WP Hide & Security Enhancer

Version Description

New plugin feature: Emulate CMS
Update PO language file
Skip comment removal when admin dashboard.
Fix: Ignore comment removal when Gutenberg JSON call for blocks, to avoid formatting issues.

Release Info

Developer	nsp-code
Plugin	WP Hide & Security Enhancer
Version	1.7.1
Comparing to
See all releases

Code changes from version 1.6.4 to 1.7.1

Files changed (7) hide show

languages/wp-hide-security-enhancer.mo +0 -0
languages/wp-hide-security-enhancer.po +89 -4
modules/components/general-emulate.php +160 -0
modules/components/general-html.php +6 -1
modules/module-general.php +3 -0
readme.txt +11 -1
wp-hide.php +1 -1

languages/wp-hide-security-enhancer.mo CHANGED Viewed

Binary file

languages/wp-hide-security-enhancer.po CHANGED Viewed

@@ -1,8 +1,8 @@
             msgid ""
             msgstr ""
             "Project-Id-Version: WP Hide & Security Enhancer\n"
-            -
            "POT-Creation-Date: 2021-11-18 15:34+0200\n"
-            -
            "PO-Revision-Date: 2021-11-18 15:34+0200\n"
             "Last-Translator: NspCode <contact@nsp-code.com>\n"
             "Language-Team: Nsp Code\n"
             "Language: en\n"
@@ -592,6 +592,7 @@ msgstr ""
             #: modules/components/admin-new_wp_login_php.php:51
             #: modules/components/cdn-setup.php:20
             #: modules/components/general-admin-bar.php:50
             #: modules/components/general-feed.php:20
             #: modules/components/general-headers.php:21
             #: modules/components/general-headers.php:46
@@ -734,6 +735,7 @@ msgstr ""
             #: modules/components/admin-admin_url.php:59
             #: modules/components/admin-new_wp_login_php.php:65
             #: modules/components/general-admin-bar.php:57
             #: modules/components/general-feed.php:31
             #: modules/components/general-headers.php:30
             #: modules/components/general-headers.php:54
@@ -993,6 +995,89 @@ msgstr ""
             msgid "role."
             msgstr ""
             #: modules/components/general-feed.php:16
             #: modules/components/general-feed.php:20
             msgid "Remove feed|rdf|rss|rss2|atom links"
@@ -2452,11 +2537,11 @@ msgstr ""
             msgid "WP Hide & Security Enhancer - CDN"
             msgstr ""
-            -
            #: modules/module-general.php:66
             msgid "General / Html"
             msgstr ""
-            -
            #: modules/module-general.php:78
             msgid "WP Hide & Security Enhancer - General / Html"
             msgstr ""


1	msgid ""
2	msgstr ""
3	"Project-Id-Version: WP Hide & Security Enhancer\n"
4	+ "POT-Creation-Date: 2021-12-16 19:53+0200\n"
5	+ "PO-Revision-Date: 2021-12-16 19:54+0200\n"
6	"Last-Translator: NspCode <contact@nsp-code.com>\n"
7	"Language-Team: Nsp Code\n"
8	"Language: en\n"

592	#: modules/components/admin-new_wp_login_php.php:51
593	#: modules/components/cdn-setup.php:20
594	#: modules/components/general-admin-bar.php:50
595	+ #: modules/components/general-emulate.php:20
596	#: modules/components/general-feed.php:20
597	#: modules/components/general-headers.php:21
598	#: modules/components/general-headers.php:46

735	#: modules/components/admin-admin_url.php:59
736	#: modules/components/admin-new_wp_login_php.php:65
737	#: modules/components/general-admin-bar.php:57
738	+ #: modules/components/general-emulate.php:35
739	#: modules/components/general-feed.php:31
740	#: modules/components/general-headers.php:30
741	#: modules/components/general-headers.php:54

