You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an alternative browser.
You should upgrade or use an alternative browser.
iThemes Security Pro 8.4.2
Download iThemes Security Pro 8.4.2 from nulled fire. iThemes Security Pro takes the guesswork out of WordPress security.
- Author Apanha
- Creation date
Enhancement: Periodically retry malware scans when there is a temporary error with the scanning service before alerting users of the issue.
Enhancement: Improved compatibility for Recaptcha on the front-end on slower to load websites.
Removed Old Feature: Removed the "Replace jQuery With a Safe Version" feature as its use (protecting against a specific jQuery bug: #9521 (XSS with $(location.hash) and $(#<tag>) is needed?) – jQuery - Bug Tracker) is many years old and is no longer a concern.
Bug Fix: Bumped version number of some scripts to ensure that they refresh properly.
Bug Fix: Fixed way to work around Hide Backend on some hosts.
Bug Fix: Bumped version number of some scripts to ensure that they refresh properly.
New Feature: Added support for email notifications when automatic updates are installed.
Enhancement: Multisite Support for Settings Exports
Enhancement: Added warnings to the Version Management settings page if the system or site configuration could prevent automatic updates from working as expected.
Enhancement: Added support for validating the Recaptcha hostname by using the 'itsec_recaptcha_validate_host' filter.
Enhancement: Refresh module settings after an import has been completed.
Enhancement: Notify the user of invalid file paths for Log Files, Backups and NGINX Conf file during an import.
Enhancement: Replaced file locking with database locking. This method of locking is compatible with all systems as it does not require the ability to write files. It also allows for locking to work on sites that have multiple front-end servers with a shared database. Since file locking is no longer used, the Global Settings > Disable File Locking setting was removed.
Enhancement: Add "Copy to Clipboard" functionality for server and wp-config rules.
Bug Fix: Prevent 404s when following links in email notifications on a site with Hide Backend enabled.
Bug Fix: Ensure uninstall process is not run when another version of iThemes Security is still active.
Bug Fix: Fixed method of working around Hide Backend.
Bug Fix: Warnings are no longer generated when saving a user profile with a role of "No role for this site" selected.
4.1.0 - 2017-07-05
Important: The way that Hide Backend functions changes in this release. Previously, if your Hide Backend Login Slug was wplogin, going to example.com/wplogin would result in the URL remaining example.com/wplogin. The new implementation of this feature results in a redirect to a URL that looks as follows: example.com/wp-login.php?itsec-hb-token=wplogin. While this may not be desireable for some users, this change was necessary to fix longstanding compatibility issues with other plugins. Once you access the login page using the Login Slug page, a cookie is set with an expiration time of one hour. As long as the cookie remains, you can access example.com/wp-login.php without having to access the Hide Backend Login Slug first. If you wish to confirm that Hide Backend is working properly on your site, opening up a private browsing window is a quick way to test without having to log out and clear cookies.
Bug Fix: Update malware scan scheduling email settings when the admin user id is updated.
Bug Fix: Fixed compatibility of Two Factor with Jetpack's Single Sign On feature.
Bug Fix: Fixed issue that could prevent "Register" and "Lost your password?" links from working properly on the login page when Hide Backend is enabled.
Bug Fix: Fix fatal error when updating a profile.
Bug Fix: Fix strong passwords not being recognized as strong on the profile page.
Bug Fix: Fix fatal error when registering a new user without specifying a role ( iThemes Exchange ).
Bug Fix: Compatability with JetPack SSO and Password Requirements.
Bug Fix: Ensure viewport meta is defined when loading the password requirements update password form.
Bug Fix: Hide Backend is now compatible with Jetpack Single Sign On.
Bug Fix: Hide Backend now hides registration pages on multisite sites.
Enhancement: Add recaptcha support for WooCommerce.
Enhancement: Allow multiple recaptchas on a single page.
Enhancement: The Hide Backend hidden login URL is no longer leaked by password-protected content.
Enhancement: Allow for searching through modules and settings.
Enhancement: Link to other module settings pages without forcing the page to refresh.
Enhancement: Fire an action, "itsec_change_admin_user_id", when the admin user id changes.
Enhancement: Changed default Hide Backend Register Slug from wp-register.php to wp-signup.php since WordPress switched from using wp-register.php to wp-signup.php for registrations. This will not affect existing sites.
Enhancement: Hide Backend functions purely in PHP code now rather than relying half on PHP code and half on .htaccess and nginx.conf modifications. This allows Hide Backend to function on web servers and server configurations that it was previously not compatible with.
New Feature: Added support for the ITSEC_DISABLE_MODULES define.
4.1.1 - 2017-07-05
Bug Fix: Fixed password-protected posts not properly handling the password when Hide Backend is enabled.