Category: Articles

Replace arbitrary URL’s with custom ones

This functionality is available for PRO version.

The WP Hide plugin provides many modules through which a site owner can rewrite all default URL’s, making WordPress indistinguishable. This is a perfect strategy to keep intruders outside, as any WordPress or plugin vulnerability which get in a hacker hands, will be exploited to get full access to the site. Closing all default entry points and re-writing paths to specific assets will makes a penetration close to impossible. Continue reading

Replace arbitrary words from page HTML through a visual interface module

This functionality is available for PRO version.

This module helps with final touches on hiding WordPress for a website. While other plugin components take care of all urls and paths replacements, there may still be specific words and texts inside the code which are required to be changed. Using the free plugin, there was a code approach through the filter wp-hide/ob_start_callback however not everyone is comfortable doing programming. Continue reading

Set-up Wp Hide PRO for WordPress MultiSite

This functionality is available for PRO version.

Creating a network of sites with WordPress is a powerful functionality, the simplicity of set-up makes it the best option to consider. Mainly a MultiSite network is a collection of sites that all share the same WordPress installation. This sounds simple to manage but it become a complex problem when it come to rewrite and block specific urls while preserving compatibility. The free WP Hide & Security Enhancer plugin can handle single site WordPress install, however can’t run correctly under MultiSite environment. Continue reading

XSS and CSRF security issues within AVADA Theme

The Avada | Responsive Multi-Purpose Theme is the best sold theme ever on Themeforest, so far it counted over 320k of customers. That being said, imagine the huge number of WordPress sites running on this theme.

As being widely used, is notorious thing for the Avada code to be checked by hackers to find vulnerabilities. Recently there’s been reported 2 huge impact security issues. Remember, there are automated boots which search for such theme, using a particular version which is known for being insecure.
Continue reading

Plugin Changelog

For WP Hide PRO check the following link WP-Hide PRO – Changelog

The plugin is actively maintained, we work hard to improve the code and add new functionality.

= 1.4.6.5 =
* Fixed hardcoded wp-register.php within rewrite – root files component
* Updated components to rewrite_base / rewrite_to system
* Improved components: Rewrite – WP Includes, Rewrite – WP Content, Rewrite – Plugins, Rewrite – Uploads, Rewrite – Comments, Rewrite – Root Files, Admin – wp-login.php, Admin – Admin Url
* Typo fix environemnt to environment
* New Component – Remove Shortlink Meta
* New Component – Remove new line carriage
* Apply relative paths change on styles only if main theme / child theme rewrite slug is not empty
* Improved interface errors and warnings transient structure
* Use ABSPATH and Environemnt data to create file path for file processing, instead just ABSPATH, for better compatibility

= 1.4.5.6 =
* Prevent the wp-register.php redirect to new login page when using block
* Prepare plugin for Composer package
* URL Slash description update
* xml_rpc_path add php_extension_required validation
* File processor use ABSPATH instead DOCUMENT_ROOT environment variable to avoid different paths on certain systems
* Allow path structure to be used for New Theme Path and Child – New Theme Path

= 1.4.5.1 =
* Media Galery src images fix
* Use separate variables for holding replacements to avoid key overwrite

= 1.4.5 =
* Add replacements for urls which does not contain explicit protocol e.g. http: or https:
* Avada cache URLs replacements support
* Fix processing_order for specific root files
* Ignore wp-register.php when blocking other wp-* files
* Fixed wp-register.php block
* Check for replacements on url encoded links
* Show message notices on General/HTML -> Html for options which may interfere with themes.
* sanitize_file_path_name fix when slug include a file type extension
* Prevent redirect to new url when accessing links through www
* New component Feeds
* Windows – Global file process rewrite rules update

= 1.4.4.4 =
* If no server type identification possible, try to check for .htaccess file
* Improved .htaccess search mod, Use preg_grep for identify the begin and end of WordPress rules
* Output notice when no supported server was found
* Use separate block of rules for .htaccess file, outside of WordPress lines
* Improved server htaccess support check
* Moved WPH_CACHE_PATH constant declaration from mu loader to wph class
* Use shutdown hock instead wp_loaded when plugin inline updated
* Use FS_CHMOD_FILE for $wp_filesystem->put_contents

= 1.4.4.2 =
* Fixed default wp-content block
* Updated compatibility with WP Fastest Cache
* Fixed wp-content replacement
Continue reading

Scroll to top