Account Security Improvements in WordPress 4.9 https://make.wordpress.org/core/2017/10/15/improvements-for-roles-and-capabilities-in-4-9/ WordPress Security WordPress 5.4.1. A security update fixes seven XSS vulnerabilities WordPress Security How to limit the number of concurrent user sessions in WordPress WordPress Security Cloudflare [...]
How to install this version: https://wpcerber.com/development-version/ New features Permit access to WordPress REST API for logged in users only. Now available to enable in plugin settings. From now on, for new users on a website the plugin records the date of registration, the IP address, and if it’s applicable, a user who has [...]
New features White list for the WordPress anti-spam engine. It allows creating a list of exceptions by specifying a string to search it in a request URI. Cerber anti-spam protects registration form, comment form and tons of other contact forms. White list for REST API requests. It allows creating a list of namespace exceptions if REST [...]
Cerber's anti-spam and bot detection engine is capable to protect all contact and registration forms on a website. It’s compatible with virtually any form.
On some web servers, WP Cerber is not able to detect IP addresses automatically due to a non-standard server configuration. That means WP Cerber is unable to protect your website and can even lock you out of your WordPress dashboard. Most likely your website is behind a proxy First of all, try to enable My site is behind a reverse proxy [...]
This is a bug fix release. Bugs fixed Hidden custom login URL may be discovered by using specially formatted URL. Thanks to Mick from Australia for reporting this bug. Customization CSS styles don’t work on the Custom login page. Depending on server settings you might get the following messages in Apache’s error.log: PHP [...]
New features Anti-spam and anti-bot for contact and other forms. Cerber antispam and bot detection engine now protects all forms on a website. It’s compatible with virtually any form. Tested with Caldera Forms, Gravity Forms, Contact Form 7, Ninja Forms, Formidable Forms, Fast Secure Contact Form, Contact Form by WPForms. As usual you [...]
New features Cerber has got a new antispam and bot detection engine that protects comment and user registration forms from bot attacks. No reCAPTCHA is needed anymore. After several attempts bot IP will be locked out. Now you can tell Cerber either to mark detected spam comments as spam or deny them completely. Optionally Cerber can [...]
Improvements Additional details will be logged and displayed on the Activity page: the URL of a request and decision the plugin engine had made. Added a nice panel with performance indicators showing key events in the last 24 hours. To improve reliability self check-up code has been added. Welcome Poland! Polish translation has been [...]
Sometimes, when you move your WordPress to a new hosting or restore the website from a backup, some database tables that are created and used by WP Cerber Security might become corrupted or be deleted. To fix this issue and repair the WP Cerber tables, follow the steps below. Log into the WordPress admin dashboard. In the admin menu, [...]
This is a bug fixing version. Bugs fixed A reason of blocking an IP address is not shown in notification emails if Always block entire subnet Class C of intruders IP is selected in the settings. An IP address from a range may be locked out if you have overlapping IP ranges in the both IP Access Lists. That means you or your users might [...]
New features You can enable/disable applying limit login rules to IP addresses in the White IP Access List. A new checkbox on the Main Settings tab. By default it’s disabled. Read more about using WordPress IP Access List. Block malicious IP addresses after a specified number of failed attempts to solve visible or invisible reCAPTCHA. [...]
New features Welcome invisible reCAPTCHA. You can choose what type you want to use: classic visible or new invisible reCAPTCHA. How to setup. reCAPTCHA for comment forms is available now. Stop spam comments – use reCAPTCHA as an anti-spam tool for WordPress comment forms. Improvements Dates on the plugin dashboard now are displayed [...]
Let's make things clear with these intruder activities that happens every day on any website. How are they dangerous? What tools or plugin can mitigate them? What are chances that we can do that successfully?