Google Authenticator – WordPress Two Factor Authentication (2FA) - Version 5.3.8

Version Description

  • Google Authenticator-Two Factor Authentication (2FA) : Security : Malware Scanner Fix.
Download this release

Release Info

Developer cyberlord92
Plugin Icon 128x128 Google Authenticator – WordPress Two Factor Authentication (2FA)
Version 5.3.8
Comparing to
See all releases

Code changes from version 5.3.7 to 5.3.8

Files changed (8) hide show
  1. api/class-customer-setup.php +1 -1
  2. controllers/main_controller.php +25 -4
  3. handler/malware_scanner.php +1 -0
  4. helper/dashboard_security_notification.php +104 -0
  5. helper/utility.php +0 -1
  6. miniorange_2_factor_settings.php +8 -4
  7. readme.txt +8 -2
  8. uninstall.php +1 -0
api/class-customer-setup.php CHANGED
@@ -73,7 +73,7 @@ class Customer_Setup {
73
  'applicationType'=>'Two Factor',
74
  'applicationName'=>$applicationName,
75
  'pluginVersion'=>MO2F_VERSION,
76
- // 'inUse'=>'test'
77
  );
78
 
79
 
73
  'applicationType'=>'Two Factor',
74
  'applicationName'=>$applicationName,
75
  'pluginVersion'=>MO2F_VERSION,
76
+ 'inUse'=>$MoWpnsUtility->getFeatureStatus()
77
  );
78
 
79
 
controllers/main_controller.php CHANGED
@@ -13,8 +13,8 @@
13
  switch($_GET['page'])
14
  {
15
  case 'mo_2fa_dashboard':
16
- include $controller . 'dashboard.php'; break;
17
- case 'mo_2fa_login_and_spam':
18
  include $controller . 'login-spam.php'; break;
19
  case 'default':
20
  include $controller . 'login-security.php'; break;
@@ -41,8 +41,29 @@
41
  case 'mo_2fa_malwarescan':
42
  include $controller . 'scan_malware.php'; break;
43
  case 'mo_2fa_two_fa':
44
- include $controller . 'two_fa.php'; break;
 
45
  }
46
  }
47
 
48
- include $controller . 'support.php';
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
13
  switch($_GET['page'])
14
  {
15
  case 'mo_2fa_dashboard':
16
+ include $controller . 'dashboard.php'; break;
17
+ case 'mo_2fa_login_and_spam':
18
  include $controller . 'login-spam.php'; break;
19
  case 'default':
20
  include $controller . 'login-security.php'; break;
41
  case 'mo_2fa_malwarescan':
42
  include $controller . 'scan_malware.php'; break;
43
  case 'mo_2fa_two_fa':
44
+ include $controller . 'two_fa.php';
45
+ update_option('mo2f_scan_nonce',wp_create_nonce('wpns-quick-scan')); break;
46
  }
47
  }
48
 
49
+ include $controller . 'support.php';
50
+ ?>
51
+ <?php if(get_option('mo2f_scan_initialize')) { ?>
52
+ <script>
53
+ jQuery(document).ready(function(){
54
+ var nonce = "<?php echo get_option('mo2f_scan_nonce');?>";
55
+ var data={
56
+ 'action':'mo_wpns_malware_redirect',
57
+ 'call_type':'malware_scan_initiate',
58
+ 'scan':'scan_start',
59
+ 'scantype':'quick_scan',
60
+ 'nonce': nonce
61
+ };
62
+ jQuery.post(ajaxurl, data, function(response){
63
+
64
+ });
65
+
66
+
67
+ });
68
+ </script>
69
+ <?php } ?>
handler/malware_scanner.php CHANGED
@@ -8,6 +8,7 @@ class Mo_wpns_Scan_Handler{
8
 
9
  }
10
  function mo2f_scan_all_files($scan_config){
 
11
  update_option('mo_wpns_malware_scan_in_progress','IN PROGRESS');
12
  update_option('mo_wpns_files_scanned',0);
13
  update_option('mo_wpns_infected_files',0);
8
 
