Hide My WP Ghost is one of the most popular security plugins on the WordPress platform, designed to protect your website from hacking and malicious scanning. It can hide your WordPress core information, making it difficult for attackers to easily identify your website’s environment.
This plugin supports all mainstream PHP versions and WordPress versions, ensuring optimal protection regardless of your configuration. By renaming wp-login.php and the admin URL, it effectively prevents brute force attacks.
Hide My WP Ghost has powerful security features, including:
- Prevention of XSS cross-site scripting attacks
- Defense against SQL injection attacks
- IP whitelist functionality, allowing only specific IPs to access the admin area
- Hiding WordPress fingerprint information
- Preventing theme and plugin detection
Our version is meticulously optimized to ensure continuous updates, providing you with the latest and most comprehensive security protection. Over 30,500 websites trust and use Hide My WP Ghost to secure their WordPress sites.
Version 8.2.10 primarily fixes some issues when activating the Clean Login option, optimizes the display of password strength meter messages, and improves several features. This plugin is the best choice for securing WordPress websites, especially suitable for administrators who need advanced security protection.
With Hide My WP Ghost, you can easily enhance the security of your WordPress site without worrying about hacking or malicious scanning. Its user-friendly interface makes security settings a breeze, allowing even non-technical users to get started quickly.
🔹🔹🔹🔹🔹🔹🔹🔹🔹🔹🔹🔹🔹🔹🔹🔹🔹🔹🔹🔹 Version Update Log 🔹🔹🔹🔹🔹🔹🔹🔹🔹🔹🔹🔹🔹🔹🔹🔹🔹🔹🔹🔹
The update log for the Hide My WP Ghost plugin is as follows:
= 8.2.10 =* Update - Compatible with the new WP Engine rewrite rules
* Fix - File security issue when rewrite rules are not correctly loaded
* Fix - Prevents spaces when updating warning text on brute force protection being turned off
* Fix - Prevents PHP warnings in brute force IP checks when the IP address is unknown
* Fix - Loads i18n on the login page to display password strength meter messages when Clean Login option is activated
* Fix - Checks if the main theme has permissions when a child theme is activated
* Fix - Loads through index.php dynamic file mapping to improve compatibility with all server types= 8.2.03 (March 4, 2025)
* Update - Security update for wp-activate.php path calls
* Fix - Header check issue for getting the real IP through proxy in brute force checks
* Fix - Admin layout issue when other plugin notifications load in Wp Ghost settings
* Fix - Removed line breaks from rewrite rules= 8.2.01 (February 26, 2025) =
* Fix - Brute force compatibility and bug fixes= 8.2.00 (February 25, 2025) =
* Update - Added Google reCaptcha Enterprise
* Update - Enhanced security for brute force functionalities
* Update - Compatibility with Sucuri plugin in event logs and brute force functionalities
* Update - Added _HMWP_CONFIG_DIR_ constant to define the configuration root path
* Fix - Obtaining real IP address after proxy= 8.1.04 =
* Update - New WP Ghost dashboard design
* Update - Login attempts and banned IP charts in the WP Ghost dashboard
* Fix - Changes to dynamically loaded CSS and JS file paths= 8.1.03 =
* Update - Knowledge base links and responsive layout
* Update - Maxmind GeoIP database
* Fix - Configuration update issue when saving whitelisted from security levels= 8.1.02 =
* Update - Added AI support on the plugin settings page
* Update - Removed help icon for the plugin white label option for custom domains
* Fix - Prevents changing the login path in article slugs
* Fix - Domain not found error when installing advanced packages= 8.1.01 =
* Update - Changed the name of the Hide My WP Ghost plugin to the shorter WP Ghost
* Update - WP Ghost adopted a new plugin logo in 2025
* Update - Improved security for the user list in the REST API when users are securely activated
* Update - Plugin security and firewall rules
