Tweak: Remove non-SSL fallbacks for Security Check Pro and Version Management.
Bug Fix: Tweak checkbox styles.
Security Improvement: To improve server compatibility, requests to the iThemes updater servers would automatically downgrade from https to http when https connections failed. This update removes the automatic downgrade. If your server cannot make outbound https connections, you can re-enable the downgrade capability by adding the following define in your site's wp-config.php file:
define( 'ITHEMES_ALLOW_HTTP_FALLBACK', true );
Important: iThemes Security requires WordPress 5.4 or later.
New Feature: Manage bans from the Security Dashboard with the new Banned Users card.
Enhancement: Support writing a note describing why a ban was added.
Enhancement: Store the time a ban was added, and the lockout module responsible for the ban.
Enhancement: Add a WP CLI command for managing bans, wp itsec ban.
Enhancement: Add a setting for configuring the number of bans added to the server config files (.htaccess/nginx.conf).
Bug Fix: PHP warnings when invalid entries are stored in the WordPress Cron storage.
Bug Fix: Update the list of tables added to wpdb.
Bug Fix: Remove default value for text columns. This caused an issue on MySQL 8 and is unnecessary.
Bug Fix: Missing borders in the sidebar widgets on WordPress 5.5.
Bug Fix: Notice actions didn't trigger when "Hide Admin Bar" is enabled.
Download IThemes Security Pro v6.6.5 WordPress Plugin Nulled Free
Bug Fix: On WordPress 5.5, use the new auto-update notification instead of the debug email.
Bug Fix: Updated lib/updater to 1.6.4 Added support for the auto-update feature introduced in WordPress 5.5.
Download IThemes Security Pro v6.6.4 WordPress Plugin Nulled Free
v6.6.4 - 2020-08-07 - Timothy Jacobs
Bug Fix: Update lib/updater to the latest version. Fixed fatal error that can happen when upgrading to the 1.6.1 version of this code: Ithemes_Updater_Settings::get_licensed_site_url() in server.php:199".
Download IThemes Security Pro v6.6.1 WordPress Plugin Nulled Free
Enhancement: Add support for updating a plugin/theme directly from the Site Scanner vulnerability details page.
Tweak: Update site scanner notification language to be less alarming.
Tweak: Change insensitive language to be more inclusive.
New Feature: The new, improved WordPress Security Site Scan powered by iThemes performs automatic checks for known website vulnerabilities and, if a patch is available, iThemes Security Pro can now automatically apply the fix for you.
Enhancement: Added support for muting specific vulnerability notifications. After performing a new site scan, click the link for details about a vulnerability. Then click the "mute" button to stop being notified about that particular issue.
Enhancement: Remove quick bans. Persist banned hosts to .htaccess or nginx.conf on an hourly schedule.
Tweak: Cap banned hosts persisted to .htaccess or nginx.conf to the most recent 100. This number can be adjusted with the "itsec_ban_users_max_hosts_for_server_config" filter. Older banned hosts will be locked out after WordPress loads.
Bug Fix: File Change Security Message would not appear for new installs.
Download IThemes Security Pro v6.1.2 WordPress Plugin Nulled Free
v6.1.2 - 2019-09-09
Enhancement: Add confirmation button to Passwordless Login or One-Click Two-Factor when on a different device than you started with. When Trusted Devices is active, include information about the device the login will be processed on.
Bug Fix: Fix Passwordless Login release notice not being dismissed due to a REST API route that was more narrowly defined than necessary.
Download IThemes Security Pro v6.1.0 WordPress Plugin Nulled Free
v6.1.0 - 2019-09-04
Breaking Change: iThemes Security requires PHP 5.4 or later.
New Feature: Make WordPress Security Easy With Passwordless Logins
Enhancement: Make Magic Links work in a wider variety of situations.
Enhancement: New Lockout Template screen.
Bug Fix: WordPress 5.3 Compatibility
Bug Fix: Brute Force module reporting invalid logins using an email address incorrectly.
Developer Note: There were significant changes to the internals of the iThemes Security Lockout API in this release. If you are using the ITSEC_Lockout class directly, all the API functions will continue to work, but will emit deprecation notices. Please update your integrations.
Download IThemes Security Pro v6.0.2 WordPress Plugin Nulled Free
v6.0.2 - 2019-06-28
Enhancement: New iThemes Sync Verb support for File Change.
Tweak: Add additional information about the login attempt when calling the Network Brute Force API.
Bug Fix: Ensure Dashboard classes are always loaded.