995	msgid "role."
996	msgstr ""
997
998	+ #: modules/components/general-emulate.php:16
999	+ #: modules/components/general-emulate.php:20
1000	+ msgid "Emulate CMS"
1001	+ msgstr ""
1002	+
1003	+ #: modules/components/general-emulate.php:17
1004	+ msgid ""
1005	+ "Use the option to output specific CMSs HTML traces to mislead any peculiar "
1006	+ "check."
1007	+ msgstr ""
1008	+
1009	+ #: modules/components/general-emulate.php:21
1010	+ msgid ""
1011	+ "Using the option the system try to misguide the used WordPress by outputting "
1012	+ "the wrong traces, of the selected CMS."
1013	+ msgstr ""
1014	+
1015	+ #: modules/components/general-emulate.php:22
1016	+ msgid ""
1017	+ "Misleading and making a false lead provides an extra security, as the "
1018	+ "attacker search and attempt to hack something which not exist."
1019	+ msgstr ""
1020	+
1021	+ #: modules/components/general-emulate.php:23
1022	+ msgid "The plugin can emulate systems like:"
1023	+ msgstr ""
1024	+
1025	+ #: modules/components/general-emulate.php:24
1026	+ msgid "- Drupal"
1027	+ msgstr ""
1028	+
1029	+ #: modules/components/general-emulate.php:25
1030	+ msgid "- Ghost"
1031	+ msgstr ""
1032	+
1033	+ #: modules/components/general-emulate.php:26
1034	+ msgid "- HubSpot"
1035	+ msgstr ""
1036	+
1037	+ #: modules/components/general-emulate.php:27
1038	+ msgid "- Joomla"
1039	+ msgstr ""
1040	+
1041	+ #: modules/components/general-emulate.php:28
1042	+ msgid "- TYPO3"
1043	+ msgstr ""
1044	+
1045	+ #: modules/components/general-emulate.php:29
1046	+ msgid "- Wix"
1047	+ msgstr ""
1048	+
1049	+ #: modules/components/general-emulate.php:36
1050	+ msgid "Drupal 8"
1051	+ msgstr ""
1052	+
1053	+ #: modules/components/general-emulate.php:37
1054	+ msgid "Drupal 9"
1055	+ msgstr ""
1056	+
1057	+ #: modules/components/general-emulate.php:38
1058	+ msgid "Ghost 4.15"
1059	+ msgstr ""
1060	+
1061	+ #: modules/components/general-emulate.php:39
1062	+ msgid "Ghost 4.31"
1063	+ msgstr ""
1064	+
1065	+ #: modules/components/general-emulate.php:40
1066	+ msgid "HubSpot"
1067	+ msgstr ""
1068	+
1069	+ #: modules/components/general-emulate.php:41
1070	+ msgid "Joomla"
1071	+ msgstr ""
1072	+
1073	+ #: modules/components/general-emulate.php:42
1074	+ msgid "TYPO3"
1075	+ msgstr ""
1076	+
1077	+ #: modules/components/general-emulate.php:43
1078	+ msgid "Wix"
1079	+ msgstr ""
1080	+
1081	#: modules/components/general-feed.php:16
1082	#: modules/components/general-feed.php:20
1083	msgid "Remove feed\|rdf\|rss\|rss2\|atom links"

2537	msgid "WP Hide & Security Enhancer - CDN"
2538	msgstr ""
2539
2540	+ #: modules/module-general.php:69
2541	msgid "General / Html"
2542	msgstr ""
2543
2544	+ #: modules/module-general.php:81
2545	msgid "WP Hide & Security Enhancer - General / Html"
2546	msgstr ""
2547

