Changeset 1177050

Timestamp:

06/08/2015 09:23:58 PM (11 years ago)

Author:

mmaunder

Message:

• Improvement: Handled uncaught exception when noc1 is not available in 2FA.
• Improvement: Fixed issue with limit-logins mu-plugin on GoDaddy counting first login attempt in 2FA against total allowed login attempts.
• Fix: Fixed bug with IPs not resolving to countries when printable IP passed to logBlockedIP.
• Fix: Fixed issue with free users country blocking redirects working after downgrade.
• Fix: Encoded URL field in country blocking options.
• Fix: Added a check to verify field has not already been altered prior to calling ALTER in runInstall.
• Fix: Fixed issue with scan_options method being called after method has been removed.
• Fix: Fixed bug in scan when dns_get_record fails and error condition was not handled.
• Fix: Fixed PHP notice when 'Crawler' not included in browser pcap result.

Location:

wordfence

Files:

• tags/6.0.6 (copied) (copied from wordfence/trunk)
• tags/6.0.6/css/main.css (copied) (copied from wordfence/trunk/css/main.css)
• tags/6.0.6/js/admin.js (copied) (copied from wordfence/trunk/js/admin.js) (2 diffs)
• tags/6.0.6/lib/dashboard.php (copied) (copied from wordfence/trunk/lib/dashboard.php)
• tags/6.0.6/lib/email_genericAlert.php (modified) (1 diff)
• tags/6.0.6/lib/email_newIssues.php (modified) (1 diff)
• tags/6.0.6/lib/email_passwdChanged.php (modified) (1 diff)
• tags/6.0.6/lib/email_pleaseChangePasswd.php (modified) (1 diff)
• tags/6.0.6/lib/menu_activity.php (copied) (copied from wordfence/trunk/lib/menu_activity.php)
• tags/6.0.6/lib/menu_countryBlocking.php (modified) (3 diffs)
• tags/6.0.6/lib/menu_options.php (copied) (copied from wordfence/trunk/lib/menu_options.php) (4 diffs)
• tags/6.0.6/lib/menu_passwd.php (modified) (2 diffs)
• tags/6.0.6/lib/menu_scan.php (modified) (2 diffs)
• tags/6.0.6/lib/menu_scanSchedule.php (modified) (2 diffs)
• tags/6.0.6/lib/menu_twoFactor.php (modified) (2 diffs)
• tags/6.0.6/lib/wfAPI.php (copied) (copied from wordfence/trunk/lib/wfAPI.php)
• tags/6.0.6/lib/wfActivityReport.php (modified) (3 diffs)
• tags/6.0.6/lib/wfBrowscapCache.php (copied) (copied from wordfence/trunk/lib/wfBrowscapCache.php)
• tags/6.0.6/lib/wfConfig.php (copied) (copied from wordfence/trunk/lib/wfConfig.php)
• tags/6.0.6/lib/wfLog.php (copied) (copied from wordfence/trunk/lib/wfLog.php) (1 diff)
• tags/6.0.6/lib/wfScan.php (copied) (copied from wordfence/trunk/lib/wfScan.php)
• tags/6.0.6/lib/wfScanEngine.php (copied) (copied from wordfence/trunk/lib/wfScanEngine.php) (3 diffs)
• tags/6.0.6/lib/wfUpdateCheck.php (copied) (copied from wordfence/trunk/lib/wfUpdateCheck.php)
• tags/6.0.6/lib/wfUtils.php (copied) (copied from wordfence/trunk/lib/wfUtils.php)
• tags/6.0.6/lib/wordfenceClass.php (copied) (copied from wordfence/trunk/lib/wordfenceClass.php) (7 diffs)
• tags/6.0.6/lib/wordfenceHash.php (copied) (copied from wordfence/trunk/lib/wordfenceHash.php)
• tags/6.0.6/lib/wordfenceScanner.php (copied) (copied from wordfence/trunk/lib/wordfenceScanner.php)
• tags/6.0.6/readme.txt (copied) (copied from wordfence/trunk/readme.txt) (2 diffs)
• tags/6.0.6/views/reports/activity-report-email-inline.php (modified) (1 diff)
• tags/6.0.6/views/reports/activity-report-email.php (modified) (1 diff)
• tags/6.0.6/views/reports/activity-report.php (modified) (1 diff)
• tags/6.0.6/wordfence.php (copied) (copied from wordfence/trunk/wordfence.php) (2 diffs)
• trunk/js/admin.js (modified) (2 diffs)
• trunk/lib/email_genericAlert.php (modified) (1 diff)
• trunk/lib/email_newIssues.php (modified) (1 diff)
• trunk/lib/email_passwdChanged.php (modified) (1 diff)
• trunk/lib/email_pleaseChangePasswd.php (modified) (1 diff)
• trunk/lib/menu_countryBlocking.php (modified) (3 diffs)
• trunk/lib/menu_options.php (modified) (4 diffs)
• trunk/lib/menu_passwd.php (modified) (2 diffs)
• trunk/lib/menu_scan.php (modified) (2 diffs)
• trunk/lib/menu_scanSchedule.php (modified) (2 diffs)
• trunk/lib/menu_twoFactor.php (modified) (2 diffs)
• trunk/lib/wfActivityReport.php (modified) (3 diffs)
• trunk/lib/wfLog.php (modified) (1 diff)
• trunk/lib/wfScanEngine.php (modified) (3 diffs)
• trunk/lib/wordfenceClass.php (modified) (7 diffs)
• trunk/readme.txt (modified) (2 diffs)
• trunk/views/reports/activity-report-email-inline.php (modified) (1 diff)
• trunk/views/reports/activity-report-email.php (modified) (1 diff)
• trunk/views/reports/activity-report.php (modified) (1 diff)
• trunk/wordfence.php (modified) (2 diffs)

wordfence/tags/6.0.6/js/admin.js

@@ -1685 +1685 @@
             },
             invalidCountryURLMsg: function(URL) {
-                this.colorbox('400px', "Invalid URL", "URL's that you provide for bypassing country blocking must start with '/' or 'http://' without quotes. The URL that is invalid is: " + URL);
+                this.colorbox('400px', "Invalid URL", "URL's that you provide for bypassing country blocking must start with '/' or 'http://' without quotes. The URL that is invalid is: " + this.htmlEscape(URL));
                 return;
             },
@@ -2033 +2033 @@
                 // Older versions of Opera
                 return this._windowHasFocus;
+            },
+
+            htmlEscape: function(html) {
+                return String(html)
+                    .replace(/&/g, '&')
+                    .replace(/"/g, '"')
+                    .replace(/'/g, ''')
+                    .replace(/</g, '&lt;')
+                    .replace(/>/g, '&gt;');
             }
         };

wordfence/tags/6.0.6/lib/email_genericAlert.php

@@ -17 +17 @@
 
 Click here to sign-up for the Premium version of Wordfence now.
-https://www.wordfence.com/wordfence-signup/
+https://www.wordfence.com/zz1/wordfence-signup/
 
