All In One WP Security & Firewall

Version Description

07/September/2022 =
FIX: Stopped host cron job working in a specific situation.
FIX: A few setting options like enabling the honeypot feature for registration page, disabling the application password, enabling move spam comments to trash after specified days, moving spam comments to trash after days, enabling remove database tables upon uninstalling, and enabling remove all plugin settings upon uninstalling the plugin were overridden on upgrading the plugin.

Release Info

Developer	DavidAnderson
Plugin	All In One WP Security & Firewall
Version	5.0.6
Comparing to
See all releases

Code changes from version 5.0.5 to 5.0.6

Files changed (8) hide show

admin/wp-security-settings-menu.php +1 -1
classes/wp-security-configure-settings.php +6 -6
classes/wp-security-process-renamed-login-page.php +8 -7
languages/all-in-one-wp-security-and-firewall.pot +2 -2
readme.txt +7 -2
vendor/composer/installed.php +2 -2
wp-security-core.php +1 -1
wp-security.php +1 -1

admin/wp-security-settings-menu.php CHANGED Viewed

	@@ -592,7 +592,7 @@ class AIOWPSecurity_Settings_Menu extends AIOWPSecurity_Admin_Menu
592	<th scope="row"><?php _e('Delete database tables', 'all-in-one-wp-security-and-firewall')?>:</th>
593	<td>
594	<input id="aiowps_on_uninstall_delete_db_tables" name="aiowps_on_uninstall_delete_db_tables" type="checkbox"<?php if($aio_wp_security->configs->get_value('aiowps_on_uninstall_delete_db_tables')=='1') echo ' checked="checked"'; ?> value="1"/>
595	- <label for="aiowps_on_uninstall_delete_db_tables" class="description"><?php _e('Check this if you want to remove database tables when the plugin is ~~deactivated~~.', 'all-in-one-wp-security-and-firewall'); ?></label>
596	</td>
597	</tr>
598	<tr valign="top">


592	<th scope="row"><?php _e('Delete database tables', 'all-in-one-wp-security-and-firewall')?>:</th>
593	<td>
594	<input id="aiowps_on_uninstall_delete_db_tables" name="aiowps_on_uninstall_delete_db_tables" type="checkbox"<?php if($aio_wp_security->configs->get_value('aiowps_on_uninstall_delete_db_tables')=='1') echo ' checked="checked"'; ?> value="1"/>
595	+ <label for="aiowps_on_uninstall_delete_db_tables" class="description"><?php _e('Check this if you want to remove database tables when the plugin is uninstalled.', 'all-in-one-wp-security-and-firewall'); ?></label>
596	</td>
597	</tr>
598	<tr valign="top">

classes/wp-security-configure-settings.php CHANGED Viewed

	@@ -226,7 +226,7 @@ class AIOWPSecurity_Configure_Settings {
226	//User registration
227	$aio_wp_security->configs->add_value('aiowps_enable_manual_registration_approval', '');//Checkbox
228	$aio_wp_security->configs->add_value('aiowps_enable_registration_page_captcha', '');//Checkbox
229	- $aio_wp_security->configs->~~set_value~~('aiowps_enable_registration_honeypot', '');//Checkbox
230
231	//DB Security feature
232	//$aio_wp_security->configs->add_value('aiowps_new_manual_db_pefix', ''); //text field
	@@ -274,7 +274,7 @@ class AIOWPSecurity_Configure_Settings {
274	//Brute Force features
275	$aio_wp_security->configs->add_value('aiowps_enable_rename_login_page', '');//Checkbox
276	$aio_wp_security->configs->add_value('aiowps_enable_login_honeypot', '');//Checkbox
277	- $aio_wp_security->configs->~~set_value~~('aiowps_disable_application_password', '1');//Checkbox
278
279	$aio_wp_security->configs->add_value('aiowps_enable_brute_force_attack_prevention', '');//Checkbox
280	$aio_wp_security->configs->add_value('aiowps_brute_force_secret_word', '');
	@@ -294,8 +294,8 @@ class AIOWPSecurity_Configure_Settings {
294	$aio_wp_security->configs->add_value('aiowps_spam_ip_min_comments_block', '');
295	$aio_wp_security->configs->add_value('aiowps_enable_bp_register_captcha', '');
296	$aio_wp_security->configs->add_value('aiowps_enable_bbp_new_topic_captcha', '');//Checkbox
297	- $aio_wp_security->configs->~~set_value~~('aiowps_enable_trash_spam_comments', '');
298	- $aio_wp_security->configs->~~set_value~~('aiowps_trash_spam_comments_after_days', '14');
299
300
301	//Filescan features
	@@ -326,8 +326,8 @@ class AIOWPSecurity_Configure_Settings {
326	$aio_wp_security->configs->add_value('aiowps_default_recaptcha', '');//Checkbox
327
328	// Deactivation Handler
329	- $aio_wp_security->configs->~~set_value~~('aiowps_on_uninstall_delete_db_tables', '1'); //Checkbox
330	- $aio_wp_security->configs->~~set_value~~('aiowps_on_uninstall_delete_configs', '1'); //Checkbox
331
332	//TODO - keep adding default options for any fields that require it
333