modules/components/general-emulate.php ADDED Viewed

	@@ -0,0 +1,160 @@


1	+ <?php
2	+
3	+ if ( ! defined( 'ABSPATH' ) ) exit; // Exit if accessed directly
4	+
5	+ class WPH_module_general_emulate extends WPH_module_component
6	+ {
7	+ function get_component_title()
8	+ {
9	+ return "Emulate CMS";
10	+ }
11	+
12	+ function get_module_settings()
13	+ {
14	+ $this->module_settings[] = array(
15	+ 'id' => 'emulate_cms',
16	+ 'label' => __('Emulate CMS', 'wp-hide-security-enhancer'),
17	+ 'description' => __('Use the option to output specific CMSs HTML traces to mislead any peculiar check.', 'wp-hide-security-enhancer'),
18	+
19	+ 'help' => array(
20	+ 'title' => __('Help', 'wp-hide-security-enhancer') . ' - ' . __('Emulate CMS', 'wp-hide-security-enhancer'),
21	+ 'description' => __("Using the option the system try to misguide the used WordPress by outputting the wrong traces, of the selected CMS.", 'wp-hide-security-enhancer') . "<br />" .
22	+ __("Misleading and making a false lead provides an extra security, as the attacker search and attempt to hack something which not exist.", 'wp-hide-security-enhancer') . "<br />" .
23	+ __("The plugin can emulate systems like:", 'wp-hide-security-enhancer') . "<br />" .
24	+ __("- Drupal", 'wp-hide-security-enhancer') . "<br />" .
25	+ __("- Ghost", 'wp-hide-security-enhancer') . "<br />" .
26	+ __("- HubSpot", 'wp-hide-security-enhancer') . "<br />" .
27	+ __("- Joomla", 'wp-hide-security-enhancer') . "<br />" .
28	+ __("- TYPO3", 'wp-hide-security-enhancer') . "<br />" .
29	+ __("- Wix", 'wp-hide-security-enhancer') . "<br />" ,
30	+ 'option_documentation_url' => 'https://wp-hide.com/documentation/general-html-robots-txt/'
31	+ ),
32	+
33	+ 'input_type' => 'radio',
34	+ 'options' => array(
35	+ 'no' => __('No', 'wp-hide-security-enhancer'),
36	+ 'drupal_8' => __('Drupal 8', 'wp-hide-security-enhancer'),
37	+ 'drupal_9' => __('Drupal 9', 'wp-hide-security-enhancer'),
38	+ 'ghost_4_15' => __('Ghost 4.15', 'wp-hide-security-enhancer'),
39	+ 'ghost_4_31' => __('Ghost 4.31', 'wp-hide-security-enhancer'),
40	+ 'hubspot' => __('HubSpot', 'wp-hide-security-enhancer'),
41	+ 'joomla' => __('Joomla', 'wp-hide-security-enhancer'),
42	+ 'typo3' => __('TYPO3', 'wp-hide-security-enhancer'),
43	+ 'wix' => __('Wix', 'wp-hide-security-enhancer'),
44	+ ),
45	+ 'default_value' => 'no',
46	+
47	+ 'sanitize_type' => array('sanitize_title', 'strtolower')
48	+
49	+ );
50	+
51	+
52	+ return $this->module_settings;
53	+ }
54	+
55	+
56	+
57	+ function _init_emulate_cms( $saved_field_data )
58	+ {
59	+ if(empty($saved_field_data) \|\| $saved_field_data == 'no')
60	+ return FALSE;
61	+
62	+ if ( is_admin() )
63	+ return;
64	+
65	+ add_filter( 'wp-hide/ob_start_callback', array( &$this, 'emulate_cms_meta' ), 999 );
66	+ }
67	+
68	+
69	+ function emulate_cms_meta( $buffer )
70	+ {
71	+ $emulate_cms = $this->wph->functions->get_module_item_setting('emulate_cms');
72	+ switch ( $emulate_cms )
73	+ {
74	+ case "drupal_8":
75	+ $headers = '<meta name="Generator" content="Drupal 8 (https://www.drupal.org)" />' . "\n" .
76	+ '<meta name="MobileOptimized" content="width" />' . "\n" .
77	+ '<meta name="HandheldFriendly" content="true" />';
78	+ if ( stripos ( $buffer, '<meta' ) !== FALSE )
79	+ $buffer = preg_replace( '/(<meta[^>]*>)/i', $headers . "\n" . '$1', $buffer, 1 );
80	+ else if ( stripos ( $buffer, '<head' ) !== FALSE )
81	+ $buffer = preg_replace( '/(<head[^>]*>)/is', '$1' . "\n" . $headers , $buffer, 1 );
82	+ break;
83	+