 <?php } ?>

wordfence/tags/6.0.6/lib/email_newIssues.php

@@ -36 +36 @@
 
 <p>Click here to sign-up for the Premium version of Wordfence now.<br>
-<a href="https://www.wordfence.com/wordfence-signup/">https://www.wordfence.com/wordfence-signup/</a></p>
+<a href="https://www.wordfence.com/zz2/wordfence-signup/">https://www.wordfence.com/zz2/wordfence-signup/</a></p>
 
 <?php } ?>

wordfence/tags/6.0.6/lib/email_passwdChanged.php

@@ -21 +21 @@
 Thank you.
 
-Email generated by Wordfence. Learn more at http://www.wordfence.com/
+Email generated by Wordfence. Learn more at http://www.wordfence.com/zz3/

wordfence/tags/6.0.6/lib/email_pleaseChangePasswd.php

@@ -21 +21 @@
 Thank you.
 
-Email generated by Wordfence. Learn more at http://www.wordfence.com/
+Email generated by Wordfence. Learn more at http://www.wordfence.com/zz4/

wordfence/tags/6.0.6/lib/menu_countryBlocking.php

@@ -13 +13 @@
             <strong>Country Blocking is only available to Premium Members at this time</strong><br /><br />
             Country Blocking is a premium feature because we have licensed a very accurate commercial geolocation database to provide this feature. If you would like to
-            activate this feature, simply <a href="https://www.wordfence.com/wordfence-signup/" target="_blank">click here and get a premium Wordfence API Key</a>, and then copy and paste it into your options page. You can <a href="http://docs.wordfence.com/en/Country_blocking" target="_blank">learn more about Country Blocking on our documentation website</a>.
+            activate this feature, simply <a href="https://www.wordfence.com/gnl1countryBlock1/wordfence-signup/" target="_blank">click here and get a premium Wordfence API Key</a>, and then copy and paste it into your options page. You can <a href="http://docs.wordfence.com/en/Country_blocking" target="_blank">learn more about Country Blocking on our documentation website</a>.
         </div>
 <?php } ?>
@@ -53 +53 @@
         <tr><th colspan="2">
             If user who is allowed to access the site views the URL 
-            <input type="text" id="wfBypassViewURL" value="<?php echo wp_kses(wfConfig::get('cbl_bypassViewURL', ""), array()); ?>" size="20" /> 
+            <input type="text" id="wfBypassViewURL" value="<?php echo esc_attr(wfConfig::get('cbl_bypassViewURL', ""), array()); ?>" size="20" />
             then set a cookie that will bypass country blocking in future in case that user hits the site from a blocked country. 
             </th></tr>
@@ -114 +114 @@
 ?>
     If you would like access to this premium feature, please 
-    <a href="https://www.wordfence.com/wordfence-signup/" target="_blank">upgrade to our premium version</a>.
+    <a href="https://www.wordfence.com/gnl1countryBlock2/wordfence-signup/" target="_blank">upgrade to our premium version</a>.
 </p>
 <?php

wordfence/tags/6.0.6/lib/menu_options.php

@@ -39 +39 @@
                     <?php } else { ?>
                     The currently active API Key is a <span style="color: #F00; font-weight: bold;">Free Key</span>. <a
-                            href="https://www.wordfence.com/wordfence-signup/" target="_blank">Click Here to Upgrade to
+                            href="https://www.wordfence.com/gnl1optAPIKey1/wordfence-signup/" target="_blank">Click Here to Upgrade to
                             Wordfence Premium now.</a>
                         <?php } ?>
@@ -49 +49 @@
                         <table border="0">
                             <tr>
-                                <td><a href="https://www.wordfence.com/manage-wordfence-api-keys/"
+                                <td><a href="https://www.wordfence.com/gnl1optMngKys/manage-wordfence-api-keys/"
                                        target="_blank"><input type="button" value="Renew your premium license"/></a>
                                 </td>
@@ -412 +412 @@
                                 href="http://docs.wordfence.com/en/Wordfence_options#Scan_public_facing_site"
                                 target="_blank" class="wfhelp"></a>(<a
-                                href="https://www.wordfence.com/wordfence-signup/" target="_blank">Paid members only</a>)
+                                href="https://www.wordfence.com/gnl1optPdOnly1/wordfence-signup/" target="_blank">Paid members only</a>)
                         </th>
                         <td><input type="checkbox" id="scansEnabled_public" class="wfConfigElem"
@@ -1075 +1075 @@
             If you use the free edition of Wordfence, you don't need to worry about entering an API key in the "API Key"
             field above. One is automatically created for you. If you choose to <a
-                href="https://www.wordfence.com/wordfence-signup/" target="_blank">upgrade to Wordfence Premium
+                href="https://www.wordfence.com/gnl1optUpg1/wordfence-signup/" target="_blank">upgrade to Wordfence Premium
                 edition</a>, you will receive an API key. You will need to copy and paste that key into the "API Key"
             field above and hit "Save" to activate your key.