226	//User registration
227	$aio_wp_security->configs->add_value('aiowps_enable_manual_registration_approval', '');//Checkbox
228	$aio_wp_security->configs->add_value('aiowps_enable_registration_page_captcha', '');//Checkbox
229	+ $aio_wp_security->configs->add_value('aiowps_enable_registration_honeypot', '');//Checkbox
230
231	//DB Security feature
232	//$aio_wp_security->configs->add_value('aiowps_new_manual_db_pefix', ''); //text field

274	//Brute Force features
275	$aio_wp_security->configs->add_value('aiowps_enable_rename_login_page', '');//Checkbox
276	$aio_wp_security->configs->add_value('aiowps_enable_login_honeypot', '');//Checkbox
277	+ $aio_wp_security->configs->add_value('aiowps_disable_application_password', '1');//Checkbox
278
279	$aio_wp_security->configs->add_value('aiowps_enable_brute_force_attack_prevention', '');//Checkbox
280	$aio_wp_security->configs->add_value('aiowps_brute_force_secret_word', '');

294	$aio_wp_security->configs->add_value('aiowps_spam_ip_min_comments_block', '');
295	$aio_wp_security->configs->add_value('aiowps_enable_bp_register_captcha', '');
296	$aio_wp_security->configs->add_value('aiowps_enable_bbp_new_topic_captcha', '');//Checkbox
297	+ $aio_wp_security->configs->add_value('aiowps_enable_trash_spam_comments', '');
298	+ $aio_wp_security->configs->add_value('aiowps_trash_spam_comments_after_days', '14');
299
300
301	//Filescan features

326	$aio_wp_security->configs->add_value('aiowps_default_recaptcha', '');//Checkbox
327
328	// Deactivation Handler
329	+ $aio_wp_security->configs->add_value('aiowps_on_uninstall_delete_db_tables', '1'); //Checkbox
330	+ $aio_wp_security->configs->add_value('aiowps_on_uninstall_delete_configs', '1'); //Checkbox
331
332	//TODO - keep adding default options for any fields that require it
333

classes/wp-security-process-renamed-login-page.php CHANGED Viewed

	@@ -112,6 +112,13 @@ class AIOWPSecurity_Process_Renamed_Login_Page {
112	* @return void
113	*/
114	public static function renamed_login_init_tasks() {







115	global $aio_wp_security;
116
117	//The following will process the native wordpress post password protection form
	@@ -139,7 +146,7 @@ class AIOWPSecurity_Process_Renamed_Login_Page {
139	}
140
141	//case where someone attempting to reach wp-admin
142	- if (is_admin() && !is_user_logged_in() && ~~!defined('DOING_AJAX') &&~~ basename($_SERVER["SCRIPT_FILENAME"]) !== 'admin-post.php') {
143	//Fix to prevent fatal error caused by some themes and Yoast SEO
144	do_action('aiowps_before_wp_die_renamed_login');
145	wp_die(__('Not available.', 'all-in-one-wp-security-and-firewall'), 403);
	@@ -189,12 +196,6 @@ class AIOWPSecurity_Process_Renamed_Login_Page {
189	}
190
191	$parsed_url_path = parse_url($_SERVER['REQUEST_URI'], PHP_URL_PATH);
192	-
193	- // for `wp plugin list` it will be empty so showing Not available instead plugin list.
194	- if (empty($parsed_url_path) && !defined('WP_CLI') && "cli" != PHP_SAPI) {
195	- do_action('aiowps_before_wp_die_renamed_login');
196	- wp_die(__('Not available.', 'all-in-one-wp-security-and-firewall'), 403);
197	- }
198
199	$login_slug = $aio_wp_security->configs->get_value('aiowps_login_page_slug');
200	$site_url_with_slug = site_url($login_slug, 'relative');