84	+ case "drupal_9":
85	+ $headers = '<meta name="Generator" content="Drupal 9 (https://www.drupal.org)" />' . "\n" .
86	+ '<meta name="MobileOptimized" content="width" />' . "\n" .
87	+ '<meta name="HandheldFriendly" content="true" />';
88	+ if ( stripos ( $buffer, '<meta' ) !== FALSE )
89	+ $buffer = preg_replace( '/(<meta[^>]*>)/i', $headers . "\n" . '$1', $buffer, 1 );
90	+ else if ( stripos ( $buffer, '<head' ) !== FALSE )
91	+ $buffer = preg_replace( '/(<head[^>]*>)/is', '$1' . "\n" . $headers , $buffer, 1 );
92	+ break;
93	+
94	+ case "ghost_4_15":
95	+ $headers = '<meta name="generator" content="Ghost 4.15" />';
96	+ if ( stripos ( $buffer, '<meta' ) !== FALSE )
97	+ $buffer = preg_replace( '/(<meta[^>]*>)/i', $headers . "\n" . '$1', $buffer, 1 );
98	+ else if ( stripos ( $buffer, '<head' ) !== FALSE )
99	+ $buffer = preg_replace( '/(<head[^>]*>)/is', '$1' . "\n" . $headers , $buffer, 1 );
100	+ break;
101	+
102	+ case "ghost_4_31":
103	+ $headers = '<meta name="generator" content="Ghost 4.31" />';
104	+ if ( stripos ( $buffer, '<meta' ) !== FALSE )
105	+ $buffer = preg_replace( '/(<meta[^>]*>)/i', $headers . "\n" . '$1', $buffer, 1 );
106	+ else if ( stripos ( $buffer, '<head' ) !== FALSE )
107	+ $buffer = preg_replace( '/(<head[^>]*>)/is', '$1' . "\n" . $headers , $buffer, 1 );
108	+ break;
109	+
110	+ case "hubspot":
111	+ $headers = '<meta name="generator" content="HubSpot" />';
112	+ if ( stripos ( $buffer, '<meta' ) !== FALSE )
113	+ $buffer = preg_replace( '/(<meta[^>]*>)/i', $headers . "\n" . '$1', $buffer, 1 );
114	+ else if ( stripos ( $buffer, '<head' ) !== FALSE )
115	+ $buffer = preg_replace( '/(<head[^>]*>)/is', '$1' . "\n" . $headers , $buffer, 1 );
116	+ break;
117	+
118	+ case "joomla":
119	+ $headers = '<meta name="generator" content="Joomla! - Open Source Content Management" />';
120	+ if ( stripos ( $buffer, '<meta' ) !== FALSE )
121	+ $buffer = preg_replace( '/(<meta[^>]*>)/i', $headers . "\n" . '$1', $buffer, 1 );
122	+ else if ( stripos ( $buffer, '<head' ) !== FALSE )
123	+ $buffer = preg_replace( '/(<head[^>]*>)/is', '$1' . "\n" . $headers , $buffer, 1 );
124	+
125	+ $buffer = $buffer . "\n" . '<!-- URL Normalizer (by JoomlaWorks) -->';
126	+ break;
127	+
128	+ case "typo3":
129	+ $headers = '<meta name="generator" content="TYPO3 CMS" />' . "\n" .
130	+ '<!--
131	+ This website is powered by TYPO3 - inspiring people to share!
132	+ TYPO3 is a free open source Content Management Framework initially created by Kasper Skaarhoj and licensed under GNU/GPL.
133	+ TYPO3 is copyright 1998-2021 of Kasper Skaarhoj. Extensions are copyright of their respective owners.
134	+ Information and contribution at https://typo3.org/
135	+ -->';
136	+ if ( stripos ( $buffer, '<meta' ) !== FALSE )
137	+ $buffer = preg_replace( '/(<meta[^>]*>)/i', $headers . "\n" . '$1', $buffer, 1 );
138	+ else if ( stripos ( $buffer, '<head' ) !== FALSE )
139	+ $buffer = preg_replace( '/(<head[^>]*>)/is', '$1' . "\n" . $headers , $buffer, 1 );
140	+
141	+ break;
142	+
143	+ case "wix":
144	+ $headers = '<meta name="generator" content="Wix.com Website Builder" />';
145	+ if ( stripos ( $buffer, '<meta' ) !== FALSE )
146	+ $buffer = preg_replace( '/(<meta[^>]*>)/i', $headers . "\n" . '$1', $buffer, 1 );
147	+ else if ( stripos ( $buffer, '<head' ) !== FALSE )
148	+ $buffer = preg_replace( '/(<head[^>]*>)/is', '$1' . "\n" . $headers , $buffer, 1 );
149	+ break;
150	+
151	+ }
152	+
153	+
154	+ return $buffer;
155	+
156	+ }
157	+
158	+
159	+ }
160	+ ?>