9
  }
10
  function mo2f_scan_all_files($scan_config){
11
+ update_option('mo2f_scan_initialize', 0);
12
  update_option('mo_wpns_malware_scan_in_progress','IN PROGRESS');
13
  update_option('mo_wpns_files_scanned',0);
14
  update_option('mo_wpns_infected_files',0);
helper/dashboard_security_notification.php ADDED
@@ -0,0 +1,104 @@
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
1
+ <?php
2
+
3
+ class miniorange_security_notification{
4
+
5
+
6
+ function my_custom_dashboard_widgets() {
7
+ global $wp_meta_boxes;
8
+
9
+ wp_add_dashboard_widget('custom_help_widget', 'MiniOrange Website Security',array($this, 'custom_dashboard_help'));
10
+ }
11
+
12
+ function custom_dashboard_help() {
13
+ global $wpdb,$type_of_scan,$total_scanned_files;
14
+
15
+ $array = $wpdb->get_results("SELECT MAX(id) as id FROM ".$wpdb->base_prefix.'wpns_malware_scan_report');
16
+
17
+ $latest_id = (int)$array[0]->id;
18
+
19
+ $last_scan_malicious_count = $wpdb->get_results("SELECT COUNT(*) as total FROM ".$wpdb->base_prefix."wpns_malware_scan_report_details where report_id=".$latest_id);
20
+
21
+
22
+ $total_malicious_count = $wpdb->get_results("SELECT COUNT(*) as total FROM ".$wpdb->base_prefix."wpns_malware_scan_report_details");
23
+
24
+ $table_content = $wpdb->get_results("SELECT * FROM ".$wpdb->base_prefix."wpns_malware_scan_report where id=".$latest_id);
25
+ if(sizeof($table_content)>0){
26
+ $type_of_scan = $table_content[0]->scan_mode;
27
+ $total_scanned_files = $table_content[0]->scanned_files;
28
+ }
29
+ if($type_of_scan === null)
30
+ $type_of_scan ='Not Scanned Yet';
31
+
32
+
33
+ if($total_scanned_files === null)
34
+ $total_scanned_files = '0';
35
+
36
+ echo "<html>
37
+ <head>
38
+ <style>
39
+
40
+
41
+ p{
42
+ margin:0px;
43
+
44
+ </style>
45
+ </head>
46
+
47
+ <div style='width:100%;background-color:#555f5f;padding-top:10px;''>
48
+ <div style='font-size:25px;color:white;text-align:center'>
49
+ <strong style='font-weight:300;''>Last Scan Result <span style='color:orange;'>[". $type_of_scan." ]</span></strong>
50
+ </div>
51
+ <hr>
52
+ <div>
53
+ <table>
54
+ <tbody>
55
+
56
+ <tr>
57
+ <td style='border-collapse:collapse!important;color:#0a0a0a;line-height:1.3;margin:0;padding:0;text-align:left;vertical-align:top;word-wrap:normal'>
58
+ <table dir='ltr' style='table-layout:fixed;margin:10px 0 20px 0;padding:0;vertical-align:top;width:100%'>
59
+ <tbody>
60
+
61
+
62
+ <tr>
63
+ <td style='text-align:center;font-size:36px;color:#ffffff;font-weight:400' ><strong>".$last_scan_malicious_count[0]->total."</strong></td>
64
+ <td style='text-align:center;font-size:36px;color:#ffffff;font-weight:400'><strong>".$total_malicious_count[0]->total."</strong></td>
65
+
66
+
67
+ <td style='text-align:center;font-size:36px;color:#ffffff;font-weight:400'><strong>".$total_scanned_files."</strong></td>
68
+
69
+
70
+ </tr>
71
+
72
+ <tr><td>&nbsp;</td><td></td></tr>
73
+ <tr>
74
+ <td style='font-size:18px;color:#ffffff;text-align:center'><strong style='font-weight:300;'>Current Infected Files </strong></td>
75
+ <td style='font-size:18px;color:#ffffff;text-align:center'><strong style='font-weight:300;'>Total Infected Files Found</strong></td>
76
+
77
+ <td style='font-size:18px;color:#ffffff;text-align:center'><strong style='font-weight:300;'>Total Files Scanned</strong></td>
78
+
79
+ </tr>
80
+ </tbody>
81
+ </table>
82
+ </tr>
83
+ </tbody>
84
+ </table>
85
+ </div>
86
+ </div>
87
+
88
+ ";
89
+
90
+ echo '<br><a class="button button-primary" style="background-color:#555f5f" href="admin.php?page=mo_2fa_malwarescan&tab=default&view='.$latest_id.'">View Details</a>';
91
+
92
+
93
+
94
+
95
+ }
96
+
97
+
98
+
99
+ }
100
+
101
+
102
+
103
+
104
+ ?>
helper/utility.php CHANGED
@@ -286,7 +286,6 @@ class MoWpnsUtility
286
  function checkPlugins(){
287
  $installed="";
288
  $filedirname=dirname(dirname(dirname(__FILE__)));
289
- // var_dump($filedirname."/wordfence/wordfence.php",file_exists($filedirname."/wordfence/wordfence.php"));exit;
290
  if(file_exists($filedirname."/wordfence/wordfence.php")){
291
  $installed.="wordfence;";
292
  }
286
  function checkPlugins(){
287
  $installed="";
288
  $filedirname=dirname(dirname(dirname(__FILE__)));
 