wordfence/tags/6.0.6/lib/menu_passwd.php

@@ -13 +13 @@
             We then provide a way to change weak passwords or alert members that they need to improve their password strength.
             To activate this feature, simply
-            <a href="https://www.wordfence.com/wordfence-signup/" target="_blank">click here and get a premium Wordfence API Key</a>, and then copy and paste it into your options page. You can
+            <a href="https://www.wordfence.com/gnl1pwAuditUp1/wordfence-signup/" target="_blank">click here and get a premium Wordfence API Key</a>, and then copy and paste it into your options page. You can
             <a href="http://docs.wordfence.com/en/Wordfence_Password_Auditing" target="_blank">learn more about Password Auditing on our Documentation Website</a>.
         </div>
@@ -178 +178 @@
         ?>
         If you would like access to this premium feature, please
-        <a href="https://www.wordfence.com/wordfence-signup/" target="_blank">upgrade to our premium version</a>.
+        <a href="https://www.wordfence.com/gnl1pwAuditUp2/wordfence-signup/" target="_blank">upgrade to our premium version</a>.
     </p>
     <?php

wordfence/tags/6.0.6/lib/menu_scan.php

@@ -13 +13 @@
                 <td>
                     <div style="border: 1px solid #CCC; padding: 4px;">
-                        <a href="http://docs.wordfence.com/en/Wordfence_scanning" target="_blank" class="wfhelp"></a><a href="http://docs.wordfence.com/en/Wordfence_scanning" target="_blank">Read our scanning documentation</a>. You can also <a href="#" onclick="WFAD.startTourAgain(); return false;">start the tour again</a>, <a href="http://www.wordfence.com/subscribe-to-the-wordfence-email-list/" target="_blank">subscribe to get WordPress Security Alerts and Product News</a> or <a target="_blank" href="http://support.wordfence.com/">visit our support website help.</a> Love Wordfence? You can help by doing two simple things: <a href="http://wordpress.org/extend/plugins/wordfence/" target="_blank">Go to WordPress.org now and give this plugin a 5&#9733; rating</a>. Blog about Wordfence and link to the <a href="http://wordpress.org/extend/plugins/wordfence/" target="_blank">plugin page</a> or <a href="http://www.wordfence.com/" target="_blank">www.wordfence.com</a>. Spreading the word helps us keep the best features free.
+                        <a href="http://docs.wordfence.com/en/Wordfence_scanning" target="_blank" class="wfhelp"></a><a href="http://docs.wordfence.com/en/Wordfence_scanning" target="_blank">Read our scanning documentation</a>. You can also <a href="#" onclick="WFAD.startTourAgain(); return false;">start the tour again</a>, <a href="http://www.wordfence.com/gnl1listSubscr/subscribe-to-the-wordfence-email-list/" target="_blank">subscribe to get WordPress Security Alerts and Product News</a> or <a target="_blank" href="http://support.wordfence.com/">visit our support website help.</a> Love Wordfence? You can help by doing two simple things: <a href="http://wordpress.org/extend/plugins/wordfence/" target="_blank">Go to WordPress.org now and give this plugin a 5&#9733; rating</a>. Blog about Wordfence and link to the <a href="http://wordpress.org/extend/plugins/wordfence/" target="_blank">plugin page</a> or <a href="http://www.wordfence.com/gnl1scanTopHome/" target="_blank">www.wordfence.com</a>. Spreading the word helps us keep the best features free.
                     </div>
                 </td>
@@ -40 +40 @@
             <?php } else { ?>
             <div style="margin: 0 0 20px 5px; width: 795px;">
-                <strong style="color: #F00;">How to upgrade:</strong> If you would like access to our <a href="http://support.wordfence.com/" target="_blank">Premium Support help system</a> and features like Cellphone Sign-in, Country Blocking, external site scanning and the ability to schedule scans, simply <a href="https://www.wordfence.com/wordfence-signup/" target="_blank">visit our Wordfence Premium sign-up page</a> and sign up for a Premium Wordfence API key. Then go to the Wordfence options page on this site and replace your free API key with your new premium key. You will immediately be upgraded to Wordfence Premium with all the features it includes and you will have instant access to our ticketing system on <a href="http://support.wordfence.com/" target="_blank">support.wordfence.com</a>.
+                <strong style="color: #F00;">How to upgrade:</strong> If you would like access to our <a href="http://support.wordfence.com/" target="_blank">Premium Support help system</a> and features like Cellphone Sign-in, Country Blocking, external site scanning and the ability to schedule scans, simply <a href="https://www.wordfence.com/gnl1scanUpgrade/wordfence-signup/" target="_blank">visit our Wordfence Premium sign-up page</a> and sign up for a Premium Wordfence API key. Then go to the Wordfence options page on this site and replace your free API key with your new premium key. You will immediately be upgraded to Wordfence Premium with all the features it includes and you will have instant access to our ticketing system on <a href="http://support.wordfence.com/" target="_blank">support.wordfence.com</a>.
             </div>
 

wordfence/tags/6.0.6/lib/menu_scanSchedule.php

@@ -7 +7 @@
                 <strong>Scan Scheduling is only available to Premium Members at this time</strong><br /><br />
                 Scan Scheduling is a premium feature because it places additional load on our scanning servers. If you would like to
-                activate this feature, simply <a href="https://www.wordfence.com/wordfence-signup/" target="_blank">click here and get a premium Wordfence API Key</a>, and then copy and paste it into your options
+                activate this feature, simply <a href="https://www.wordfence.com/gnl1scanSched1/wordfence-signup/" target="_blank">click here and get a premium Wordfence API Key</a>, and then copy and paste it into your options
                 page.
             </div>
@@ -93 +93 @@
 ?>
     If you would like access to this premium feature, please 
-    <a href="https://www.wordfence.com/wordfence-signup/" target="_blank">upgrade to our Premium version</a>.
+    <a href="https://www.wordfence.com/gnl1scanSched2/wordfence-signup/" target="_blank">upgrade to our Premium version</a>.
 </p>
 <?php

wordfence/tags/6.0.6/lib/menu_twoFactor.php

@@ -7 +7 @@
                 <strong>Cellphone Sign-in is only available to Premium Members at this time</strong><br /><br />
                 Cellphone Sign-in is a premium feature because we are charged per SMS we send when a user signs in. If you would like to
-                activate this feature, simply <a href="https://www.wordfence.com/wordfence-signup/" target="_blank">click here and get a premium Wordfence API Key</a>, and then copy and paste it into your options page.
+                activate this feature, simply <a href="https://www.wordfence.com/gnl1twoFac1/wordfence-signup/" target="_blank">click here and get a premium Wordfence API Key</a>, and then copy and paste it into your options page.
                 <br /><br />
                 Wordfence's Cellphone Sign-in uses a technique called "Two Factor Authentication" which is used by banks, government agencies and military world-wide as one of the most secure forms of remote system authentication. It's now available from Wordfence for your WordPress website. We recommend you enable Cellphone Sign-in for all Administrator level accounts. You can <a href="http://docs.wordfence.com/en/Cellphone_sign-in" target="_blank">learn more about Cellphone Sign-in on our documentation website</a>.
@@ -79 +79 @@
 ?>
     If you would like access to this premium feature, please 
-    <a href="https://www.wordfence.com/wordfence-signup/" target="_blank">upgrade to our premium version</a>.
+    <a href="https://www.wordfence.com/gnl1twoFac2/wordfence-signup/" target="_blank">upgrade to our premium version</a>.
 <?php
 }

wordfence/tags/6.0.6/lib/wfActivityReport.php

@@ -346 +346 @@
         global $wpdb;
 
