4.23.73
- Added cleanup for old _session files, fxed hidden files exception to the skip by extention option and updates to manual session files when PHP sessions are not saves, and checked code for compatibility with WordPress 6.7.1.
4.23.71
Set autoload to false on the large values in wp_option, added exception to never skip hidden files, and checked code for compatibility with WordPress 6.6.2.
4.23.69
Updated Brute-Force Login Protection to integrate better with login forms from other plugins, added option to hide the Brute-Force Login Protection logo on the login page, and checked code for compatibility with WordPress 6.6.
4.23.68
Updated Brute-Force Login Protection to integrate better with login forms from other plugins, fixed static wp_posts table name in whitelist query, and checked code for compatibility with WordPress 6.5.5 and ClassicPress 2.1.1.
4.23.67
Upgraded Brute-Force Login Protection and the Quick Scan of Core Files, added custom Whitelist, fixed session conflict with REST API, and checked code for compatibility with WordPress 6.5.4 and ClassicPress 2.1.0.
4.23.57
Removed session incompatibilities within the Brute-Force Login Protection that failed when other plugins had already output page headers.
4.23.56
Upgraded Brute-Force Login Protection, restricted definition updates to admin users, improved the Nonce tokens for better security (thanks to Patchstack), and a few other minor code changes for servers using reverse proxy and code compatibility for WordPress 6.4.3 and ClassicPress 1.7.2.
4.21.96
Fixed another Undefined Index Warning, improved timing of registration check, and added an option to manually recheck the registration status.
4.21.95
Fixed the Undefined Index Warning created in the last release.
4.21.94
Improved error handling for better scan completion and checked code for compatibility with WordPress 6.3 and ClassicPress 1.6.0.
4.21.93
Fixed the Undefined Index Warning when the Brute-Force Login Protection is invoked in certain situations and checked code for compatibility with WordPress 6.2.2 and ClassicPress 1.5.3.
4.21.92
Fixed the Uncaught Value Error in mb_regex_encoding, and other minor PHP Warnings about Undefined Indexes.
4.21.91
Fixed some HTML formatting issues and a JavaScript error in the scan engine.
4.21.90
Fixed array compatibility with older versions of PHP.
4.21.89
Added more late escapes and sanitizated all _SERVER variables and checked code for compatibility with ClassicPress 1.5.0.
4.21.88
Added late escapes to variables that were already escaped as requested by Code review team and fixed a PHP warning about is_dir.
4.21.87
Code review and cleanup, added more sanitization and fixed an error when attempting to unserialize an array.
4.21.86
Improved the removal of database injections when values are serialized, and fixed a vulnerability in using unserialize with Class Objects, as well as some other PHP warnings about undefined indexes.
4.21.85
Prevented infinite looping on recursive sub-directories and checked code for compatibility with WordPress 6.1.1 and ClassicPress 1.4.4.
4.21.84
Removed the no_error_reporting debug option and checked compatibility with WordPress 6.0.2 and ClassicPress 1.4.2.
4.21.83
Fixed XSS vulnerability, plus other minor improvements and compatibility with WordPress 6.0.1 and ClassicPress 1.4.2.
4.21.74
Updated code with various minor improvements to efficiency and compatibility with WordPress 6.0.
4.20.96
Fixed XSS vulnerability by removing unsanitized QUERY_STRING, cleaned up Quarantine code, and checked code for compatibility with WordPress 5.9.2.
4.20.95
Added more sanitization and validation to all user data entered for better security and checked code for compatibility with WordPress 5.9.
4.20.94
Fixed an XSS vulnerability and checked code for compatibility with WordPress 5.8.3.
4.20.93
Fixed undefined variable warning and updated code for compatibility with PHP version 8.0.
4.20.92
Added German translation, improved firewall compatibility with Apache, fixed session check in Site Health for REST API compatibility, and checked code compatibility with WordPress 5.8.1 and ClassicPress 1.3.1.
4.20.72
Updated registration form, fixed session check, and removed older code from WordPress Repository.
