Security
How to detect malware on your WordPress site
In many ways, WordPress is a victim of its own popularity, with the widespread use of the platform making it
19 April 2024
AIOS WordPress Security Plugin – Release 5.1.5
A new release of the WordPress Security Plugin from UpdraftPlus, All-In-One Security is now available. Version 5.1.5 includes several tweaks and fixes so that the WordPress Security plugin can continue to work well with your WordPress site and other plugins.
You’ll also note a new feature. We’ve added support for Cloudflare’s CAPTCHA alternative, “Turnstile”, which offers visitors to your WordPress website an improved experience and stronger privacy when completing any forms or login pages.
The updated version of the WordPress All-In-One-Security Plugin is available now and includes the following:
FEATURE: Added Cloudflare Turnstile CAPTCHA support
FIX: Notices about undefined array key HTTP_USER_AGENT solved.
FIX: New v5 features not saved in export file and not properly reset after uninstallation.
FIX: File permission change being applied to the last record not selected one. Also, no longer change permissions when they are already tighter than the suggested.
FIX: Fatal error ‘Call to a member function contains_contents() on null’
TWEAK: Removed wrong information about login whitelist being implemented via htaccess.
TWEAK: Refactoring settings tasks for WP CLI AIOS premium commands.
TWEAK: Page load performance issue due to incompatible tfa premium plugin active check improved.
TWEAK: Make sure translation domain is registered before attempting to use it
TWEAK: Replaced click with press in text because users could be on mobile etc and not using a mouse.
TWEAK: Registration, comment, Buddypress and bbPress admin pages to show notice enable the captcha settings.
TWEAK: Improve the UI/UX for the 404 detection tab
TWEAK: Improve internal code structure making way for future improvements
TWEAK: PHP 8.2 deprecation warning for dynamic properties
TWEAK: Remove the unintended ability for directory traversal and lack of escaping when outputting files with the “view system log” feature. This facility is only available to an administrator (who can of course already do anything on the site, so this has no security implications) and allow them to view (the last 50 lines) from any file or list any directory on the system where the web server has read access.
Please update your plugin now, or, if you’re new to AIOS, download the free version here.
Share This Post
More To Explore...
Security
WordPress security audit checklist
Ensuring your WordPress website’s security is vital for protecting sensitive data, keeping customer trust, and safeguarding your online business. A
15 April 2024
Security
What to do if your WordPress site is hacked
Has your WordPress site been hacked, and you don’t know what to do next? WordPress powers millions of websites worldwide
25 March 2024
Release info
All-In-One Security Premium Release 1.0.4: AIOS adds adds IP lookup function and fixes XSS Security vulnerability
The latest release from AIOS includes a new IP lookup function that will help developers identify suspicious activity such as
23 February 2024