-        $is_bin_ip = !wfUtils::isValidIP($ip_address);
-        if (!$is_bin_ip) {
-            $ip_address = wfUtils::inet_pton($ip_address);
+        if (wfUtils::isValidIP($ip_address)) {
+            $ip_bin = wfUtils::inet_pton($ip_address);
+        } else {
+            $ip_bin = $ip_address;
+            $ip_address = wfUtils::inet_ntop($ip_bin);
         }
 
@@ -358 +360 @@
         }
 
-        $country = wfUtils::IP2Country($is_bin_ip ? wfUtils::inet_ntop($ip_address) : $ip_address);
+        $country = wfUtils::IP2Country($ip_address);
 
         $wpdb->query($wpdb->prepare(<<<SQL
@@ -365 +367 @@
 ON DUPLICATE KEY UPDATE blockCount = blockCount + 1
 SQL
-            , $ip_address, $country));
+            , $ip_bin, $country));
     }
 

wordfence/tags/6.0.6/lib/wfLog.php

@@ -791 +791 @@
         //End range/UA blocking
 
-        $blockedCountries = wfConfig::get('cbl_countries', false);
-        $bareRequestURI = wfUtils::extractBareURI($_SERVER['REQUEST_URI']);
-        $bareBypassRedirURI = wfUtils::extractBareURI(wfConfig::get('cbl_bypassRedirURL', ''));
-        $skipCountryBlocking = false;
-
-        if($bareBypassRedirURI && $bareRequestURI == $bareBypassRedirURI){ //Run this before country blocking because even if the user isn't blocked we need to set the bypass cookie so they can bypass future blocks.
-            $bypassRedirDest = wfConfig::get('cbl_bypassRedirDest', '');
-            if($bypassRedirDest){
+        // Country blocking
+        if (wfConfig::get('isPaid')) {
+            $blockedCountries = wfConfig::get('cbl_countries', false);
+            $bareRequestURI = wfUtils::extractBareURI($_SERVER['REQUEST_URI']);
+            $bareBypassRedirURI = wfUtils::extractBareURI(wfConfig::get('cbl_bypassRedirURL', ''));
+            $skipCountryBlocking = false;
+
+            if($bareBypassRedirURI && $bareRequestURI == $bareBypassRedirURI){ //Run this before country blocking because even if the user isn't blocked we need to set the bypass cookie so they can bypass future blocks.
+                $bypassRedirDest = wfConfig::get('cbl_bypassRedirDest', '');
+                if($bypassRedirDest){
+                    self::setCBLCookieBypass();
+                    $this->redirect($bypassRedirDest); //exits
+                }
+            }
+            $bareBypassViewURI = wfUtils::extractBareURI(wfConfig::get('cbl_bypassViewURL', ''));
+            if($bareBypassViewURI && $bareBypassViewURI == $bareRequestURI){
                 self::setCBLCookieBypass();
-                $this->redirect($bypassRedirDest); //exits
-            }
-        }
-        $bareBypassViewURI = wfUtils::extractBareURI(wfConfig::get('cbl_bypassViewURL', ''));
-        if($bareBypassViewURI && $bareBypassViewURI == $bareRequestURI){
-            self::setCBLCookieBypass();
-            $skipCountryBlocking = true;
-        }
-            
-        if((! $skipCountryBlocking) && $blockedCountries && wfConfig::get('isPaid') && (! self::isCBLBypassCookieSet()) ){
-            if(is_user_logged_in() && (! wfConfig::get('cbl_loggedInBlocked', false)) ){ //User is logged in and we're allowing logins
-                //Do nothing
-            } else if(strpos($_SERVER['REQUEST_URI'], '/wp-login.php') !== false && (! wfConfig::get('cbl_loginFormBlocked', false))  ){ //It's the login form and we're allowing that
-                //Do nothing 
-            } else if(strpos($_SERVER['REQUEST_URI'], '/wp-login.php') === false && (! wfConfig::get('cbl_restOfSiteBlocked', false))  ){ //It's the rest of the site and we're allowing that 
-                //Do nothing
-            } else {
-                if($country = wfUtils::IP2Country($IP) ){
-                    foreach(explode(',', $blockedCountries) as $blocked){
-                        if(strtoupper($blocked) == strtoupper($country)){ //At this point we know the user has been blocked
-                            if(wfConfig::get('cbl_action') == 'redir'){
-                                $redirURL = wfConfig::get('cbl_redirURL');
-                                $eRedirHost = wfUtils::extractHostname($redirURL);
-                                $isExternalRedir = false;
-                                if($eRedirHost && $eRedirHost != wfUtils::extractHostname(home_url())){ //It's an external redirect...
-                                    $isExternalRedir = true;
+                $skipCountryBlocking = true;
+            }
+
+            if((! $skipCountryBlocking) && $blockedCountries && (! self::isCBLBypassCookieSet()) ){
+                if(is_user_logged_in() && (! wfConfig::get('cbl_loggedInBlocked', false)) ){ //User is logged in and we're allowing logins
+                    //Do nothing
+                } else if(strpos($_SERVER['REQUEST_URI'], '/wp-login.php') !== false && (! wfConfig::get('cbl_loginFormBlocked', false))  ){ //It's the login form and we're allowing that
+                    //Do nothing
+                } else if(strpos($_SERVER['REQUEST_URI'], '/wp-login.php') === false && (! wfConfig::get('cbl_restOfSiteBlocked', false))  ){ //It's the rest of the site and we're allowing that
+                    //Do nothing
+                } else {
+                    if($country = wfUtils::IP2Country($IP) ){
+                        foreach(explode(',', $blockedCountries) as $blocked){
+                            if(strtoupper($blocked) == strtoupper($country)){ //At this point we know the user has been blocked
+                                if(wfConfig::get('cbl_action') == 'redir'){
+                                    $redirURL = wfConfig::get('cbl_redirURL');
+                                    $eRedirHost = wfUtils::extractHostname($redirURL);
+                                    $isExternalRedir = false;
+                                    if($eRedirHost && $eRedirHost != wfUtils::extractHostname(home_url())){ //It's an external redirect...
+                                        $isExternalRedir = true;
+                                    }
+                                    if( (! $isExternalRedir) && wfUtils::extractBareURI($redirURL) == $bareRequestURI){ //Is this the URI we want to redirect to, then don't block it
+                                        //Do nothing
+                                        /* Uncomment the following if page components aren't loading for the page we redirect to.
+                                           Uncommenting is not recommended because it means that anyone from a blocked country
+                                           can crawl your site by sending the page blocked users are redirected to as the referer for every request.
+                                           But it's your call.
+                                        } else if(wfUtils::extractBareURI($_SERVER['HTTP_REFERER']) == $redirURL){ //If the referer the page we want to redirect to? Then this might be loading as a component so don't block.
+                                            //Do nothing
+                                        */
+                                    } else {
+                                        $this->redirect(wfConfig::get('cbl_redirURL'));
+                                    }
+                                } else {
+                                    $this->do503(3600, "Access from your area has been temporarily limited for security reasons");
+                                    wfConfig::inc('totalCountryBlocked');
                                 }
-                                if( (! $isExternalRedir) && wfUtils::extractBareURI($redirURL) == $bareRequestURI){ //Is this the URI we want to redirect to, then don't block it
-                                    //Do nothing
-                                /* Uncomment the following if page components aren't loading for the page we redirect to.
-                                   Uncommenting is not recommended because it means that anyone from a blocked country
-                                   can crawl your site by sending the page blocked users are redirected to as the referer for every request.
-                                   But it's your call.
-                                } else if(wfUtils::extractBareURI($_SERVER['HTTP_REFERER']) == $redirURL){ //If the referer the page we want to redirect to? Then this might be loading as a component so don't block.
-                                    //Do nothing    
-                                */
-                                } else {
-                                    $this->redirect(wfConfig::get('cbl_redirURL'));
-                                }
-                            } else {
-                                $this->do503(3600, "Access from your area has been temporarily limited for security reasons");
-                                wfConfig::inc('totalCountryBlocked');
                             }
                         }