112	* @return void
113	*/
114	public static function renamed_login_init_tasks() {
115	+ // Bail if the host cron job is running by running the command "php wp-cron.php"
116	+ // The $_SERVER['REQUEST_URI'] is undefined when running a PHP file from the command line.
117	+ // for `wp plugin list` it will be empty so showing Not available instead plugin list.
118	+ if (empty($_SERVER['REQUEST_URI']) \|\| defined('WP_CLI') \|\| 'cli' == PHP_SAPI \|\| wp_doing_cron() \|\| wp_doing_ajax()) {
119	+ return;
120	+ }
121	+
122	global $aio_wp_security;
123
124	//The following will process the native wordpress post password protection form

146	}
147
148	//case where someone attempting to reach wp-admin
149	+ if (is_admin() && !is_user_logged_in() && basename($_SERVER["SCRIPT_FILENAME"]) !== 'admin-post.php') {
150	//Fix to prevent fatal error caused by some themes and Yoast SEO
151	do_action('aiowps_before_wp_die_renamed_login');
152	wp_die(__('Not available.', 'all-in-one-wp-security-and-firewall'), 403);

196	}
197
198	$parsed_url_path = parse_url($_SERVER['REQUEST_URI'], PHP_URL_PATH);






199
200	$login_slug = $aio_wp_security->configs->get_value('aiowps_login_page_slug');
201	$site_url_with_slug = site_url($login_slug, 'relative');

languages/all-in-one-wp-security-and-firewall.pot CHANGED Viewed

	@@ -3251,7 +3251,7 @@ msgid "Delete database tables"
3251	msgstr ""
3252
3253	#: src/admin/wp-security-settings-menu.php:595
3254	- msgid "Check this if you want to remove database tables when the plugin is ~~deactivated~~."
3255	msgstr ""
3256
3257	#: src/admin/wp-security-settings-menu.php:599
	@@ -4720,7 +4720,7 @@ msgstr ""
4720	msgid "After you've secured your site, we recommend you install our WP-Optimize plugin to streamline it for better website performance."
4721	msgstr ""
4722
4723	- #: src/classes/wp-security-process-renamed-login-page.php:~~145, src/classes/wp-security-process-renamed-login-page.php:196~~
4724	msgid "Not available."
4725	msgstr ""
4726


3251	msgstr ""
3252
3253	#: src/admin/wp-security-settings-menu.php:595
3254	+ msgid "Check this if you want to remove database tables when the plugin is uninstalled."
3255	msgstr ""
3256
3257	#: src/admin/wp-security-settings-menu.php:599

4720	msgid "After you've secured your site, we recommend you install our WP-Optimize plugin to streamline it for better website performance."
4721	msgstr ""
4722
4723	+ #: src/classes/wp-security-process-renamed-login-page.php:152
4724	msgid "Not available."
4725	msgstr ""
4726

readme.txt CHANGED Viewed

	@@ -5,7 +5,7 @@ Tags: security, secure, Anti Virus, antivirus, ban, ban hacker, virus, firewall,
5	Requires PHP: 5.6
6	Requires at least: 5.0
7	Tested up to: 6.0
8	- Stable tag: 5.0.5
9	License: GPLv3 or later
10
11	A comprehensive, user-friendly, all in one WordPress security and firewall plugin for your site.
	@@ -179,6 +179,11 @@ https://www.tipsandtricks-hq.com/wordpress-security-and-firewall-plugin
179
180	== Changelog ==
181





182	= 5.0.5 - 05/September/2022 =
183
184	* FIX: Cookie based brute force etc rules to be removed from .htaccess if set in older version 4.4.12.
	@@ -1038,4 +1043,4 @@ those who want to enable the basic firewall but do not have "AllowOverride" opti
1038
1039
1040	== Upgrade Notice ==
1041	- * 5.0.5: The 5.0 series has various new features such as a PHP-based firewall, Two Factor Authentication, and WHOIS lookup have been added. It contains various fixes and tweaks. 5.0.X releases are fixing issues discovered in the 5.0 branch. A recommended update for all.


