Submit Changelog
Track Changelogs

BusinessPress

Changelog

1.5 – 2026-02-13

  • Bugfix: Clickjacking Protection: Avoid loosing .htaccess rules
  • Bugfix: Disable REST API: Allow oEmbed endpoint if allowed in BusinessPress
  • Disable REST API: Allow EDD webhoks
  • Hide Admin Notices: Remove Polylang review nag
  • Hide Admin Notices: Remove YARPP rating nag
  • IP Detect: Update Cloudflare IP ranges
  • Search template: SEOPress noindex fix

1.4.1 – 2025-06-19

  • Site Health Status: It only shows to allowed admins, if restrictions are on, so make a note of it

1.4 – 2025-05-22

  • Reverting: WAF: Ignore bad entries in X-Forwarded-For HTTP header: It would cause issues with the CCBill payment gateway

1.3 – 2025-05-21

  • Simple History: “History menu position” should be “Inside dashboard menu item” as by default it’s above “Posts”, so we force this setting
  • Simple History: Settings -> “Show history” -> “in the admin bar” should be disabled for performance reasons, so we force this setting
  • Simple History: Clean-up settings screen for version 5.11.0

1.2 – 2025-04-30

  • Tested up to: 6.8
  • New Setting: WooCommerce Search Speed: Speed up the search by only searching the billing email address and not shipping nor billing address.
  • New Setting: Yearly dropdowns for posts filtering: If the standard list of months in wp-admin -> Posts or WooCommerce Orders and Subscriptions is going to show more than 10 months, the years will show instead. Will show only “Last 12 months” by default.
  • Login Lockout: Admin interface: Make the flag in users table red to not go unnoticed
  • Login Lockout: Ignore HEAD requests which are used by Outlook to check links in emails
  • Login Lockout: Simple History support
  • Simple History: Remove wp-admin add-on ads etc.
  • User login sessions: Limit to last 10 rows, add button to show the rest
  • WAF: Ignore bad entries in X-Forwarded-For HTTP header
  • Bugfix: Login Lockout: Fix for WordPress < 5.4
  • Bugfix: Login Lockout: Should occur on 21th bad login attempt, it would happen on 22th

1.1 – 2024-12-31

  • Tested up to: 6.7
  • Require Email Address for Login: Do not show email address requirement on wp-login.php
  • WAF – More .git/ folder rules
  • Bugfix – Front-end Login Check: Improve browser back button detection
  • Bugfix – Require Email Address for Login: Fix for Easy Digital Downloads
  • Bugfix – Enhance wp-admin Dropdowns: Avoid max-width for select boxes

1.0 – 2024-04-25

  • Button to purge the Surge plugin HTML page cache
  • Dashboard: Hide “PHP Update Recommended, if user is doesn’t have the full admin rights
  • Dashboard: Remove Welcome box
  • Dashboard: Remove WordPress Events and News
  • “Hide Admin Notices” – allow User Switching plugin notices
  • “Hide Admin Notices” – allow WP Rocket Unused CSS and Used CSS
  • “Hide Admin Notices” – block ShortPixel sale offers which would still show
  • Hide XYZ Html plugin ads on its settings screen
  • New plugin: Users by Date Registered – allows you to sort wp-admin -> Users by registration date
  • New setting: “Clickjacking Protection” – adds X-Frame-Options header to prevent clickjacking
  • New setting: “Login Lockout” – The tranditional IP banning is not effective against botnets. The only way is to block further login attempts on a per account basis. If a user account gets more than 20 bad login attempts, login is disabled and user get an email notification. Link in that email let user re-enable login for his account.
  • New setting: “Hide Password Protected Posts” – Password protected posts won’t show up anywhere unless you have the direct link or your are the admin or editor.
  • New setting: “Require Email Address for Login” – avoids bots being able to find out about your login name and use that in login attempts
  • Search template – “Enable domain name” setting for search results, on by default
  • Search template – fix issue when searching for keyword and white space after it
  • Search template – WP Rocket Remoe Unused CSS fix
  • User login sessions – Show on wp-admin user profile screen
  • WAF – detect bad requests and log the issue for fail2ban to take action: https://foliovision.com/wordpress/plugins/businesspress/malicious-requests-businesspress

