Changelog

Complete version history and updates for Saurity WordPress Security Plugin

v1.1.2March 2, 2026Latest Release

Bug Fix Release

Critical bug fixes for REST API compatibility and threat feed processing.

Bug Fixes

✓Fixed: PHP session warning interfering with REST API and loopback requests
✓Fixed: Large threat feed processing (Blocklist.de) now properly stores all IPs

Improvements

+Added: session_write_close() calls to properly close sessions
+Added: Incremental saves during threat feed updates
+Added: Overflow storage for large blocklists exceeding database limits
↑Improved: Skip session handling for REST API, AJAX, and cron requests
↑Improved: IPManager now checks overflow storage
↑Improved: UI shows overflow indicator when database limits reached

Download v1.1.2

v1.1.0March 1, 2026

Cloud Integration Release

Major release introducing cloud-powered protection with Cloudflare integration, GeoIP services, and threat intelligence feeds.

Cloud Integration

+Cloudflare Integration - Automatic IP blocklist sync, DDoS coordination, security level management
+GeoIP Services - Country-based blocking with MaxMind, IP2Location, and DB-IP support
+Threat Intelligence - Real-time feeds from AbuseIPDB, Spamhaus DROP/EDROP, Emerging Threats
+Cloud Manager - Unified interface for managing all cloud integrations

Enhanced UI

+Redesigned Admin Interface - Modern, responsive dashboard with improved UX
+Interactive Charts - Visual security metrics with Chart.js integration
+Improved Activity Logs - Better filtering, search, and pagination
+Mobile Responsiveness - Full functionality on tablets and phones

Privacy & Compliance

+GDPR Compliance - Data retention controls and consent management
+Privacy Policy Integration - Auto-generated privacy policy text
+Data Export - Export user security data on request

Advanced Reporting

+PDF Security Reports - Professional reports for stakeholders
+Scheduled Reports - Daily, weekly, or monthly email reports
+Executive Dashboard - High-level security overview
+Trend Analysis - Track security metrics over time

v1.0.0January 11, 2026Production Release

Production Release - Enterprise Ready

Major release with enterprise-grade features, advanced protection, and zero false positives. Production-tested and battle-hardened.

New Features

+Advanced Firewall - SQL injection, XSS protection, malicious user agent blocking
+Honeypot Detection - Hidden fields catch form-filling bots with 100% accuracy
+Subnet Blocking - Automatic /24 subnet bans defeat botnet IP rotation
+Tarpitting - Delays block responses to waste attacker resources
+Email Notifications - Instant alerts for critical security events
+Activity Logging - Real-time logging with search, filters, and CSV export
+IP Management - Allowlist/blocklist with CIDR support and CSV import/export
+Two-Tier Rate Limiting - Per-IP and per-device tracking for NAT/office safety
+Comment Protection - Rate limiting for comment forms
+XML-RPC Protection - Rate limiting for XML-RPC endpoints

Improvements

↑Performance - Reduced overhead to <0.5ms per request
↑Admin Dashboard - Complete redesign with modern UI
↑Documentation - Comprehensive inline help and tooltips
↑Emergency Recovery - Enhanced 3-tier system with auto-disable
↑Configuration - Simplified settings with smart defaults

Security

🛡Zero admin lockout guarantee with fail-safe architecture
🛡Progressive rate limiting prevents false positives
🛡Input sanitization and validation throughout
🛡Database queries use prepared statements

Testing

✓Tested on WordPress 6.0, 6.1, 6.2, 6.3, 6.4
✓Tested on PHP 8.0, 8.1, 8.2, 8.3
✓Load tested with 10,000+ concurrent attacks
✓Verified on shared hosting, VPS, and dedicated servers

v0.1November 15, 2025Initial Release

Initial Public Release

First public release focusing on core brute force protection with zero admin lockouts.

Core Features

•Progressive rate limiting for login attempts
•IP-based blocking with exponential delays
•Emergency bypass URL for recovery
•Global kill switch
•Basic logging functionality
•Clean uninstall with data removal

Future Roadmap

Coming in v1.2 (Q2 2026)

→Two-Factor Authentication (2FA) support
→Enhanced geolocation-based restrictions
→Advanced user session management
→Device fingerprinting improvements

Planned for v2.0 (Q4 2026)

→File integrity monitoring
→Basic malware scanner
→Security hardening recommendations
→Multi-site network support

Note: Features are added only after thorough testing. Stability and zero lockouts remain the top priorities.