289
  if(file_exists($filedirname."/wordfence/wordfence.php")){
290
  $installed.="wordfence;";
291
  }
miniorange_2_factor_settings.php CHANGED
@@ -3,14 +3,14 @@
3
  * Plugin Name: miniOrange 2 Factor Authentication
4
  * Plugin URI: https://miniorange.com
5
  * Description: This plugin provides various two-factor authentication methods as an additional layer of security after the default wordpress login. We Support Google/Authy/LastPass Authenticator, QR Code, Push Notification, Soft Token and Security Questions(KBA) for 1 User in the free version of the plugin.
6
- * Version: 5.3.7
7
  * Author: miniOrange
8
  * Author URI: https://miniorange.com
9
  * License: GPL2
10
  */
11
  define( 'MO_HOST_NAME', 'https://login.xecurify.com' );
12
- define( 'MO2F_VERSION', '5.3.7' );
13
- define( 'MO2F_TEST_MODE', false );
14
  class Miniorange_twoFactor{
15
 
16
  function __construct()
@@ -25,6 +25,8 @@
25
  add_action( 'admin_footer', array( $this, 'feedback_request' ) );
26
  if(get_option('mo2f_disable_file_editing')) define('DISALLOW_FILE_EDIT', true);
27
  $this->includes();
 
 
28
  }
29
  // As on plugins.php page not in the plugin
30
  function feedback_request() {
@@ -79,7 +81,7 @@
79
 
80
  function mo_wpns()
81
  {
82
- $this->checkSecurity();
83
  global $wpnsDbQueries,$Mo2fdbQueries;
84
  $wpnsDbQueries->mo_plugin_activate();
85
  $Mo2fdbQueries->mo_plugin_activate();
@@ -126,6 +128,7 @@
126
  add_action( 'mo_auth_show_error_message', array($this, 'mo_auth_show_error_message'), 10, 1 );
127
  add_option( 'mo2f_show_sms_transaction_message', 0 );
128
  add_option( 'mo2f_enforce_strong_passswords_for_accounts' ,'all');
 
129
  }
130
 
131
  function mo_wpns_deactivate()
@@ -204,6 +207,7 @@
204
  require('handler/registration.php');
205
  require('handler/logger.php');
206
  require('handler/spam.php');
 
207
  require('helper/curl.php');
208
  require('helper/plugins.php');
209
  require('helper/constants.php');
3
  * Plugin Name: miniOrange 2 Factor Authentication
4
  * Plugin URI: https://miniorange.com
5
  * Description: This plugin provides various two-factor authentication methods as an additional layer of security after the default wordpress login. We Support Google/Authy/LastPass Authenticator, QR Code, Push Notification, Soft Token and Security Questions(KBA) for 1 User in the free version of the plugin.
6
+ * Version: 5.3.8
7
  * Author: miniOrange
8
  * Author URI: https://miniorange.com
9
  * License: GPL2
10
  */
11
  define( 'MO_HOST_NAME', 'https://login.xecurify.com' );
12
+ define( 'MO2F_VERSION', '5.3.8' );
13
+ define( 'MO2F_TEST_MODE', true );
14
  class Miniorange_twoFactor{
15
 
