Shield Security Pro Advanced WordPress Firewall Plugin

Official Demo of Theme/Plugin

Shield Security Pro is a premium WordPress firewall plugin designed to intercept bots, fix vulnerabilities, and protect users. As a leading independent WordPress security plugin, Shield Security Pro not only has all the features you expect but also learns from attacks and adapts to online threats, ensuring your website is safe and secure.

The core features of Shield Security Pro include intelligent bot interception, vulnerability fixing, user protection, and real-time threat detection. Every click becomes smarter, making it a representative of the next generation of WordPress security plugins. Whether it’s a small blog or a large corporate website, Shield Security Pro provides comprehensive security protection.

In addition, Shield Security Pro offers long-term uninterrupted updates, ensuring your website is always under the latest security protection. Whether you are a WordPress beginner or an experienced developer, Shield Security Pro can meet your needs and provide you with powerful security solutions.

If you are looking for an efficient, intelligent, and easy-to-use WordPress security plugin, Shield Security Pro is undoubtedly your best choice. It not only has powerful features but can also be customized according to your website’s needs, ensuring your website is safe and secure.

🔹🔹🔹🔹🔹🔹🔹🔹🔹🔹🔹🔹🔹🔹🔹🔹🔹🔹🔹🔹 Version Update Log 🔹🔹🔹🔹🔹🔹🔹🔹🔹🔹🔹🔹🔹🔹🔹🔹🔹🔹🔹🔹
The update log for the Shield Security Pro plugin is as follows:

**20.1**

**Release Date: December 10, 2024** - [Release Announcement](https://example.com) | [Upgrade Guide 20.1 ↗](https://example.com)
**Major Release (20.1.0)**

- **New: FileLocker support for theme's functions.php file**

  We have added FileLocker protection to the `functions.php` file of the current theme.

- **New: Security configuration file (beta)**

  We have introduced the ability to apply pre-configured security configuration files to save setup time.

- **New: Automatic integration**

  Shield can automatically detect when third-party plugins that we have built-in integrations for are activated and automatically enable the integration.

- **New: New condition for custom rules - Hostname**

  You can now check the hostname of visitors when creating custom rules.

- **New: Support for Simple Membership**

  Added silentCAPTCHA bot detection support for the Simple Membership plugin. [More information ↗](https://example.com)

- **Improvement: PHP 7.4**

  We have raised the minimum required PHP version to 7.4.

- **Improvement: Refactored login cooldown system**

  We have rewritten and improved the login cooldown system to work more directly with silentCAPTCHA bot detection.

- **Improvement: Added conflict protection**

  Added protection against fatal errors caused by plugin conflicts. When a conflict is detected, Shield will be “paused.” Currently, only supports the WP RSS Aggregator plugin.

- **Fix: NinjaForms integration**

  Changes to the NinjaForms code caused our silentCAPTCHA integration not to trigger when it should have.

- **Removed: Redundant option checkbox removed**

  To simplify plugin configuration, we removed an unnecessary option checkbox, leaving only one option to control silentCAPTCHA on the WordPress login form.
**20.0**

**Release Date: July 23, 2024** - [Release Announcement](https://example.com) | [Upgrade Guide 20.0 ↗](https://example.com)
**Patch Release**

**Patch 20.0.12 (December 3, 2024)**

- **Fix: Fixed the issue of translation triggering too early.**  
**Patch 20.0.11 (November 24, 2024)**

- **New: Added silentCAPTCHA bot detection support for the Simple Membership plugin.**

- **Fix: Improved compatibility with WordPress 6.7.**

- **Fix: Resolved the issue of completely capturing bot-based logins on WordPress forms.**  
**Patch 20.0.10 (September 17, 2024)**

- **Improvement: The “Area Operations” have been simplified to a button list.**

- **Improvement: Updated all internal resources to address reported vulnerabilities in dependencies.**

- **Fix: Removed some unnecessary admin styles.**

- **Fix: Eliminated PHP deprecation notices caused by developers not properly using WP filters.**  
**Patch 20.0.8 (August 30, 2024)**

- **Improvement: Enhanced silentCAPTCHA logic to reduce the likelihood of interruptions caused by aggressive page caching.**

- **Improvement: Improved compatibility of Shield with MainWP integration to align with the latest MainWP code.**  
**Patch 20.0.7 (August 11, 2024)**