wordfence/tags/6.0.6/lib/wfScanEngine.php

@@ -68 +68 @@
         $this->jobList[] = 'knownFiles_main';
         $this->jobList[] = 'knownFiles_finish';
-        foreach(array('knownFiles', 'fileContents', 'database', 'posts', 'comments', 'passwds', 'dns', 'diskSpace', 'oldVersions') as $scanType){
-            if(wfConfig::get('scansEnabled_' . $scanType)){
-                if(method_exists($this, 'scan_' . $scanType . '_init')){
-                    foreach(array('init', 'main', 'finish') as $op){ $this->jobList[] = $scanType . '_' . $op; };
-                } else {
+        foreach (array('knownFiles', 'fileContents', 'database', 'posts', 'comments', 'passwds', 'dns', 'diskSpace', 'oldVersions') as $scanType) {
+            if (wfConfig::get('scansEnabled_' . $scanType)) {
+                if (method_exists($this, 'scan_' . $scanType . '_init')) {
+                    foreach (array('init', 'main', 'finish') as $op) {
+                        $this->jobList[] = $scanType . '_' . $op;
+                    };
+                } else if (method_exists($this, 'scan_' . $scanType)) {
                     $this->jobList[] = $scanType;
                 }
@@ -124 +126 @@
             self::checkForKill();
             $jobName = $this->jobList[0];
-            call_user_func(array($this, 'scan_' . $jobName));
+            $callback = array($this, 'scan_' . $jobName);
+            if (is_callable($callback)) {
+                call_user_func($callback);
+            }
             array_shift($this->jobList); //only shift once we're done because we may pause halfway through a job and need to pick up where we left off
             self::checkForKill();
@@ -812 +817 @@
             $this->status(2, 'info', "Starting DNS scan for $host");
 
-            $cnameArrRec = dns_get_record($host, DNS_CNAME);
+            $cnameArrRec = @dns_get_record($host, DNS_CNAME);
             $cnameArr = array(); 
             $cnamesWeMustTrack = array();
-            foreach($cnameArrRec as $elem){ 
-                $this->status(2, 'info', "Scanning CNAME DNS record for " . $elem['host']);
-                if($elem['host'] == $host){ 
-                    $cnameArr[] = $elem; 
-                    $cnamesWeMustTrack[] = $elem['target'];
-                } 
-            }
+            if ($cnameArrRec) {
+                foreach($cnameArrRec as $elem){
+                    $this->status(2, 'info', "Scanning CNAME DNS record for " . $elem['host']);
+                    if($elem['host'] == $host){
+                        $cnameArr[] = $elem;
+                        $cnamesWeMustTrack[] = $elem['target'];
+                    }
+                }
+            }
+
             function wfAnonFunc1($a){ return $a['host'] . ' points to ' . $a['target']; }
             $cnameArr = array_map('wfAnonFunc1', $cnameArr);

wordfence/tags/6.0.6/lib/wordfenceClass.php

@@ -329 +329 @@
         $db->queryWriteIgnoreError("drop table if exists $prefix"."wfFileQueue");
         $db->queryWriteIgnoreError("drop table if exists $prefix"."wfFileChanges");
-        //Adding primary key to this table because some backup apps use primary key during backup.
-        $db->queryWriteIgnoreError("alter table {$prefix}wfStatus add id bigint UNSIGNED NOT NULL auto_increment PRIMARY KEY");
+
+        $result = $wpdb->get_row("SHOW FIELDS FROM {$prefix}wfStatus where field = 'id'");
+        if (!$result || strtolower($result->Key) != 'pri') {
+            //Adding primary key to this table because some backup apps use primary key during backup.
+            $db->queryWriteIgnoreError("alter table {$prefix}wfStatus add id bigint UNSIGNED NOT NULL auto_increment PRIMARY KEY");
+        }
 
         $optScanEnabled = $db->querySingle("select val from $prefix"."wfConfig where name='scansEnabled_options'");
@@ -388 +392 @@
         }
 