16
  function __construct()
25
  add_action( 'admin_footer', array( $this, 'feedback_request' ) );
26
  if(get_option('mo2f_disable_file_editing')) define('DISALLOW_FILE_EDIT', true);
27
  $this->includes();
28
+ $notify = new miniorange_security_notification;
29
+ add_action('wp_dashboard_setup', array($notify,'my_custom_dashboard_widgets'));
30
  }
31
  // As on plugins.php page not in the plugin
32
  function feedback_request() {
81
 
82
  function mo_wpns()
83
  {
84
+
85
  global $wpnsDbQueries,$Mo2fdbQueries;
86
  $wpnsDbQueries->mo_plugin_activate();
87
  $Mo2fdbQueries->mo_plugin_activate();
128
  add_action( 'mo_auth_show_error_message', array($this, 'mo_auth_show_error_message'), 10, 1 );
129
  add_option( 'mo2f_show_sms_transaction_message', 0 );
130
  add_option( 'mo2f_enforce_strong_passswords_for_accounts' ,'all');
131
+ add_option('mo2f_scan_initialize',1);
132
  }
133
 
134
  function mo_wpns_deactivate()
207
  require('handler/registration.php');
208
  require('handler/logger.php');
209
  require('handler/spam.php');
210
+ require('helper/dashboard_security_notification.php');
211
  require('helper/curl.php');
212
  require('helper/plugins.php');
213
  require('helper/constants.php');
readme.txt CHANGED
@@ -6,7 +6,7 @@ Donate link: https://miniorange.com/
6
  Requires at least: 3.0.1
7
  Tested up to: 5.3
8
  Requires PHP: 5.3.0
9
- Stable tag: 5.3.7
10
  License: GPLv2 or later
11
  License URI: http://www.gnu.org/licenses/gpl-2.0.html
12
 
@@ -272,6 +272,9 @@ miniOrange authentication service has 15+ authentication methods.One time passco
272
 
273
  == Changelog ==
274
 
 
 
 
275
  = 5.3.7 =
276
  * Google Authenticator-Two Factor Authentication (2FA) : Security : Two factor login with username fix.
277
 
@@ -684,7 +687,10 @@ More descriptive setup messages and UI changes.
684
 
685
  == Upgrade Notice ==
686
 
687
- = 5.3.6 =
 
 
 
688
  * Google Authenticator-Two Factor Authentication (2FA) : Security : Two factor login with username fix.
689
 
690
  = 5.3.6 =
6
  Requires at least: 3.0.1
7
  Tested up to: 5.3
8
  Requires PHP: 5.3.0
9
+ Stable tag: 5.3.8
10
  License: GPLv2 or later
11
  License URI: http://www.gnu.org/licenses/gpl-2.0.html
12
 
272
 
273
  == Changelog ==
274
 
275
+ = 5.3.8 =
276
+ * Google Authenticator-Two Factor Authentication (2FA) : Security : Malware Scanner Fix.
277
+
278
  = 5.3.7 =
279
  * Google Authenticator-Two Factor Authentication (2FA) : Security : Two factor login with username fix.
280
 
687
 
688
  == Upgrade Notice ==
689
 
690
+ = 5.3.8 =
691
+ * Google Authenticator-Two Factor Authentication (2FA) : Security : Malware Scanner Fix.
692
+
693
+ = 5.3.7 =
694
  * Google Authenticator-Two Factor Authentication (2FA) : Security : Two factor login with username fix.
695
 
696
  = 5.3.6 =
uninstall.php CHANGED
@@ -92,6 +92,7 @@
92
  delete_site_option('mo2f_visit_malware');
93
  delete_site_option('mo2f_visit_backup');
94
  delete_site_option('mo2f_two_factor');
 
95
 
96
 
97
  $users = get_users( array() );
92
  delete_site_option('mo2f_visit_malware');
93
  delete_site_option('mo2f_visit_backup');
94
  delete_site_option('mo2f_two_factor');
95
+ delete_option('mo2f_scan_initialize');
96
 
97
 
98
  $users = get_users( array() );