modules/components/general-html.php CHANGED Viewed

	@@ -218,8 +218,13 @@
218	{
219	if(empty($saved_field_data) \|\| $saved_field_data == 'no')
220	return FALSE;
221	-
222






223	add_filter('wp-hide/ob_start_callback', array($this, 'remove_html_comments'));
224
225	}


218	{
219	if(empty($saved_field_data) \|\| $saved_field_data == 'no')
220	return FALSE;

221
222	+ if ( wp_is_json_request() && strpos( $_SERVER['REQUEST_URI'], '/blocks' ) !== FALSE )
223	+ return;
224	+
225	+ if ( defined('WP_ADMIN') && ( !defined('DOING_AJAX') \|\| ( defined('DOING_AJAX') && DOING_AJAX === FALSE )) )
226	+ return;
227	+
228	add_filter('wp-hide/ob_start_callback', array($this, 'remove_html_comments'));
229
230	}

modules/module-general.php CHANGED Viewed

	@@ -12,6 +12,9 @@
12	include(WPH_PATH . "/modules/components/general-meta.php");
13	$this->components[] = new WPH_module_general_meta();
14



15	include(WPH_PATH . "/modules/components/general-admin-bar.php");
16	$this->components[] = new WPH_module_general_admin_bar();
17


12	include(WPH_PATH . "/modules/components/general-meta.php");
13	$this->components[] = new WPH_module_general_meta();
14
15	+ include(WPH_PATH . "/modules/components/general-emulate.php");
16	+ $this->components[] = new WPH_module_general_emulate();
17	+
18	include(WPH_PATH . "/modules/components/general-admin-bar.php");
19	$this->components[] = new WPH_module_general_admin_bar();
20

readme.txt CHANGED Viewed

	@@ -4,7 +4,7 @@ Donate link: https://www.nsp-code.com/
4	Tags: wordpress hide, hide, security, improve security, hacking, wp hide, custom login, wp-loging.php, wp-admin, admin hide, login change,
5	Requires at least: 2.8
6	Tested up to: 5.8.2
7	- Stable tag: 1.6.4
8	License: GPLv2 or later
9
10	Hide WordPress, wp-content, wp-includes, wp-admin, login URL, plugins, themes etc. Block the defaults for being still accessible. No files and data are changed on your server.
	@@ -173,6 +173,10 @@ Since version 1.2 Change individual plugin urls which make them unrecognizable,
173	* Remove profile link
174	* Remove canonical link
175




176	General / Html > Admin Bar
177
178	* Remove WordPress Admin Bar for specified urser roles
	@@ -356,6 +360,12 @@ Please get in touch with us and we'll do our best to include it for a next versi
356
357	== Changelog ==
358






359	= 1.6.4 =
360	* Ensure compatibility with PHP 8.0
361	* Update PO language file


4	Tags: wordpress hide, hide, security, improve security, hacking, wp hide, custom login, wp-loging.php, wp-admin, admin hide, login change,
5	Requires at least: 2.8
6	Tested up to: 5.8.2
7	+ Stable tag: 1.7.1
8	License: GPLv2 or later
9
10	Hide WordPress, wp-content, wp-includes, wp-admin, login URL, plugins, themes etc. Block the defaults for being still accessible. No files and data are changed on your server.

173	* Remove profile link
174	* Remove canonical link
175
176	+ General / Emulate CMS
177	+
178	+ * Emulate CMS
179	+
180	General / Html > Admin Bar
181
182	* Remove WordPress Admin Bar for specified urser roles

360
361	== Changelog ==
362
363	+ = 1.7.1 =
364	+ * New plugin feature: Emulate CMS
365	+ * Update PO language file
366	+ * Skip comment removal when admin dashboard.
367	+ * Fix: Ignore comment removal when Gutenberg JSON call for blocks, to avoid formatting issues.
368	+
369	= 1.6.4 =
370	* Ensure compatibility with PHP 8.0
371	* Update PO language file

wp-hide.php CHANGED Viewed

	@@ -5,7 +5,7 @@ Plugin URI: https://wp-hide.com/
5	Description: Hide and increase Security for your WordPress website instance using smart techniques. No files are changed on your server.
6	Author: Nsp Code
7	Author URI: http://www.nsp-code.com
8	- Version: 1.6.4
9	Text Domain: wp-hide-security-enhancer
10	Domain Path: /languages/
11	*/


5	Description: Hide and increase Security for your WordPress website instance using smart techniques. No files are changed on your server.
6	Author: Nsp Code
7	Author URI: http://www.nsp-code.com
8	+ Version: 1.7.1
9	Text Domain: wp-hide-security-enhancer
10	Domain Path: /languages/
11	*/

WP Hide & Security Enhancer - Version 1.7.1

Version Description

Release Info

Code changes from version 1.6.4 to 1.7.1