WP Cerber Security PRO - защита сайта на Wordpress

Плагин WP Cerber Security PRO - защита сайта на Wordpress v9.6.5

Активно защищает WordPress от хакерских атак, спама и вредоносных программ
Скачать WP Cerber Security Pro v9.6.5 - WordPress Antispam & Malware Scan Nulled Free
= v9.6.5 =

New: Dashboard widgets can now be rearranged using drag-and-drop, giving you full control over their placement.
New: Unused widgets can be disabled via the gear icon at the bottom of the page for a cleaner interface.
New: Added new widgets to the dashboard: Activity Breakdown, Top Offending IP Addresses, New Users, and Login Issues, providing deeper insights into site activity.
Improved: WP Cerber now leverages persistent WordPress cache like Redis to speed up some SQL-heavy requests on admin pages.
Improved: Permissions to block users have been updated, allowing any user with the edit_users or delete_users capability to block accounts. [How to block a WordPress user](https://wpcerber.com/how-to-block-wordpress-user/)
Improved: An inter-page overlay loader has been introduced to improve navigation on resource-intensive admin pages.
Compatibility: WordPress now checks for required PHP and WordPress versions before allowing an update to WP Cerber.
Compatibility: Added plugin headers "Requires PHP" and "Requires at least" to wp-cerber.php for better compatibility checks.
Compatibility: This is the final version supporting PHP 7.0, as the next release will require PHP 7.2.
Compatibility: Removed outdated CSS that previously supported older versions of Safari.
Fixed: Resolved issues with untranslated plural forms in some multilingual phrases.
Скачать WP Cerber Security Pro v9.6.4 - WordPress Antispam & Malware Scan Nulled Free
= v9.6.4 =

New: WP Cerber continuously monitors IP detection issues and provides diagnostic messages. If IP detection fails due to configuration or server settings, the details of the issue are displayed to assist in troubleshooting.
Improved: When valid proxy headers are missing, WP Cerber falls back to the standard $_SERVER['REMOTE_ADDR'] variable to extract IP addresses.
Improved: If the PHP constant [CERBER_IP_KEY](https://wpcerber.com/wordpress-ip-address-detection/) is configured but does not provide valid IP address, WP Cerber switches to fallback methods for IP detection.
Improved: The Sessions page now marks users with enforced [2FA](https://wpcerber.com/two-factor-authentication-for-wordpress/) using a green "2FA" label. A solid label indicates successful verification, while an outlined one means verification is pending.
Improved: WP Cerber’s cookies in the "Live Traffic" log are highlighted in green under "Server Response Cookies". Their values are now properly decoded for easier analysis.
Improved: REGEX patterns for [URL exceptions](https://wpcerber.com/antispam-exception-for-specific-http-request/) no longer require escaped slashes. Existing patterns are automatically updated during the upgrade.
Improved: 2FA PIN emails now include the recipient’s first and last name along with their email address. This change helps improve email deliverability.
Improved: Enhanced storage of 2FA session data prevents its misuse as an attack vector in compromised WordPress databases.
Improved: 2FA login forms have been improved for full compatibility with WordPress installations in sub-folders, particularly on web servers with sub-optimal configurations.
Improved: Database operations are optimized to leverage the latest PHP-compatible technologies. Performance on modern servers is improved.

New features and settings​

  1. Monthly activity reports. In addition to weekly reporting, WP Cerber can be configured to generate and send monthly activity reports. Depending on the configuration, the reports can be generated for the last 30 days or the previous calendar month and sent on a selected day of the month to specified email addresses. All the settings are on the “Notifications” tab.
  2. Weekly activity reports now can be generated for the last 7 days or the previous calendar week. New setting is on the “Notifications” tab.
  3. Redirecting requests to a specified URL instead of generating a 404 page when attempting to access prohibited locations on a website. You can specify an URL of a page on your website to redirect lost users and bad actors when they are attempting to get access to locations they have no access to. For instance, it can be a sitemap page that helps legitimate users navigating on your website if they entered a protected URL by mistake or due to a software error. The URL can be a relative or absolute. The setting is “Access to prohibited locations” and it’s located on the “Main Settings” tab. From a security standpoint, the best option is to set it “Display simple 404 page”. Read more.
  4. The “Remember Me” checkbox on the WordPress login form can be disabled. The new setting is on the “Global” tab of the “User Policies” settings page. If disabled, logging-in users can no longer change the duration of their authentication sessions at will. The default duration of a user session if “Remember Me” is not checked is two days (48 hours), alternatively, if it is checked, it is 14 days. In terms of modern account security, it’s a huge period. Since most ordinary users do not know the duration of the sessions when the checkbox is checked, they have no idea what the implications of enabling it. It’s highly advised to disable “Remember Me”. This new feature also supports WooCommerce.

Improvements​

  1. Pursuing better user experience, we have improved the process of configuring WP Cerber features that require updating .htaccess files. Improved handling situations when .htaccess files get read-only permission after changing WP Cerber settings. If a .htaccess is non-writable, the related settings are locked. When importing settings from a file, all the checks also take place.
  2. When saving WP Cerber in the WordPress dashboard, the text notification “Plugin settings updated” is only shown if the settings has been changed.

Breaking changes​

  1. The default period of weekly reports is the previous calendar week. In older versions of WP Cerber, the report period was the last 7 days.
  2. Disabling author archives has been improved. No access to author archives via any possible URLs if “Block access to user pages via their usernames” is enabled. Additionally, links to author archives are replaced with the website home URL. Previously, access was blocked if accessing author archives by using usernames (logins) in a $_GET parameter.

Minor changes​

  1. If the “User session expiration time” is set globally for all user roles, the “Remember Me” checkbox is hidden on the standard WordPress login form and does not affect the duration of user sessions.
  2. WP Cerber now logs all denied attempts to reset user password when a non-existing user or email has been specified.

Fixed bugs​

  1. If WordPress is installed in a subfolder and the custom login page is configured, submitting the password reset form doesn’t redirect users to the page with a success message showing “Not Found” instead.
  2. If the custom login page is configured, disabling the login language switcher has no effect on the login form and the language switcher is still displayed.
  3. On some multi-site WordPress installations, WP Cerber can produce warning messages about using undefined UPLOADBLOGSDIR constant.
  4. If the access lists contain IPv6 addresses and the Activity log contains entries with IPv6 addresses, viewing those entries causes PHP warnings “undefined property: stdClass::$comments”.
  5. If Pushbullet mobile notifications are enabled and the list of available devices contains inactive (removed) devices, WP Cerber produces PHP notices “Undefined index: nickname” while parsing the list.
Сверху Снизу