Tags: tidalvirus/wordfence
Tags
* Fix: Wordfence no longer can appear on sub-sites on multi-site inst… …alls, only on the network admin panel. * Fix: Wordfence dashboard widget only can appear on network admin dashboard in multi-site installs. * Fix: No more multiple scheduled scans on multi-site. * Fix: Fixed mixed-protocol warning if you're using SSL and Wordfence - our static assets are loaded without specifying protocol now. * Fix: Fixed issue where non-existent users were shown in dashboard widget and email summary as valid users. * Fix: Removed /e modifier in preg_replace for Diff_Renderer_Html_Array::formatLines since it is deprecated in PHP 5.5. * Fix: Removed ssl_verify => false from wp_remote_post connectivity test since some versions of cURL will throw an error since WordPress uses their own certificate bundle. * Fix: Fixed bug with activity report email date range (was one week ahead). * Fix: Removed email summary report from cron on deactivation. * Fix: Fixed an off-by-one bug in wfDirectoryIterator for maximum total files and max files per directory. * Fix: Updated our browser data to fix an issue that caused newer browsers to appear in live traffic with version 0.0. * Improvement: Updated the country database used for country blocking to April 2015 version. * Improvement: Added an additional check for disabling script execution in the uploads directory that the .htaccess file actually contains our protection code before removing it. * Improvement: Paused Live Traffic ajax request when the window/document loses focus to reduce server load. * Improvement: Better error handling when making API calls to noc1 to help our support personell help you. * Improvement: Added locked out IP's and IP's restricted through advanced blocking to the blocked IP log for dashboard and email summary. * Improvement: Excluded whitelisted IP's from dashboard and widget email summary. git-svn-id: https://plugins.svn.wordpress.org/wordfence/tags/5.3.12@1142353 b8457f37-d9ea-0310-8a92-e5e31aec5664
Dashbaord widget no longer appearing for all users. git-svn-id: https://plugins.svn.wordpress.org/wordfence/tags/5.3.11@1129213 b8457f37-d9ea-0310-8a92-e5e31aec5664
* Fix: Removed .htaccess file the previous release created in wfcache… … directory that caused problems. git-svn-id: https://plugins.svn.wordpress.org/wordfence/tags/5.3.10@1129069 b8457f37-d9ea-0310-8a92-e5e31aec5664
* Premium Feature: Password Auditing. Audit the strength of your admi… …n and user-level passwords against our GPU based auditing cluster. Easily alert users to weak passwords or force a password change. * Feature: Activity email summary. See options page to enable a weekly, bi-weekly or monthly activity summary. * Feature: Activity summary dashboard widget. * Fix: Fixed bug on plugin activation where the configuration table was being queried before it was created. * Improvement: Added .htaccess to wfcache directory. * Improvement: Switched to using wp_remote_post for Wordfence cloud API calls to improved SSL support and a more standards based approach. git-svn-id: https://plugins.svn.wordpress.org/wordfence/tags/5.3.9@1128972 b8457f37-d9ea-0310-8a92-e5e31aec5664
Customers running WP versions older than 3.9 don't support wp_normali… …ze_path(). Added support for older WP versions to fix an error being thrown. git-svn-id: https://plugins.svn.wordpress.org/wordfence/tags/5.3.8@1116976 b8457f37-d9ea-0310-8a92-e5e31aec5664
* Improvement: Updated country blocking database to the newest versio… …n (March 2015) * Improvement: Added detection for many new samples we received (thanks all!) including a nasty polymorphic infection. * Fix: Changed the way we find the plugin directory to fix a possible issue that would cause alerts to return blank plugin names. * Fix: Improved Nginx detection so that we don't accidentally detect Nginx if you're running Apache. git-svn-id: https://plugins.svn.wordpress.org/wordfence/tags/5.3.7@1116317 b8457f37-d9ea-0310-8a92-e5e31aec5664
* Feature: You can now block POST requests to your WordPress site tha… …t have an empty User-Agent and Referer header. This is a common pattern among badly written brute force bots. * Feature: Added cron viewer at bottom of Wordfence options page. The plugin we were using to help diagnose customer issues is broken. Use this instead. * Feature: Added DB table viewer at bottom of Wordfence options page. This is a read-only utility to view table names and detailed status. Also for customer diagnostic purposes. * Improvement: Code cleanup after in-depth code analysis. Removed unused functions and variables and re-indented selected code. * Fix: Fixed issue that appeared after last release where raw HTML tags were appearing in email alerts. * Fix: Tour behaved inconsistently under some conditions. Fixed. * Fix: Mismatched HTML tags in some presentation code. Fixed. * Fix: When fetching theme list the interator had the same name as the array. Fixed. * Fix: Detection for malware URLs in comments had a partial description in the issue. Was being overwritten when it should have been appended. Fixed. * Fix: Check if dns_get_record() exists before using it to avoid warnings. * Fix: If you have the wordfence security network disabled, the _wfVulnScanners table may have grown indefinitely. Fixed so it's regularly truncated. * Fix: wordfence::getLog() was private and should be public. Fixed. * Fix: Removed warning about _wfsf not being an element of GET params. Usually hidden, but in case something checks error_get_last() git-svn-id: https://plugins.svn.wordpress.org/wordfence/tags/5.3.6@1076331 b8457f37-d9ea-0310-8a92-e5e31aec5664
5.3.5 Release. * Update: Upgraded the geoIP country database to Jan 2015 version. * Improvement: Added an option to disable execution of PHP code in the uploads directory as an added level of protection. Under "Other Options" on the Wordfence options page. * Improvement: We now email you any malware URLs encountered and they won't be filtered by your spam filter because the URL is included in the alert email as an image. * Fix: Fixed an issue that would cause multiple scans to be scheduled if the plugin was disabled and then reenabled. * Fix: The name of malicious files detected are now included in the alert email sent containing your issues. git-svn-id: https://plugins.svn.wordpress.org/wordfence/tags/5.3.5@1070802 b8457f37-d9ea-0310-8a92-e5e31aec5664
* Changed FAQ link when locked out and email unlock doesn't work to c… …orrect link. * Falcon cache now creates files as mode 0644 for improved security. * Updated GeoIP database to December 2014 version. git-svn-id: https://plugins.svn.wordpress.org/wordfence/tags/5.3.4@1050681 b8457f37-d9ea-0310-8a92-e5e31aec5664
* Security fix. Thanks Matt B! * Changed what we consider to be private addresses to a smaller range of addresses. See current range at: http://docs.wordfence.com/en/How_Wordfence_handles_Private_Addresses * Fixed a warning about an undefined value which appeared after we added referer blocking in 5.3.2. git-svn-id: https://plugins.svn.wordpress.org/wordfence/tags/5.3.3@1029185 b8457f37-d9ea-0310-8a92-e5e31aec5664
PreviousNext