+        // Fix the data in the country column.
+        // TODO: add version check so this doesn't run on every update.
+        $ip_results = $wpdb->get_results("SELECT * FROM `{$prefix}wfBlockedIPLog` GROUP BY IP");
+        if ($ip_results) {
+            foreach ($ip_results as $ip_row) {
+                $wpdb->query($wpdb->prepare("UPDATE `{$prefix}wfBlockedIPLog` SET countryCode = %s WHERE IP = %s", wfUtils::IP2Country(wfUtils::inet_ntop($ip_row->IP)), $ip_row->IP));
+            }
+        }
+
         //Must be the final line
     }
@@ -505 +518 @@
 
         // Change GoDaddy's limit login mu-plugin since it can interfere with the two factor auth message.
-        if (defined('GD_SYSTEM_PLUGIN_DIR') && file_exists(GD_SYSTEM_PLUGIN_DIR . 'limit-login-attempts/limit-login-attempts.php')
-            && defined('LIMIT_LOGIN_DIRECT_ADDR')) {
+        if (self::hasGDLimitLoginsMUPlugin()) {
             add_action('login_errors', array('wordfence', 'fixGDLimitLoginsErrors'), 11);
         }
@@ -585 +597 @@
         if($UA){
             $b = $browscap->getBrowser($UA);
-            if($b['Crawler']){
+            if(!empty($b['Crawler'])){
                 $isCrawler = true;
             }
@@ -879 +891 @@
                                 } else if($_POST['wordfence_authFactor'] == $t[2]){
                                     $api = new wfAPI(wfConfig::get('apiKey'), wfUtils::getWPVersion());
-                                    $codeResult = $api->call('twoFactor_verification', array(), array('phone' => $t[1]) );
-                                    if(isset($codeResult['notPaid']) && $codeResult['notPaid']){
-                                        break; //Let them sign in without two factor
-                                    }
-                                    if(isset($codeResult['ok']) && $codeResult['ok']){
-                                        $t[2] = $codeResult['code'];
-                                        $t[4] = time() + 1800; //30 minutes until code expires
-                                        wfConfig::set_ser('twoFactorUsers', $twoFactorUsers); //save the code the user needs to enter and return an error.
-                                        self::$authError = new WP_Error('twofactor_required', __('<strong>CODE EXPIRED. CHECK YOUR PHONE:</strong> The code you entered has expired. Codes are only valid for 30 minutes for security reasons. We have sent you a new code. Please sign in using your username and your password followed by a space and the new code we sent you.'));
-                                        return self::$authError;
-                                    } else {
-                                        break; //No new code was received. Let them sign in with the expired code.
+                                    try {
+                                        $codeResult = $api->call('twoFactor_verification', array(), array('phone' => $t[1]) );
+
+                                        if(isset($codeResult['notPaid']) && $codeResult['notPaid']){
+                                            break; //Let them sign in without two factor
+                                        }
+                                        if(isset($codeResult['ok']) && $codeResult['ok']){
+                                            $t[2] = $codeResult['code'];
+                                            $t[4] = time() + 1800; //30 minutes until code expires
+                                            wfConfig::set_ser('twoFactorUsers', $twoFactorUsers); //save the code the user needs to enter and return an error.
+                                            self::$authError = new WP_Error('twofactor_required', __('<strong>CODE EXPIRED. CHECK YOUR PHONE:</strong> The code you entered has expired. Codes are only valid for 30 minutes for security reasons. We have sent you a new code. Please sign in using your username and your password followed by a space and the new code we sent you.'));
+                                            return self::$authError;
+                                        } else {
+                                            break; //No new code was received. Let them sign in with the expired code.
+                                        }
+
+                                    } catch (Exception $e) {
+                                        // Couldn't connect to noc1, let them sign in since the password was correct.
+                                        break;
                                     }
                                 } else { //Bad code, so cancel the login and return an error to user.
@@ -902 +921 @@
                             if($t[0] == $userDat->ID && $t[3] == 'activated'){ //Yup, enabled, so lets send the code
                                 $api = new wfAPI(wfConfig::get('apiKey'), wfUtils::getWPVersion());
-                                $codeResult = $api->call('twoFactor_verification', array(), array('phone' => $t[1]) );
-                                if(isset($codeResult['notPaid']) && $codeResult['notPaid']){
-                                    break; //Let them sign in without two factor if their API key has expired or they're not paid and for some reason they have this set up.
+                                try {
+                                    $codeResult = $api->call('twoFactor_verification', array(), array('phone' => $t[1]) );
+                                    if(isset($codeResult['notPaid']) && $codeResult['notPaid']){
+                                        break; //Let them sign in without two factor if their API key has expired or they're not paid and for some reason they have this set up.
+                                    }
+                                } catch (Exception $e) {
+                                    // Couldn't connect to noc1, let them sign in since the password was correct.
+                                    break;
                                 }
-
                                 if(isset($codeResult['ok']) && $codeResult['ok']){
                                     $t[2] = $codeResult['code'];
                                     $t[4] = time() + 1800; //30 minutes until code expires
                                     wfConfig::set_ser('twoFactorUsers', $twoFactorUsers); //save the code the user needs to enter and return an error.
+
+                                    if (self::hasGDLimitLoginsMUPlugin() && function_exists('limit_login_get_address')) {
+                                        $retries = get_option('limit_login_retries', array());
+                                        $ip = limit_login_get_address();
+
+                                        if (!is_array($retries)) {
+                                            $retries = array();
+                                        }
+                                        if (isset($retries[$ip]) && is_int($retries[$ip])) {
+                                            $retries[$ip]--;
+                                        } else {
+                                            $retries[$ip] = 0;
+                                        }
+                                        update_option('limit_login_retries', $retries);
+                                    }
+
                                     self::$authError = new WP_Error( 'twofactor_required', __( '<strong>CHECK YOUR PHONE</strong>: A code has been sent to your phone and will arrive within 30 seconds. Please sign in again and add a space and the code to the end of your password.' ) );
                                     return self::$authError;
@@ -3283 +3322 @@
     }
 