- **Fix: Addressed Shield configuration issues that prevented it from “sticking” in an invalid state.**

- **Improvement: Added Shield Security to the new security extension menu of MainWP.**  
**Patch 20.0.6 (July 29, 2024)**

- **Security: Fixed reflected XSS issue as part of responsible disclosure.**

- **Improvement: Further reduced the site's dependency on Shield being online to operate normally.**  
**Patch 20.0.5 (July 28, 2024)**

- **Fix: Ensured fallback code for bot scoring logic from API lookup is triggered correctly.**  
**Patch 20.0.4 (July 26, 2024)**

- **Fix: Minor bug fixes.**  
**Major Release (20.0.0)**

- **New: Introduced silentCAPTCHA**

  silentCAPTCHA is the collective term for the built-in malicious bot detection technology in Shield. [More info ↗](https://example.com)

- **Improvement: Major UI overhaul**

  As part of simplifying Shield, this version features the largest UI overhaul in years. We have completely removed the dedicated “Configuration” section and replaced them with context configuration links so you can easily configure options independently for each area. We also removed several outdated options that are no longer practical.

- **Improvement: Code and performance enhancements**

  We continue to work on clearing old code from Shield and improving the codebase to make it as fast and efficient as possible.

- **Improvement: Optimized autoload size**

  Reduced the size of the storage for autoload options by approximately 50%.

- **New: Added silentCAPTCHA support for ARMember and ARForms**

- **Change: Security Admin is no longer a requirement for white labeling**

  The Security Admin feature no longer needs to be activated for white labeling to work.

- **Removal: Plugin options removed**

  Removed: Automatic update email notification settings. Now using universal plugin report email options.

  Removed: Automatic updates for all plugins and automatic updates for all themes.

  Removed: Disable all WordPress automatic updates.

  Removed: WordPress core updates (minor/major/nevers).

  Removed: Send automatic update report emails.

  Removed: Activity logging to file.

  Removed: Force SSL management.

  Removed: Request firewall options - WP terms and EXE file uploads.

  Removed: Firewall block response selection.

  Removed: WP generator tag removal option.

  Removed: All GASP JS deprecation options.
**19.1**

**Release Date: March 25, 2024** - [Release Announcement](https://example.com) | [Upgrade Guide 19.1 ↗](https://example.com)
**Patch Release**

**Patch 19.1.19 (May 28, 2024)**

- **Fix: Resolved limitations of the CrowdSec API to ensure the context data format meets expectations.**  
**Patch 19.1.18 (May 28, 2024)**

- **Fix: Special characters in user agent causing `json_encode()` to fail - switched to `wp_json_encode()`.**  
**Patch 19.1.16 (May 28, 2024)**

- **New: Added WP actions/hooks during 2FA email sending process to allow developers to integrate.**

- **New: Added WP actions/hooks for password expiration, account suspension, and idle state queries. [More info ↗](https://example.com)**

- **Improvement: Optimized the loading of the scan results table for on-demand loading of plugin and theme tables.**

- **Improvement: Removed unnecessary admin notices on login.**

- **Improvement: Added contextual data for CrowdSec signals.**

- **Improvement: Clearly removed old WP autoload options table data.**

- **Fix: Updated integration with FluentForms to support its modified codebase.**  
**Patch 19.1.13 (May 1, 2024)**

- **Improvement: Attempted to ensure the correct visitor IP address is assigned to any new WP comments.**

- **Fix: Fixed the `.mo` noise issue in malware scans.**

- **Fix: Fixed PHP logging error when database table already exists during creation.**  
**Patch 19.1.11 (April 30, 2024)**

- **Fix: Minor security fix. Details will be released in the future.**  
**Patch 19.1.10 (April 30, 2024)**

- **Fix: Resolved JavaScript error that interrupted some functions in the MainWP management area.**  
**Patch 19.1.9 (April 30, 2024)**

- **Improvement: Attempt to automatically detect PHP-based translation files to prevent noise in scan results.**

- **Improvement: Attempt to identify outdated core WordPress files that were not correctly removed during recent upgrades, detailing them in the scan results table.**

- **Fix: Fixed the issue where file results were displayed in the scan results but the actual results table was empty.**