5	Requires PHP: 5.6
6	Requires at least: 5.0
7	Tested up to: 6.0
8	+ Stable tag: 5.0.6
9	License: GPLv3 or later
10
11	A comprehensive, user-friendly, all in one WordPress security and firewall plugin for your site.

179
180	== Changelog ==
181
182	+ = 5.0.6 - 07/September/2022 =
183	+
184	+ * FIX: Stopped host cron job working in a specific situation.
185	+ * FIX: A few setting options like enabling the honeypot feature for registration page, disabling the application password, enabling move spam comments to trash after specified days, moving spam comments to trash after days, enabling remove database tables upon uninstalling, and enabling remove all plugin settings upon uninstalling the plugin were overridden on upgrading the plugin.
186	+
187	= 5.0.5 - 05/September/2022 =
188
189	* FIX: Cookie based brute force etc rules to be removed from .htaccess if set in older version 4.4.12.

1043
1044
1045	== Upgrade Notice ==
1046	+ * 5.0.6: The 5.0 series has various new features such as a PHP-based firewall, Two Factor Authentication, and WHOIS lookup have been added. It contains various fixes and tweaks. 5.0.X releases are fixing issues discovered in the 5.0 branch. A recommended update for all.

vendor/composer/installed.php CHANGED Viewed

	@@ -5,7 +5,7 @@
5	'type' => 'project',
6	'install_path' => __DIR__ . '/../../',
7	'aliases' => array(),
8	- 'reference' => '~~817e5e256b1aaafaa99cf07bea6a461ce15c0706~~',
9	'name' => 'updraftplus/all-in-one-wp-security-and-firewall',
10	'dev' => false,
11	),
	@@ -34,7 +34,7 @@
34	'type' => 'project',
35	'install_path' => __DIR__ . '/../../',
36	'aliases' => array(),
37	- 'reference' => '~~817e5e256b1aaafaa99cf07bea6a461ce15c0706~~',
38	'dev_requirement' => false,
39	),
40	),


5	'type' => 'project',
6	'install_path' => __DIR__ . '/../../',
7	'aliases' => array(),
8	+ 'reference' => '48ce2e8d7d6a952b2d8b0d3142c104e8bc284366',
9	'name' => 'updraftplus/all-in-one-wp-security-and-firewall',
10	'dev' => false,
11	),

34	'type' => 'project',
35	'install_path' => __DIR__ . '/../../',
36	'aliases' => array(),
37	+ 'reference' => '48ce2e8d7d6a952b2d8b0d3142c104e8bc284366',
38	'dev_requirement' => false,
39	),
40	),

wp-security-core.php CHANGED Viewed

	@@ -8,7 +8,7 @@ if (!class_exists('AIO_WP_Security')) {
8
9	class AIO_WP_Security {
10
11	- public $version = '5.0.5';
12
13	public $db_version = '1.9.3';
14


8
9	class AIO_WP_Security {
10
11	+ public $version = '5.0.6';
12
13	public $db_version = '1.9.3';
14

wp-security.php CHANGED Viewed

	@@ -2,7 +2,7 @@
2	// @codingStandardsIgnoreStart
3	/*
4	Plugin Name: All In One WP Security
5	- Version: 5.0.5
6	Plugin URI: https://wordpress.org/plugins/all-in-one-wp-security-and-firewall/
7	Update URI: https://wordpress.org/plugins/all-in-one-wp-security-and-firewall/
8	Author: All In One WP Security & Firewall Team


2	// @codingStandardsIgnoreStart
3	/*
4	Plugin Name: All In One WP Security
5	+ Version: 5.0.6
6	Plugin URI: https://wordpress.org/plugins/all-in-one-wp-security-and-firewall/
7	Update URI: https://wordpress.org/plugins/all-in-one-wp-security-and-firewall/
8	Author: All In One WP Security & Firewall Team

All In One WP Security & Firewall - Version 5.0.6

Version Description

Release Info

Code changes from version 5.0.5 to 5.0.6