4.20.59
Various minor bug fixes, added Core Files Definitions for ClassicPress, and tweaked code for better compatibility with WordPress 5.7.2 and ClassicPress 1.2.0.
4.19.69
Fixed a JavaScript error caused by a new French translation and checked code for compatibility with WordPress 5.4.1.
4.19.68
Updated some external links and tweaked code for better compatibility with PHP 7.4 and WordPress 5.4.
4.19.50
Added even more error handling to the DB Scan for low memory_limit, modified the Directory Scan Depth to accept 0 as way to skip the Directory Scan, and added some Help tips to some of the options on the Settings page.
4.19.44
Updated links, added more error handling to the DB Scan, various performance improvements, fixed path to work on Windows servers and a few minor bugs causing PHP Notices, and weaked code for compatibility with WP 5.3 (latest release).
4.18.76
Cleaned up the Nonce Token code and Quarantine page, fixed recovery link, and added debugging for login errors plus WP head and footer Hooks.
4.18.74
Fixed a bug in the Nonce Token Errors that was created by changes in the last release.
4.18.71
Added wp_options table to the db_scan and fixed a few minor bugs in the quarantine view, and changed some wording and checked code for compatibility with WP 5.2.1 (latest release).
4.18.69
Added warning message about vulnerability in yuzo-related-post plugin, updated Quarantine interface with re-scan/re-clean feature, fixed bug in scan depth array that produced PHP Notices, changed some wording and other minor fomatting issues, and checked code for compatibility with WP 5.2.
4.18.63
Fixed a major bug in the Firewall updates that could cause a False Positive lockout.
4.18.62
Fixed a few minor bugs and updated code for compatibility with WP 5.1.1 (latest release).
4.18.52
Added a whole new DB Scan category, updated Firewall landing page, removed some old code that was no longer needed, clear cache files before running the Complete Scan,, and updated code for compatibility with WP 5.0.2 (latest release).
4.17.69
Updated code for compatibility with WP 4.9.8, fixed PHP Notice and escaped single-quotes in translated strings.
4.17.68
Updated code for compatibility with WP 4.9.7, removed dashicon from Settings link and the broken vote WORKS link, and reordered priorety on fixing Known Threats.
4.17.58
Updated code for compatibility with WP 4.9.4, fixed dashicons sizing in css, add ability to update registration email from within the plugin settings, and cleaned up expired nonce tokens left behind from an older version.
4.17.57
Updated code for compatibility with WP 4.9.3, fixed registration form and alternate domain for definition updates to work on HTTPS, and fixed the wording on the Title Check error message.
4.17.44
Added Title check to make sure it does say you were hacked, updated code for compatibility with WP 4.8.3 and fixed Undefined variable error in Quarantine and an XSS vulnerability in nonce error output.
4.17.29
Changed the definition update URL to only use SSL when required, and updated PayPal form for better domestic IPN compatibility.
4.17.28
Added the Turkish translation thanks to Umut Can Alparslan, improved the auto update feature, and fixed the admin username change feature on multisite installs (Plus many other improvement from v4.16.X: see Changelog for details).
4.16.17
Removed Menu Item Placement Options that were deprecated in WP 4.5, Added firewall options for better compatibility with WP Firewall 2, and fixed an XSS vulnerability in the debug output of the nonce token (Plus many other improvement from v4.15.X: see Changelog for details).
4.15.16
Created automatic definition updates that include WordPress Core files, more improvements to the Brute-Force protection patch (Plus many other improvement from v4.14.X: see Changelog for details).
4.14.47
Major upgrade to the protection for Brute-Force attempts, and a bug fix for resetting the permissions of read-only files (Plus many other improvement from v3.X: see Changelog for details).
3.07.06
Added SSL support for definition updates and upgraded the Whitelist feature (Plus many other improvement from v1.3.X: see Changelog for details).
1.3.02.15
Improved security on the Quarantine directory to fix the 500 error on some servers (Plus many other improvement from v1.2.X: see Changelog for details).
1.2.03.23
First versions available for WordPress (code removed, no longer compatible).