You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an alternative browser.
You should upgrade or use an alternative browser.
Solid Security / iThemes Security Pro 8.5.4 Nulled
No permission to download
- Author hellobut
- Creation date
New: Refreshed UI for manging per-user security settings like Passwordless Login, Passkeys, Two-Factor and Privilege Escalation. The previous Two-Factor UI can be enabled using the SOLID_SECURITY_LEGACY_2FA_UI constant.
New: A new block "Solid Security User Security Settings" let's you display this UI on the front-end of your website. The [solid_security_user_profile_settings] shortcode can be used if you're not yet using the Block Editor.
Important: Solid Security now requires WordPress 6.3 or later.
Enhancement: Display a snackbar notice when sending a 2FA reminder from the Site Scan page.
Enhancement: Include a link directly to the Patchstack database in the Site Scanner alert email.
Tweak: Remove iThemes Security is now Solid Security banners from the admin.
Bug Fix: An error occurred when trying to create a new Firewall rule as a draft.
Bug Fix: Trying to enable Network Brute Force from the Security messages center linked to the wrong place.
Bug Fix: During onboarding, a double scrollbar was displayed on some screen sizes.
New: Add support for creating custom firewall rules.
Enhancement: Add support for configuring firewall settings from the Firewall page.
Bug Fix: The firewall page would appear empty when geolocation could not retrieve a country code.
Security: Harden SolidWP Updater against XSS attacks. Thanks to Robin Wood (digi.ninja) for disclosing this issue.
Security: Don't disclose the login URL when using Hide Backend on a site with comments enabled and comment registration required. Thanks to Naveen Muthusamy for disclosing this issue.
Hardening: Check for the promote_user capability when using Privilege Escalation in addition to edit_user.
Tweak: Remove the iThemes Security is now Solid Security banner from admin-facing email notifications.
Bug Fix: Prevent the User Security page from crashing when "Show Avatars" is disabled in the WordPress discussion settings.
Bug Fix: Fix some filters on the User Security page not working as expected.
Bug Fix: Fix spacing on the Two-Factor form when backup methods are enabled.
Update: The lib/updater library has been updated to 1.8.1
Enhancement: Add a `wp ithemes-licensing set-licensed-url` WP-CLI command.
Bug Fix: Fix fatal error when there is an error retrieving Patchstack license information.
Bug Fix: Styling issues on WordPress 6.4.
Enhancement: Add pagination to the Firewall logs table.
Tweak: Various UI improvements.
Bug Fix: On sites with no logo, a broken image appeared in some emails.
Bug Fix: In some email clients, the Solid Security logo would stretch too wide.
News: iThemes Security is becoming Solid Security soon. Learn More: https://go.solidwp.com/security-wpadmin-ithemes-becoming-solidwp
Bug Fix: Username First login compatibility with WordPress 6.3.
Tweak: Start enabling encryption for existing iThemes Security sites. Read more: https://ithemes.com/?p=84653
Bug Fix: Fallback to the homepage when Enforce SSL encounters a non-safelisted redirect destination.
Bug Fix: IP Detection on sites behind Load Balancers that appended their IP address to X-Forwarded-For and did not provide a Real IP header.
Security Hardening: Prevent open redirects attacks against the Enforce SSL module. This attack requires spoofing the Host header which requires additional conditions to exploit. Thanks to nlpro for reporting the issue.