0.9.13 – 2022-02-23

  • “Hide Admin Notices” – whiteslisting all error notices (matched by ‘class=”error ‘)

0.9.12 – 2021-11-26

  • New setting – Settings -> Media -> Maximum size – normally WordPress limits the size of linked images in the posts to 2560 pixels

0.9.11 – 2021/08/10

  • Search template – fix output when using Genesis -> Content Archive -> Display -> Entry excerpts

0.9.10 – 2021/07/16

  • “Plain text editing” is now deprecated, only active where already enabled

0.9.9 – 2021/06/24

  • “Hide Admin Notices” – whitelisting FV Swiftype, RCP, User Switching, WooCommerce and WP Crontrol

0.9.8 – 2021/05/11

  • Extending “Projected security updates” to allow WP 4.9 for another 9 months

0.9.7 – 2020/11/30

  • Fixing admin notices dismissing

0.9.6 – 2020/05/05

  • New post setting – Front-end Login Check
  • New post setting – Plain text editing
  • Bugfix – Alphabetically sorting the wp-admin -> Settings menu – breaking redirections for logged in subscribers in some cases

0.9.5 – 2020/04/01

  • New feature – Alphabetically sorting the wp-admin -> Settings menu, making it much easier to find any settings screen!
  • New feature – Stopping subscriber password reset notification emails

0.9.4 – 2019/11/05

  • WordPress core hotfix – are you getting error like “Unable to create directory ../images/2019/11. Is its parent directory writable by the server?” Since October 2019 WordPress doesn’t support ../ in the upload path. So we translate that path to absolute path and check if it’s in the site webroot and then let it pass

0.9.3 – 2019/08/13

  • Bugfix – Login redirection – preventing redirection back to the password reset link

0.9.2 – 2019/01/04

  • New updates setting – “Version Control System – Forces WordPress to use auto-updates even on websites which use Git or SVN” and it’s on by default

0.9.1 – 2018/10/01

  • Fixing notice dismissing and whitelisting.

0.9 – 2018/06/29

  • Login redirection – After you log in you will be redirected back to the page where you clicked wp-login.php link, unless there was a custom redirect_to parameter. Uses HTTP referer.

0.8.9 – 2018/06/11

  • Fail2ban protection for bad password reset attempts
  • Bugfix – Enhance wp-admin Dropdowns – excluding EDD variable prices
  • Bugfix – search term highlight issues when using FV Swiftyp

0.8.8 – 2018/05/30

  • Bugfix – number of plugin updates invisible, but red circle appearing in the menu

0.8.7 – 2018/05/11

  • Enhance wp-admin Dropdowns – fixed to ignore select boxes which are initially not visible as it was causing these to disappear (appearing with almost zero width)

0.8.6 – 2018/05/07

  • Enhance Author Dropdown – using WP Chosen instead, as it improves all the select boxes in wp-admin!

0.8.5 – 2018/05/03

  • New feature – Enhance Author Dropdown – Changes the old school HTML dropdown for post author to a modern select box with search functionality. On by default.

0.8.4 – 2018/03/05

  • New setting – Redirect WP Admin for subscribers
  • Search hightlight – not using anymore
  • Bugfix – login logo not saving
  • Bugfix – WordPress version release dates couldn’t be parsed

0.8.3 – 2017/10/18

  • New feature, on by default! – Set Featured Images Automatically – First image in the post becomes the featured image on save

0.8.2 – 2017/10/09

  • Hiding number of updates from admin bar
  • Adding option to bring back the legacy WordPress Link Manager
  • Google style results – fix for results being injected into any sidebar content that uses the_content filter

