timetable to any external page.
   • Enable/Disable the link you set.
5. Write an excerpt if needed.
6. Click Publish or Save Draft.

Metabox

Add timetable to a page

You are able to add your timetable directly to a page or post. To do this, please navigate to Posts > Add New or Pages > Add New in your admin dashboard. Then follow these easy steps:

• Open TinyMCE.
• Find ‘TimeTable’ icon on its dashboard and click it
• Set the preferable shortcode settings.
• Click Add Timetable.

Add Columns

Once after plugin installation you should add Columns​ and only then add Events​ in order to assign them to columns​.
To add Timetable columns, navigate to Timetable > Add Column

1. Name a column.
2. Write a description.
3. Choose the column type: Simple Column, Day (any day of the week) or Date
   (exact date). Day and Date column types are connected to the present moment,
   namely, if the events take place currently or in near future, they’ll be displayed in
   the Upcoming Events widget in the sidebar.
4. Set the Column Order in the righthand menu bar. All of the created columns will be stored under Timetable > Columns

Add Events

The events will be featured in the actual timetable and the details of each event will be displayed on its individual page.
To add a new event, please go to Timetable > Add Departmans & Event

1. Name the event.
2. Write its description. It’ll be displayed on the event’s page
3. Add time slots of the event:
   • Choose the Column this event will be displayed in. Use the dropdown menu.
   • Specify Start Time and End Time of this time slot
   • Write its description. It’ll be displayed on the event’s page just like a regular post.
   • Select the Event Head (a person responsible for the event). It’ll be shown in the timetable.
4. Apply the general settings:
   • Adjust colors. Using the color picker choose the Background Color, Background Hover Color, Text Color, Text Hover Color.
   • Set Custom Event URL to redirect the site visitor from the timetable to any external page.
   • Enable/Disable the link you set.
5. Write an excerpt if needed.
6. Click Publish or Save Draft.

Metabox

Add timetable to a page

You are able to add your timetable directly to a page or post. To do this, please navigate to Posts > Add New or Pages > Add New in your admin dashboard. Then follow these easy steps:

• Open TinyMCE.
• Find ‘TimeTable’ icon on its dashboard and click it
• Set the preferable shortcode settings.
• Click Add Timetable.

Add Events

The events can be presented under separate Categories and can be further chosen in shortcode parameters. To add a new Category, please go Timetable > Event Categories.

1. Give a name to the new event category
2. Put the ‘slug’ if needed or leave it intact and the URL for the Category will be generated automatically according to the Category name.
3. To make the category a sub one, define its Parent category by choosing from the Parent drop-down list. Please note, there should be at least 1 category added earlier.
4. Fill out the Description field which will go along with the Category title.
5. When you finished setting up the Category, click the Add New Event category button on the bottom.

Add event tag

To add a new tag, please go the Timetable > Event Tags

1. Put the tag Name
2. Define the ‘slug’ to customize the URL of the item.
3. Choose the Parent tag from the drop-down list if you want to make this Tag a sub one. Please note, there should be at least 1 tag added earlier.
4. Put the Description of the tag if needed.
5. Press Add New Event Tag button on the bottom.

CREATING NEW Condition

• Step 1 – Go to Timetable > Add New Condition
• Step 2 – You can create the new post from this panel.
• Step 3 – Click the Publish button after the process is finished.

CREATING NEW Treatments

• Step 1 – Go to Timetable > Add New Treatments
• Step 2 – You can create the new post from this panel.
• Step 3 – Click the Publish button after the process is finished.

CREATING NEW Provider

• Step 1 – Go to Timetable > Add New Provider
• Step 2 – You can create the new post from this panel.
• Step 3 – Click the Publish button after the process is finished.

CREATING NEW Resource Family

• Step 1 – Go to Timetable > Add New Resource Family
• Step 2 – You can create the new post from this panel.
• Step 3 – Click the Publish button after the process is finished.

