Cerber's anti-spam and bot detection engine is capable to protect all contact and registration forms on a website. It’s compatible with virtually any form.
On some web servers, WP Cerber is not able to detect IP addresses automatically due to a non-standard server configuration. That means WP Cerber is unable to protect your website and can even lock you out of your WordPress dashboard. First of all, try to enable My site is behind a reverse proxy in the Main Settings of the plugin and [...]
This is a bug fix release. Bugs fixed Hidden custom login URL may be discovered by using specially formatted URL. Thanks to Mick from Australia for reporting this bug. Customization CSS styles don’t work on the Custom login page. Depending on server settings you might get the following messages in Apache’s error.log: PHP [...]
New features Anti-spam and anti-bot for contact and other forms. Cerber antispam and bot detection engine now protects all forms on a website. It’s compatible with virtually any form. Tested with Caldera Forms, Gravity Forms, Contact Form 7, Ninja Forms, Formidable Forms, Fast Secure Contact Form, Contact Form by WPForms. As usual you [...]
New features Cerber has got a new antispam and bot detection engine that protects comment and user registration forms from bot attacks. No reCAPTCHA is needed anymore. After several attempts bot IP will be locked out. Now you can tell Cerber either to mark detected spam comments as spam or deny them completely. Optionally Cerber can [...]
Improvements Additional details will be logged and displayed on the Activity page: the URL of a request and decision the plugin engine had made. Added a nice panel with performance indicators showing key events in the last 24 hours. To improve reliability self check-up code has been added. Welcome Poland! Polish translation has been [...]
Sometimes, when you move your WordPress to a new hosting or restore the website from a backup, some database tables that are created and used by WP Cerber Security might become corrupted or be deleted. To fix this issue and repair the WP Cerber tables, follow the steps below. Log into the WordPress admin dashboard. In the admin menu, [...]
This is a bug fixing version. Bugs fixed A reason of blocking an IP address is not shown in notification emails if Always block entire subnet Class C of intruders IP is selected in the settings. An IP address from a range may be locked out if you have overlapping IP ranges in the both IP Access Lists. That means you or your users might [...]
New features You can enable/disable applying limit login rules to IP addresses in the White IP Access List. A new checkbox on the Main Settings tab. By default it’s disabled. Read more about using WordPress IP Access List. Block malicious IP addresses after a specified number of failed attempts to solve visible or invisible reCAPTCHA. [...]
New features Welcome invisible reCAPTCHA. You can choose what type you want to use: classic visible or new invisible reCAPTCHA. How to setup. reCAPTCHA for comment forms is available now. Stop spam comments – use reCAPTCHA as an anti-spam tool for WordPress comment forms. Improvements Dates on the plugin dashboard now are displayed [...]
Let's make things clear with these intruder activities that happens every day on any website. How are they dangerous? What tools or plugin can mitigate them? What are chances that we can do that successfully?
New features Instant mobile and browser notifications with Pushbullet. Get notified instantly via push notifications when an important event happens on your WordPress. Read more how to set up. Ability to choose a 404 page template. The plugin will try to use the 404 template from the active theme, and this is a default behavior or a [...]
WP Cerber allows you to enable desktop and mobile notifications with easy and get all those notifications from your WordPress instantly and for free. In a desktop browser, you will get popup messages even if you logged out of your WordPress. WordPress Security Managing WordPress application passwords a hassle-free way WordPress [...]
Two-Factor Authentication plugins for WordPress allow you to use a mobile phone to verify yourself before you get inside.
This is a security release for all previous versions and we strongly encourage you to update your sites immediately. WordPress versions 4.7.2 and earlier are affected by six security issues: Cross-site scripting (XSS) via media file metadata. Reported by Chris Andrè Dale, Yorick Koster, and Simon P. Briggs. Control characters can trick [...]