Submit Changelog
Track Changelogs

SiteGuard WP Plugin

Changelog

1.7.12

  • Fix an authorization vulnerability in the login history. Special thanks to Ficus Inc.
  • Mitigate CAPTCHA authentication failures in some environments.

1.7.11

  • Fix the problem that a syntax error occurs in PHP5.6 or earlier

1.7.10

  • Fix a Guessable CAPTCHA vulnerability (CVE-2026-27411). Special thanks to Patchstack.

1.7.9

  • Fix a deprecated notice for get_currentuserinfo() function.

1.7.8

  • Fix a warning that occurred from ver1.7.7

1.7.7

  • Fix a bug where renamed login URL was leaked when wp-register.php was accessed

1.7.6

  • Fix a problem that a warning occurred on the Login screen in the PHP8.x environment

1.7.5

  • Fix a problem that a serious error occurred on the Updates Notify screen in the PHP8.x environment

1.7.4

  • Changed the directory to store CAPTCHA image files to wp-content/siteguard/
  • Fix some bugs

1.7.3

  • Fix an issue where password reset could not be sent from the management page when CAPTCHA was enabled

1.7.2

  • Reviewed and modified source code related to security

1.7.1

  • Fix the problem that a syntax error occurs in PHP5.6 or earlier

1.7.0

  • Removed ability to get client IP address from X-Forwarded-For due to IP spoofing risk

1.6.1

  • Fix the problem that an error occurs when suppressing the redirect from the management page to the login page

1.6.0

  • Add the “Block Author Query” feature

1.5.2

  • Fix a syntax error before php5.4

1.5.1

  • Fix a server error when mod_access_compat is not loaded in apache2.4
  • In the Admin Page IP Filter function, fix an issue where site health loopback requests fail

1.5.0

  • Add the function not to redirect from admin page to login page
  • Add site-health.php to the initial value of the exclusion path

1.4.3

  • Fix bug in 1.4.2 “Notice:Use of undefined constant HTTPS”

1.4.2

  • In the Rename Login function, correct the problem that is redirected to the https renamed login page from the http /wp-login.php

1.4.1

  • Fix bug that some functions are disabled

1.4.0

  • Enabled to get client IP address from X-Forwarded-For header
  • Strict operation check of each function
  • Change not to use session

1.3.4

  • Fix an issue where CAPTCHA might fail in 1.3.3

1.3.3

  • Fix bug that fatal error occurs when fails to send mail
  • Inprove the security of the CAPTCHA function
  • Disabling the Rename Login function when qTranslate X plugin is enabled in order to avoid conflicts

1.3.2

  • Fix bug that fatal error occurs when fails to send mail

1.3.1

  • Fix conflicts with other plugins in a session related

1.3.0

  • Add the “Disable XMLRPC” feature
  • In the Login History, add display the login type that indicates whether via login page or xmlrpc
  • Fix that the Fail Once error message to be not the same as the failure
  • Fix that the permission of .htaccess to change from 0644 to 0604
  • Delete the mistaken characters of CAPTCHA

1.2.5

  • In the Admin Page IP Filter function, fix bug that can be accessed from the IP address that failed to login to the management page
  • In the Rename Login function, correct the problem that is redirected to the renamed login page from the /wp-signup.php

1.2.4

  • Fix bug that there is a case which can acccess management pages from non login client
  • Disabling the several functions when there is no .htaccess write permission

1.2.3

  • Fix bug that you can not reply comments from the dashboard, if the CAPTCHA is enabled
  • Fix bug that the login page is displayed in ‘/wp-login’ even if the Rename Login is enabled

1.2.2

  • Fix bug that XML-RPC access which doesn’t need login is recorded as the nameless login history
  • Disabling the all functions when installed in multisite environment
  • Disabling the several functions when settings of .htaccess was eliminated

1.2.1

  • Supported with WP 4.2

1.2.0

  • Add the “Updates Notify” feature
  • Fix bug that login via XML-RPC to fail, if the CAPTCHA is enabled
  • Fix bug that sometimes can’t login when you enable the Fail once

1.1.2

  • Supported with WP 4.1
  • Disabling the Admin IP Filter function by default

1.1.1

  • Fix bug that can not save “Login Alert” settings
  • Add the “Login Alert” notification variables, IP Address, User-Agent and Referer

1.1.0

  • Add the “Login Alert” feature
  • Add the function of inform the new Login page URL by e-mail
  • Fix bug that work “Fail Once” even when the password is a mistake
  • Fix bug that even if the “Rename Login” has been enabled, and have specified a permanent link to the non-standard, jump to the new login page in /login

1.0.6

  • Supported with Apache 1.3
  • Fix garbling of CAPTCHA by environment
  • Fix input check of Rename login path
  • Fix some other bugs

1.0.5

  • Add display a warning about changing the login page URL, when activate the plugin

1.0.4

  • Fix bug that fails to update .htaccess, if there is no WordPress settings in .htaccess

1.0.3

  • Fix a problem that “Rename Login” does not work, if you change Permalink settings
  • Fix the collision of class name of Really Simple CAPTCHA

1.0.2

  • Fix a minor html escape leakage
  • Reduced the problem of affinity with other plugin [WordPress HTTPS (SSL)]

1.0.1

  • Supported with WP 4.0

1.0.0

  • First release

Plugin Website
Visit website

Author
jp-secure
Version:
1.7.12
Last Updated
April 22, 2026
Active Installs
600000
Requires
WordPress 3.9
Tested Up To
WordPress 7.0

Share Post

Join our newsletter.

Get insights into what’s happening at ChangelogWP right in your inbox. We don’t believe in spam.