miniOrange 2FA – Two-Factor Authentication for WordPress (SMS, Email & Google Authenticator)

6.2.4

• Authenticator apps invalid one time passcode issue fix.

6.2.3

• Readme Updates

6.2.2

• Readme Updates

6.2.1

• Security Fixes
• Readme Updates

6.2.0

• UI Updates – 2FA Settings

6.1.7

• Minor Fixes – 2FA User Profile

6.1.5

• Security Fixes
• Code Optimization Changes

6.1.4

• Bug Fixes – 2FA Login flow
• Code Optimization Changes

6.1.3

• Vulnerability Fixes – Admin XSS/MITM risk via IP Lookup

6.1.2

• Vulnerability Fixes – Broken Access Control

6.1.1

• Vulnerability Fixes – Session Hijacking & Replay Attack (Google Authentication)

6.1.0

• UI/UX Improvements – 2FA popups
• Vulnerability Fixes – 2FA Bypass and Weak Question & Answer Validation (KBA)
• Bug Fixes – Low Transactions Notice
• Added Debug Log Feature
• Setup Guides Links added in Forms tab
• Code Optimization

6.0.9

• Bug Fixes – 2FA Backup Code Validation

6.0.8

• Compatibility with WordPress 6.8
• Bug Fixes – 2FA Login Transaction Report

6.0.7

• UI/UX Improvements – miniOrange user Login & Registration form | Sync Transactions button
• Bug Fixes – Login Report feature
• Updates – Users’ 2FA Status table | .pot file

6.0.6

• Improvements – 2FA admin dashboard UI/UX
• Auto file inclusion added
• Added Separate tab for 2FA reports
• Updated Email Verification popup

6.0.5

• Updated Button CSS
• Updated Custom Logo Branding on 2FA Popup Settings UI
• General CSS Improvements
• 2FA Pricing Page Removed

6.0.4

• Improvement – Updated Login Transaction Report UX
• 2FA Pricing Plan updates

6.0.3

• Bug Fixes – Google Authentication CSS-JS loading issue in login

6.0.2

• Setup Wizard flow changes.
• Bug Fix in Setup Wizard flow.

6.0.1

• Bug fixes for UI/UX plugin release

6.0.0

• Updated UI/UX of the plugin
• Added configuration for customizations of all email templates
• Added 2FA reconfiguration link via email as backup method
• Added Custom Redirect URL after login
• Extended grace period functionality
• Removed miniOrange and DUO Authenticator 2FA methods

5.8.4

• Updated jquery jquery.dataTables.min.js version to the latest version
• Bug fixes- Getting error on user account creation on WooCommerce

5.8.3

• Compatibility with WordPress 6.5
• Fixed redirection issue on activation with WordPress 6.5
• Changed refund Policy link
• Updated miniOrange portal links

5.8.2

• Bug Fix- Log out the users when the grace period is enabled
• Improvement- Added SMTP checks for email verification
• Improvement- Updated UX for Email Verification method
• Fixed- Warnings in the error logs

5.8.1

• Bug Fix- Show backup codes to users after configuring Email Verification
• Updated UI for Google Authenticator user configuration screens
• Updated UI of Setup Wizard

5.8

• Bug fix- 2FA method was getting updated when updating a user on the user-edit page
• Updated UI for OTP over SMS, OTP over Email and OTP over Telegram configuration screens
• Added Email Verification method

5.7.5

• Compatibility with WordPress 6.4

5.7.4

• Bug fix- Keep end users’ 2FA configuration when the plugin is deactivated
• Bug fix- Attempts left for the OTP-based methods
• Bug fix- Display App Key for Google authenticator in 2FA inline registration

5.7.3

• Bug fixes for registration forms
• Compatibility with WordPress 6.3

5.7.2

• Updated flow of 2FA on registration form
• Minor bug fixes

5.7.1

• Fixes:User can configure/reconfigure/reset cloud method,SMS transactions credited on registration,fixed email sync issue
• Added:Resend OTP button-SMS,Telegram,Email OTP method
• Improvement:Forced reconfiguration after backup code login,2FA prompt if TOTP is unset for admins

5.7.0

• Code Improvements according to WPCS
• Feature Improvement – Added role-based checks for login through new IP
• Improvement – Error handling for account creation

5.6.6

• Fixes:Redirection issue for users in Multisite environment
• Improvements-Removed External links from Google Authenticator,Mobile responsiveness of setup wizard,SMS/Email verification on PaidMembership Proform
• Updated Pricing plan,Add SMS notification/button check,feedback form
• Advertised OTP over WhatsApp

5.6.5

• Google Authenticator – Two-Factor Authentication – 2FA, OTP :
• Bug fix – Save template for notifications on email
• Bug fix – Error in SMS authentication setup through plugin dashboard
• Updated Network Security removal notice message

5.6.4

• Google Authenticator – Two-Factor Authentication – 2FA, OTP :
• Bug fix – headers already sent in messages.php

5.6.3

• Google Authenticator – Two-Factor Authentication – 2FA, OTP :
• Skip-2 factor option removed from the inline setup
• Backup code button will always be shown
• Added login form and theme fields in the trial request form
• CSS-JS version added for all scripts and styles respectively
• Autofocus for many input fields and submit the form when Enter is hit

5.6.2

• Google Authenticator – Two-Factor Authentication – 2FA, OTP :
• Vulnerability fixes
• Removed Network Security for new users
• Updated Pricing page UI

5.6.1

• Google Authenticator – Two-Factor Authentication 2FA, OTP :
• Bug fix- Headers already sent

• Added SMTP check for sending backup codes on 2fa prompt

  For older changelog entries, please see the additional changelog.txt file provided with the plugin.