+    /**
+     * @return bool
+     */
+    public static function hasGDLimitLoginsMUPlugin() {
+        return defined('GD_SYSTEM_PLUGIN_DIR') && file_exists(GD_SYSTEM_PLUGIN_DIR . 'limit-login-attempts/limit-login-attempts.php')
+            && defined('LIMIT_LOGIN_DIRECT_ADDR');
+    }
+
+    /**
+     * @param string $content
+     * @return string
+     */
     public static function fixGDLimitLoginsErrors($content) {
         if (self::$authError) {

wordfence/tags/6.0.6/readme.txt

@@ -4 +4 @@
 Requires at least: 3.9
 Tested up to: 4.2.2
-Stable tag: 6.0.5
+Stable tag: 6.0.6
 
 Wordfence Security is a free enterprise class security and performance plugin that makes your site up to 50 times faster and more secure. 
@@ -172 +172 @@
 
 == Changelog ==
+
+= 6.0.6 =
+* Improvement: Handled uncaught exception when noc1 is not available in 2FA.
+* Improvement: Fixed issue with limit-logins mu-plugin on GoDaddy counting first login attempt in 2FA against total allowed login attempts.
+* Fix: Fixed bug with IPs not resolving to countries when printable IP passed to logBlockedIP.
+* Fix: Fixed issue with free users country blocking redirects working after downgrade.
+* Fix: Encoded URL field in country blocking options.
+* Fix: Added a check to verify field has not already been altered prior to calling ALTER in runInstall.
+* Fix: Fixed issue with scan_options method being called after method has been removed.
+* Fix: Fixed bug in scan when dns_get_record fails and error condition was not handled.
+* Fix: Fixed PHP notice when 'Crawler' not included in browser pcap result.
 
 = 6.0.5 =

wordfence/tags/6.0.6/views/reports/activity-report-email-inline.php

@@ -120 +120 @@
                     <?php echo $title ?>
                 </div>
-                <a href="http://www.wordfence.com/" style="font-size: 100%; vertical-align: baseline; outline: none; color: orange; text-decoration: none; margin: 0; padding: 0; border: 0;"><img src="http://www.wordfence.com/wp-content/themes/parallelus-salutation/wfCustomHome/images/wordfenceLogo.png" alt="" style="font-size: 100%; vertical-align: baseline; -ms-interpolation-mode: bicubic; outline: none; text-decoration: none; margin: 0; padding: 0; border: 0 none;" /></a>
-
-                <p style="font-size: 100%; vertical-align: baseline; margin: 1em 0; padding: 0; border: 0;">
-                    This email was sent from your website <a href="<?php echo site_url() ?>"><?php echo site_url() ?></a> and is a summary of security related activity that Wordfence monitors for the period <?php printf('%s to %s', $report_start, $report_end) ?>. <?php if (!wfConfig::get('isPaid')): ?>NOTE: You are using the free version of Wordfence and are missing out on features like cellphone sign-in, country blocking and detecting if your site IP is sending spam. <a href="http://www.wordfence.com/?utm_source=plugin&utm_medium=UI&utm_campaign=summaryEmail">Click here to upgrade to Wordfence Premium now</a>.<?php endif ?>
+                <a href="http://www.wordfence.com/zz5/" style="font-size: 100%; vertical-align: baseline; outline: none; color: orange; text-decoration: none; margin: 0; padding: 0; border: 0;"><img src="http://www.wordfence.com/wp-content/themes/parallelus-salutation/wfCustomHome/images/wordfenceLogo.png" alt="" style="font-size: 100%; vertical-align: baseline; -ms-interpolation-mode: bicubic; outline: none; text-decoration: none; margin: 0; padding: 0; border: 0 none;" /></a>
+
+                <p style="font-size: 100%; vertical-align: baseline; margin: 1em 0; padding: 0; border: 0;">
+                    This email was sent from your website <a href="<?php echo site_url() ?>"><?php echo site_url() ?></a> and is a summary of security related activity that Wordfence monitors for the period <?php printf('%s to %s', $report_start, $report_end) ?>. <?php if (!wfConfig::get('isPaid')): ?>NOTE: You are using the free version of Wordfence and are missing out on features like cellphone sign-in, country blocking and detecting if your site IP is sending spam. <a href="http://www.wordfence.com/zz6/">Click here to upgrade to Wordfence Premium now</a>.<?php endif ?>
                 </p>
 

wordfence/tags/6.0.6/views/reports/activity-report-email.php

@@ -296 +296 @@
                     Activity for week of<br> <strong><?php echo date_i18n(get_option('date_format')) ?></strong>
                 </div>
-                <a href="http://www.wordfence.com/"><img src="http://www.wordfence.com/wp-content/themes/parallelus-salutation/wfCustomHome/images/wordfenceLogo.png" alt=""/></a>
+                <a href="http://www.wordfence.com/zz7/"><img src="http://www.wordfence.com/wp-content/themes/parallelus-salutation/wfCustomHome/images/wordfenceLogo.png" alt=""/></a>
 
                 <h2>Top 10 IP's Blocked</h2>

wordfence/tags/6.0.6/views/reports/activity-report.php

@@ -4 +4 @@
  */
 ?>
-<a href="//www.wordfence.com/"><img src="//www.wordfence.com/wp-content/themes/parallelus-salutation/wfCustomHome/images/wordfenceLogo.png" alt=""/></a>
+<a href="//www.wordfence.com/zz8/"><img src="//www.wordfence.com/wp-content/themes/parallelus-salutation/wfCustomHome/images/wordfenceLogo.png" alt=""/></a>
 
 <h2>Top <?php echo (int) $limit; ?> IP's Blocked</h2>

wordfence/tags/6.0.6/wordfence.php

@@ -5 +5 @@
 Description: Wordfence Security - Anti-virus, Firewall and High Speed Cache
 Author: Wordfence
-Version: 6.0.5
+Version: 6.0.6
 Author URI: http://www.wordfence.com/
 */
@@ -11 +11 @@
     return;
 }
-define('WORDFENCE_VERSION', '6.0.5');
+define('WORDFENCE_VERSION', '6.0.6');
 if(get_option('wordfenceActivated') != 1){
     add_action('activated_plugin','wordfence_save_activation_error'); function wordfence_save_activation_error(){ update_option('wf_plugin_act_error',  ob_get_contents()); }

wordfence/trunk/js/admin.js

@@ -1685 +1685 @@
             },
             invalidCountryURLMsg: function(URL) {
-                this.colorbox('400px', "Invalid URL", "URL's that you provide for bypassing country blocking must start with '/' or 'http://' without quotes. The URL that is invalid is: " + URL);
+                this.colorbox('400px', "Invalid URL", "URL's that you provide for bypassing country blocking must start with '/' or 'http://' without quotes. The URL that is invalid is: " + this.htmlEscape(URL));
                 return;
             },
@@ -2033 +2033 @@
                 // Older versions of Opera
                 return this._windowHasFocus;
+            },
+
+            htmlEscape: function(html) {
+                return String(html)
+                    .replace(/&/g, '&')
+                    .replace(/"/g, '"')
+                    .replace(/'/g, ''')
+                    .replace(/</g, '&lt;')
+                    .replace(/>/g, '&gt;');
             }
         };

wordfence/trunk/lib/email_genericAlert.php

@@ -17 +17 @@
 
 Click here to sign-up for the Premium version of Wordfence now.
-https://www.wordfence.com/wordfence-signup/
+https://www.wordfence.com/zz1/wordfence-signup/
 