- **Fix: Improved the upgrade process logged by FileLocker.**

- **Fix: Mitigated potential fatal errors during scanning.**

- **Fix: Fixed the issue with automatic self-updating.**

- **Improvement: Updated the resources used by the plugin.**  
**Patch 19.1.6 (March 29, 2024)**

- **Fix: Ensured that the Shield management menu bar is only displayed to administrators.**  
**Major Release (19.1.0)**

- **New: Instant Alerts**

  You can now configure Shield to send instant alert notifications when important events occur. (More events are coming soon)

- **New: Scan Results Display Configuration**

  You can now set Shield to display scan results that are usually hidden because they have been processed/ignored.

- **Improvement: Code rewrite and cleanup**

  Significant improvements have been made to the underlying workings of the plugin to simplify future development and speed up processing.

- **Improvement: Enhanced Shield's handling of WPMS**

- **New: Filters to prevent running site health security components**

  [More Information ↗](https://example.com)
**19.0**

**Release Date: March 22, 2024** - [Release Notes](https://example.com) | [Upgrade Guide 19.0 ↗](https://example.com)
**Patch Release**

**Patch 19.0.7 (February 12, 2024)**

- **New: Added option to specify temporary directory location.**  
**Patch 19.0.6 (February 8, 2024)**

- **Improvement: Set session lock to not lock IP addresses by default.**

- **Improvement: Ensured that WPMS sites do not run multiple scans.**

- **Fix: Minor adjustments to prevent fatal errors when inserting new data into the database.**  
**Patch 19.0.5 (February 5, 2024)**

- **Fix: Resolved various non-critical bugs.**  
**Major Release (19.0.0)**

- **New: Security Rules Builder**

  The Security Rules Builder allows you to design and create your own set of security rules to meet any security restriction needs. [More Information ↗](https://example.com)

- **New: Support for ShieldPRO Extensions**

  We will be releasing some Shield Security extensions soon, built on the Shield platform.

- **New: Prevent Session Theft/Hijacking**

  You can now lock user sessions to an IP address, user agent, or both. This helps prevent session theft and hijacking, as well as reusing user sessions on other devices. [More Information ↗](https://example.com)

- **Improvement: Filter User Sessions by Username**

  You can (again) filter the user session table by username.

- **Improvement: FileLocker Enhancements**

  Updated the FileLocker system to ensure compatibility with the Shield.NET API. [More Information ↗](https://example.com)

- **Improvement: Geolocation**

  Added some basic geolocation data from CloudFlare (if you are using it) to allow rules using geolocation data. ShieldPRO extensions will be available in the future to provide geolocation data options beyond CloudFlare.

- **Fix: Improved Passkeys Platform Support**

  Ensure that Passkeys can be used on hosts without the GMP extension activated. [More Information ↗](https://example.com)

- **Improvement: Code Rewrite and Cleanup**

  A significant amount of plugin code has been rewritten to use the new rules engine, improving performance and reliability.
**18.5**

**Release Date: November 20, 2023** - [Release Announcement](https://example.com) | [Upgrade Guide 18.5 ↗](https://example.com)
**Patch Release**

**Patch 18.5.10 (December 23, 2023)**

- **Fix: LFI Security Fix (details will be released later). Patched and released within 6 hours of responsible disclosure.**  
**Patch 18.5.9 (December 15, 2023)**

- **Fix: Mitigated potential fatal error caused by invalid data populated by third-party code.**  
**Patch 18.5.8 (December 15, 2023)**

- **Fix: XSS security fix (details to be released in the future).**

- **Fix: Fixed an error where the automatic import/export of the main site could be unintentionally disabled.**

- **Improvement: Allowed Shield to run under PHP 8.3 - there may still be undetected issues.**  
**Patch 18.5.7 (November 23, 2023)**

- **Improvement: Optimized NotBot JS to reduce AJAX requests.**

- **Fix: Fixed an error where the email 2FA capability verification email was sent twice.**

- **Fix: Fixed an error where notifications within the plugin could not be turned off.**  
**Patch 18.5.5 (November 20, 2023)**

- **Fix: Fixed an error where IP auto-detection displayed management notifications instead of running in the background.**

- **Fix: Fixed an error where ignoring deprecated plugin results could not be clicked.**