Export/Import your your data

If you have the data to import to your timetable, upload your files in .xml format via Timetable > Export / Import > Browse If you want to export the Timetable data, navigate to Timetable > Export / Import > click Export

Setup → Mega Menu Options

Creating a Simple dropdown

Creating a multi column dropdown

Creating multi column dropdown with image

Menu & Mega Menu Skin Setting

CREATING NEW MENU

• Step 1 – Go to Appearance > Menu from the admin panel menu.
• Step 2 – Click the create a new menu link.
• Step 3 – Enter the menu a name from the Menu Name area.

  Choose items like custom links, pages, and categories, from the left column to add to the menu. If you have created custom post types or custom taxonomies those too can be added to menus. If you don’t see your custom post types or taxonomies, look under the Screen Options to make sure they are checked to be Show on Screen. After items have been added to a menu, drag and drop to put them in the order you want. You can also click each item to reveal additional configuration options. You can also drag a menu item a little to the right to make it a submenu, to create menus with hierarchy. You’ll see when the position of the drop target shifts over to portray the nested placement.

• Step 4 – Select the menu location from the Menu Settings of the page bottom. Use only for the navigation menu (Header, footer etc.).
• Step 5 – Click the Create Menu button after the process is finished.

Click to detail information for menus and menu features.

EDITING MENU

• Step 1 – Go to Appearance > Menu from the admin panel menu.
• Step 2 – Choose a menu from Select a menu to edit.
• Step 3 – You can create a new menu and add a page to the menu from this panel. Choose items like custom links, pages, and categories, from the left column to add to the menu. If you have created custom post types or custom taxonomies those too can be added to menus. If you don’t see your custom post types or taxonomies, look under the Screen Options to make sure they are checked to be Show on Screen. After items have been added to a menu, drag and drop to put them in the order you want. You can also click each item to reveal additional configuration options. You can also drag a menu item a little to the right to make it a submenu, to create menus with hierarchy. You’ll see when the position of the drop target shifts over to portray the nested placement.
• Step 4 – Select the menu location from the Menu Settings of the page bottom. Use only for the navigation menu (Header, footer etc.).
• Step 5 – Click the Save Menu button after the process is finished.

Skins

• Step 1 – Go to Theme Settings > Skins from admin panel menu.
• Step 2 – Choose select skin
• Step 4 – After, click to Save Changes button.

Black Skins

Blue Skins

Blue2 Skins

Fuchsia Skins

Gray Skins

Green Skins

Hospital Skins

Minimal Skins

Orange Skins

Pink Skins

Pink2 Skins

Red Skins

Simple Skins

Logo & Favicon in Wow Theme For your skin

How to add a logo:

Logo upload:

To upload your logo, go to Theme setting >Theme Style Settings section. Logo upload is the section where you add a logo for the desktop. Logo must be a .png or .jpg file. After finishing the upload click the Save Setting button.

Tips → Visual Composer Tutorials

• Getting Started
• Learning More
• Visual Composer "How To's"
• Visual Composer Video Tutorials
• Bonus

PAGE BUILDER: VISUAL COMPOSER

Thanks to these unique features, you can manage your WordPress site content easily without spending hours and hours to keep your site up to date. Moreover – now you can build your own WordPress site without coding and getting into shortcodes which is a truly unique experience you have been waiting for. Thanks to regular updates of Visual Composer the amount of premium class features is growing making Visual Composer an ultimate must-have tool for any WordPress site owner, designer or developer. Discover capabilities behind Visual Composer – drag and drop page builder.

These extra elements comes with the theme. You can create the pages easily with this elements. Apart from these, there are more than 500 extra Visual Composer elements and WordPress widgets.

ACTIVATING VISUAL COMPOSER (PAGE BUILDER) FOR ALL POST TYPES

• Step 1 – Go to Visual Composer > Role Manager from admin panel menu.
• Step 2 – Choose Custom from Post Types dropdown.
• Step 3 – Choose post types.

• Step 4 – After, click to Save button.

WPBAKERY PAGE BUILDER (VC) UPDATE

• Step 1 – Firstly update theme to last version. Click for theme update guide.
• Step 2 – After , go to Appearance > Install Plugins from admin panel menu.
• Step 3 – Deactive WPBakery Page Builder (Visual Composer) plugin.
• Step 4 – Reinstall WPBakery Page Builder (Visual Composer) plugin. You’ll see a notification in the top of the page that says the theme needs some plugins to function properly. Click to begin installing plugin button. (If you don’t see the notification Go to Appearance > Install Plugins from admin panel menu.)