Related Resources

Download

Get the latest version

Features

See what's included

Documentation

Installation & setup guide

Bug Fix Release

Critical bug fixes for REST API compatibility and threat feed processing.

Bug Fixes

✓Fixed: PHP session warning interfering with REST API and loopback requests
✓Fixed: Large threat feed processing (Blocklist.de) now properly stores all IPs

Improvements

+Added: session_write_close() calls to properly close sessions
+Added: Incremental saves during threat feed updates
+Added: Overflow storage for large blocklists exceeding database limits
↑Improved: Skip session handling for REST API, AJAX, and cron requests
↑Improved: IPManager now checks overflow storage
↑Improved: UI shows overflow indicator when database limits reached

Cloud Integration Release

Major release introducing cloud-powered protection with Cloudflare integration, GeoIP services, and threat intelligence feeds.

Cloud Integration

+Cloudflare Integration - Automatic IP blocklist sync, DDoS coordination, security level management
+GeoIP Services - Country-based blocking with MaxMind, IP2Location, and DB-IP support
+Threat Intelligence - Real-time feeds from AbuseIPDB, Spamhaus DROP/EDROP, Emerging Threats
+Cloud Manager - Unified interface for managing all cloud integrations

Enhanced UI

+Redesigned Admin Interface - Modern, responsive dashboard with improved UX
+Interactive Charts - Visual security metrics with Chart.js integration
+Improved Activity Logs - Better filtering, search, and pagination
+Mobile Responsiveness - Full functionality on tablets and phones

Privacy & Compliance

+GDPR Compliance - Data retention controls and consent management
+Privacy Policy Integration - Auto-generated privacy policy text
+Data Export - Export user security data on request

Advanced Reporting

+PDF Security Reports - Professional reports for stakeholders
+Scheduled Reports - Daily, weekly, or monthly email reports
+Executive Dashboard - High-level security overview
+Trend Analysis - Track security metrics over time

Production Release - Enterprise Ready

Major release with enterprise-grade features, advanced protection, and zero false positives. Production-tested and battle-hardened.

New Features

+Advanced Firewall - SQL injection, XSS protection, malicious user agent blocking
+Honeypot Detection - Hidden fields catch form-filling bots with 100% accuracy
+Subnet Blocking - Automatic /24 subnet bans defeat botnet IP rotation
+Tarpitting - Delays block responses to waste attacker resources
+Email Notifications - Instant alerts for critical security events
+Activity Logging - Real-time logging with search, filters, and CSV export
+IP Management - Allowlist/blocklist with CIDR support and CSV import/export
+Two-Tier Rate Limiting - Per-IP and per-device tracking for NAT/office safety
+Comment Protection - Rate limiting for comment forms
+XML-RPC Protection - Rate limiting for XML-RPC endpoints

Improvements

↑Performance - Reduced overhead to <0.5ms per request
↑Admin Dashboard - Complete redesign with modern UI
↑Documentation - Comprehensive inline help and tooltips
↑Emergency Recovery - Enhanced 3-tier system with auto-disable
↑Configuration - Simplified settings with smart defaults

Security

🛡Zero admin lockout guarantee with fail-safe architecture
🛡Progressive rate limiting prevents false positives
🛡Input sanitization and validation throughout
🛡Database queries use prepared statements

Testing

✓Tested on WordPress 6.0, 6.1, 6.2, 6.3, 6.4
✓Tested on PHP 8.0, 8.1, 8.2, 8.3
✓Load tested with 10,000+ concurrent attacks
✓Verified on shared hosting, VPS, and dedicated servers

Initial Public Release

First public release focusing on core brute force protection with zero admin lockouts.

Core Features

•Progressive rate limiting for login attempts
•IP-based blocking with exponential delays
•Emergency bypass URL for recovery
•Global kill switch
•Basic logging functionality
•Clean uninstall with data removal

Future Roadmap

Coming in v1.2 (Q2 2026)

→Two-Factor Authentication (2FA) support
→Enhanced geolocation-based restrictions
→Advanced user session management
→Device fingerprinting improvements

Planned for v2.0 (Q4 2026)

→File integrity monitoring
→Basic malware scanner
→Security hardening recommendations
→Multi-site network support

Note: Features are added only after thorough testing. Stability and zero lockouts remain the top priorities.