1. Welcome to NulledFire​
    As Guest you are watching Limited NulledFire functions. Login or Register to see all NulledFire site functions.

iThemes Security Pro 3.7.2

iThemes Security Pro takes the guesswork out of WordPress security.

Last Update:Mar 24, 2017 at 4:50 PM      
4.66667/5, 3 ratings

  1. 3.7.2

    Bug Fix: When a requesting IP address cannot be found, default to This fixes issues with some alternate cron setups.
    Bug Fix: Having more than one iThemes Security modification in a .htaccess, nginx.conf, or wp-config.php file will no longer result in having all the file content between each section removed when updating the file.
    Bug Fix: Modifications to the wp-config.php file added by W3 Total Cache now have their Windows-style newlines preserved when iThemes Security updates...
  2. 3.7.1

    Bug Fix: Fixed a bug that could prevent settings from saving properly if the site was migrated to a new server or a new home path on the server.
  3. 3.7.0

    New Feature: Added the ability to create Application Passwords that are valid for the REST API, XML-RPC requests, or both.
    New Feature: When a user has an Application Password that is valid for use by the REST API, authenticated REST API requests can be made using HTTP Basic Authentication which allows for including the username and and password with the request.
    New Feature: Application Passwords that are valid for the REST API can be set to read-only. This allows for creation of services...
  4. 3.6.2

    Bug Fix: Fixed bug that prevented Away Mode from activating on some sites.
  5. 3.6.1

    Bug Fix: Removed warning that could occur when upgrading from pre-3.6.0 versions of iThemes Security Pro.
    Bug Fix: Fixed scenario that could cause users to have to provide two-factor authentication during login when the Two-Factor Authentication feature is disabled.
    Bug Fix: Fixed link sent to users when using User Security Check to send an email reminder to a user prompting them to configure two-factor.
    Bug Fix: Fixed bug that could prevent generation of new two-factor codes on the...
  6. 3.6.0

    New Feature: Ability to require Two Factor for users with specific roles.
    New Feature: Ability to require Two Factor for vulnerable users.
    New Feature: Ability to require Two Factor when the site is vulnerable.
    Enhancement: Added logging details about which two-factor provider was used when a two-factor authentication failed.
    Enhancement: Improved efficiency of the Two Factor feature.
    Enhancement: Added check for the ITSEC_DISABLE_INACTIVE_USER_CHECK define which allows...
  7. 3.5.0

    -Bug Fix: Fixed issue that could notify that WordPress 4.7.1 (the current version) is an outdated version of WordPress.
    -Removed Feature: Removed additional authentication method for REST API requests.
  8. 3.4.0

    Bug Fix: Removed "comodo" from the list of user agents blocked by the HackRepair.com blacklist. This ensures that Comodo's AutoSSL feature of cPanel/WHM is able to function.
    Updated Feature: Updated the "REST API" feature in the WordPress Tweaks section. The feature now has proper support for protecting privacy on your site without preventing the REST API from functioning.
    Enhancement: Updated Security Check to enforce setting the "REST API" setting to "Restricted Access".
  9. iThemes Security Pro 3.2.0

    Enhancement: Updated the lockouts notification email to a new design. This new design also cleaned up the translation strings to allow better translations.
    New Feature: Added a "Protect Against Tabnapping" feature in the WordPress Tweaks section. Details of what this feature protects against can be found here: Target="_blank" - the most underestimated vulnerability ever
    Misc: Updated...
  10. 3.1.1

    -Bug Fix: Remote IP is now correctly identified if the server is behind a reverse proxy that sends requests with more than one IP listed in a single header.
    -Bug Fix: Fixed the link for a user in the logs page so that it properly works on sites that are inside a subdirectory.
    -Bug Fix: Improved how Strong Password Enforcement works on password resets to improve compatibility with various plugins.
    -Bug Fix: Improved the logic for determining whether a user should have Strong Password...