WPBAKERY PAGE BUILDER (VC) LICENCE

We buy extended licence. The plugin is licensed extended. You don’t need to enter any code for this reason.

Visual Composer → Visual Composer extra class used of

WPML: MULTILINGUAL SITE

You can use the WPML plugin for multilingual site. WPML makes it easy to build multilingual sites and run them. It’s powerful enough for corporate sites, yet simple for blogs. WPML is a plugin for WordPress. Simply put, plugins extend the functionality of the basic WordPress CMS. WPML makes WordPress run multilingual.

THEME TRANSLATION

Theme comes translation-ready with .pot file ready for translation. These files are located in the /languages folder of the main theme folder. Once you have translated the files, simply save them with the name of your language code (i.e. es_ES.po and es_ES.mo for Spanish) and place them back in the /languages folder.

• Step 1 – Login to your hosting via FTP.
• Step 2 – Go to folder to the /wp-content/themes/themename/languages directory on your FTP server.
• Step 3 – Download the themename.pot file from /languages folder.
• Step 4 – Then, open the themename.pot file via Poedit. Watch the video on this text for detailed information.
• Step 5 – Create the translation for your language.
• Step 6 – Save with your language code (such as de_DE.po/de_DE.mo or fr_FR.po/fr_FR.mo etc.).
• Step 7 – Upload translation file in the /languages directory.
• Step 8 – Open the wp-config.php file (This file is in your website root directory).
• Step 9 – Find the WPLANG word.
• Step 10 – For example if you have translated your theme in Spanish and you want to change the language of your website to French:
• Step 11 – Save and upload the file.

THEME TRANSLATION

CHANGING ENGLISH WORDS AND SENTENCES

• Step 1 – Firstly, create a new translation (PoEdit or Loco Translate). Click for theme translation guide.
• Step 2 – Change the words or sentences you want.
• Step 3 – Save file as en_US or en_GB. (en_US.mo and en_US.mo / en_GB.mo and en_GB.mo). You can set by your language set.

REGENERATE IMAGES – RESIZE

Regenerate Thumbnails allows you to regenerate the thumbnails for your image attachments. This is very handy if you’ve changed any of your thumbnail dimensions (via Settings -> Media) after previously uploading images or have changed to a theme with different featured post image dimensions.

HOW TO FIND THE MAILCHIMP ID?

1. Go to MailChimp > Forms.
2. If have a form list, you can choose a form.
3. After choose or if don’t have a form list; Look page header.
4. You can see form id from page header.
   
5. Example: Your form id is 278.

CUSTOM CSS CODES

1. Go to Appearance > Customize from admin panel menu.
2.  Open Additional CSS tab.
3.  You can enter custom CSS codes from this panel.
4. Click Save & Publish button after process is finished.

Configure Permalink Settings

HOW TO CHANGE STRUCTURE OF POST TYPE PERMALINK?

To configure permalink settings visit Dashboard » Settings » Permalinks and configure it as displayed in image below.

• Firstly, install this plugin: Custom Post Type Permalinks
• After, install this plugin: Simple Post Type Permalinks
• Go to Settings > Permalinks from admin panel menu.
• You can change permalink type from this panel.

USING WIDGETS

• Step 1 – Go to Appearance > Widgets from the admin panel menu..
• Step 2 – Drag a widget from the Available Widgets section and drop it into of the widget areas(Sidebar area)

Click to detail information for using WordPress widgets.
Click to detail information for using WooCommerce widgets.

Tips → How to Add WordPress Widgets in Accessibility Mode

If you don’t like the video or need more instructions, then continue reading. First you need to visit Appearance » Widgets screen in your WordPress admin area. The accessibility mode is hidden under the screen options menu.

There is only one option in this menu: “Enable accessibility mode”. You can activate it by pressing the tab key and pressing enter, by or clicking on it. Activating the accessibility mode will reload the Widgets screen with a new interface. This new interface allows you to add widgets using the Add link next to the widget title.