0.8.1 – 2017/07/20

  • Bugfix – X-Pull key saving

0.8 – 2017/07/19

  • You can now pick the WordPress major branch version to upgrade to

0.7.5 – 2017/07/14

  • Bugfix – exlcluding vtt and apple-app-site-association from fail2ban logs

0.7.4 – 2017/06/14

  • Google style results – greatly improved the search excerpts

0.7.3 – 2017/06/08

  • Feature – “Hide Admin Notices” – groups notices to “New” and “Viewed”
  • Feature – hearthbeat update frequency increased to 60 seconds
  • Login logo – using domain mapped domain when WordPres MU Domain Mapping is present
  • Bugfix – “Hide Admin Notices” – Notices screen missing in WP Multisite
  • Bugfix – exlcluding jpeg images from fail2ban logs, making extensions check case-insensitive
  • Bugfix – settings saving

0.7.2 – 2017/04/05

  • Bugfix – “Hide WP Admin Bar for subscribers” was breaking WP Ajax for logged in logged in subscribers

0.7.1 – 2017/03/27

  • Bugfix – “Hide Admin Notices” breaking WP admin menu with Newsletter plugin
  • Bugfix – making sure the admin restrictions remain enabled after upgrading

0.7 – 2017/03/24

  • New settings screen with tabs!
  • New function – Disable XML-RPC
  • New function – Disable REST API
  • New function – Disable Emojis
  • New function – Disable oEmbed
  • New function – Impose Admin Color Scheme to all users
  • New function – Enable Google style results – gives you similar layout and keyword highlight
  • New function – Login logo (with image upload)
  • New function – Hide Admin Notices option moves all the notices to a new screen!
  • Improving the notice for password reset link to also say “Please check your Junk or Spam folder if the email doesn’t seem to arrive in 10 minutes.”
  • Setting “Hide WP Admin Bar for subscribers” now also removes all screens except for Profile
  • WP logo in Admin Bar is now removed

0.6.6 – 2017/01/17

  • Added setting to Allow other admins to -> Export site content
  • Disabling “WordPress x.y.z is available. Please update!” emails
  • Disabling “Your site has updated to WordPress x.y.z” emails

0.6.5 – 2017/01/03

  • Fail2ban – added support for MaxCDN – matching IPs are treated as proxy servers to detect the real user IP reliably

0.6.4 – 2016/11/08

  • Bugfix – users able to deactivate the plugin in some cases
  • DoS protection – 404 requests are now reported to fail2ban. Make sure you update your fail2ban filter a jail settings. Our settings are 12 retries (login or 404) in 20 minutes

0.6.3 – 2016/07/18

  • Fix for WordPress Multisite

0.6.2 -2016/06/16

  • Fail2ban – moving checks for bad XML-RPC pingbacks to a different keyword for a different filter

0.6 – 2016/06/07

  • Fail2ban support added, check install instructions

0.5.3 – 2016/05/06

  • Added new permission to control – “Update WordPress core” – as not every admin should be able to do that
  • Allowing access to Dashboard -> Updates for everybody, but if the upgrade permissions in BusinesPress settings are not allowed, users will only see “Please contact {email for which the permissions are whitelised} to upgrade WordPress, plugins or themes.” or “Please contact your site admin or your partners at {domain for which the permissions are whitelised} to upgrade WordPress, plugins or themes.” note and a list of updates available.
  • Core Updates control – If you are not using latest WordPress, plugin gives you a chance to upgrade to the latest WordPress version in your current branch. That means you can safely upgrade 4.1.7 to 4.1.10 without having to go to 4.5.1 directly
  • Fixed compatibility with WordPress 3.7

0.5.2 – 2016/04/27

  • Changing Dashboard -> Updates screen – added extra security to the upgrade button – warning user about the risks of upgrading WordPress in a more comprehensive way

0.5.1 – 2016/04/12

  • Fix for the “BusinessPress must be configured before it becomes operational.” link when network activated

0.5

  • Reworking the activation.

0.4.9

  • First public release

Plugin Website
Visit website

Author
FolioVision
Version:
1.5
Last Updated
February 13, 2026
Active Installs
40
Requires
WordPress 4.0
Tested Up To
WordPress 6.8.3
Requires PHP
5.6

Share Post

Join our newsletter.

Get insights into what’s happening at ChangelogWP right in your inbox. We don’t believe in spam.