 <?php } ?>

wordfence/trunk/lib/email_newIssues.php

@@ -36 +36 @@
 
 <p>Click here to sign-up for the Premium version of Wordfence now.<br>
-<a href="https://www.wordfence.com/wordfence-signup/">https://www.wordfence.com/wordfence-signup/</a></p>
+<a href="https://www.wordfence.com/zz2/wordfence-signup/">https://www.wordfence.com/zz2/wordfence-signup/</a></p>
 
 <?php } ?>

wordfence/trunk/lib/email_passwdChanged.php

@@ -21 +21 @@
 Thank you.
 
-Email generated by Wordfence. Learn more at http://www.wordfence.com/
+Email generated by Wordfence. Learn more at http://www.wordfence.com/zz3/

wordfence/trunk/lib/email_pleaseChangePasswd.php

@@ -21 +21 @@
 Thank you.
 
-Email generated by Wordfence. Learn more at http://www.wordfence.com/
+Email generated by Wordfence. Learn more at http://www.wordfence.com/zz4/

wordfence/trunk/lib/menu_countryBlocking.php

@@ -13 +13 @@
             <strong>Country Blocking is only available to Premium Members at this time</strong><br /><br />
             Country Blocking is a premium feature because we have licensed a very accurate commercial geolocation database to provide this feature. If you would like to
-            activate this feature, simply <a href="https://www.wordfence.com/wordfence-signup/" target="_blank">click here and get a premium Wordfence API Key</a>, and then copy and paste it into your options page. You can <a href="http://docs.wordfence.com/en/Country_blocking" target="_blank">learn more about Country Blocking on our documentation website</a>.
+            activate this feature, simply <a href="https://www.wordfence.com/gnl1countryBlock1/wordfence-signup/" target="_blank">click here and get a premium Wordfence API Key</a>, and then copy and paste it into your options page. You can <a href="http://docs.wordfence.com/en/Country_blocking" target="_blank">learn more about Country Blocking on our documentation website</a>.
         </div>
 <?php } ?>
@@ -53 +53 @@
         <tr><th colspan="2">
             If user who is allowed to access the site views the URL 
-            <input type="text" id="wfBypassViewURL" value="<?php echo wp_kses(wfConfig::get('cbl_bypassViewURL', ""), array()); ?>" size="20" /> 
+            <input type="text" id="wfBypassViewURL" value="<?php echo esc_attr(wfConfig::get('cbl_bypassViewURL', ""), array()); ?>" size="20" />
             then set a cookie that will bypass country blocking in future in case that user hits the site from a blocked country. 
             </th></tr>
@@ -114 +114 @@
 ?>
     If you would like access to this premium feature, please 
-    <a href="https://www.wordfence.com/wordfence-signup/" target="_blank">upgrade to our premium version</a>.
+    <a href="https://www.wordfence.com/gnl1countryBlock2/wordfence-signup/" target="_blank">upgrade to our premium version</a>.
 </p>
 <?php

wordfence/trunk/lib/menu_options.php

@@ -39 +39 @@
                     <?php } else { ?>
                     The currently active API Key is a <span style="color: #F00; font-weight: bold;">Free Key</span>. <a
-                            href="https://www.wordfence.com/wordfence-signup/" target="_blank">Click Here to Upgrade to
+                            href="https://www.wordfence.com/gnl1optAPIKey1/wordfence-signup/" target="_blank">Click Here to Upgrade to
                             Wordfence Premium now.</a>
                         <?php } ?>
@@ -49 +49 @@
                         <table border="0">
                             <tr>
-                                <td><a href="https://www.wordfence.com/manage-wordfence-api-keys/"
+                                <td><a href="https://www.wordfence.com/gnl1optMngKys/manage-wordfence-api-keys/"
                                        target="_blank"><input type="button" value="Renew your premium license"/></a>
                                 </td>
@@ -412 +412 @@
                                 href="http://docs.wordfence.com/en/Wordfence_options#Scan_public_facing_site"
                                 target="_blank" class="wfhelp"></a>(<a
-                                href="https://www.wordfence.com/wordfence-signup/" target="_blank">Paid members only</a>)
+                                href="https://www.wordfence.com/gnl1optPdOnly1/wordfence-signup/" target="_blank">Paid members only</a>)
                         </th>
                         <td><input type="checkbox" id="scansEnabled_public" class="wfConfigElem"
@@ -1075 +1075 @@
             If you use the free edition of Wordfence, you don't need to worry about entering an API key in the "API Key"
             field above. One is automatically created for you. If you choose to <a
-                href="https://www.wordfence.com/wordfence-signup/" target="_blank">upgrade to Wordfence Premium
+                href="https://www.wordfence.com/gnl1optUpg1/wordfence-signup/" target="_blank">upgrade to Wordfence Premium
                 edition</a>, you will receive an API key. You will need to copy and paste that key into the "API Key"
             field above and hit "Save" to activate your key.

wordfence/trunk/lib/menu_passwd.php

@@ -13 +13 @@
             We then provide a way to change weak passwords or alert members that they need to improve their password strength.
             To activate this feature, simply
-            <a href="https://www.wordfence.com/wordfence-signup/" target="_blank">click here and get a premium Wordfence API Key</a>, and then copy and paste it into your options page. You can
+            <a href="https://www.wordfence.com/gnl1pwAuditUp1/wordfence-signup/" target="_blank">click here and get a premium Wordfence API Key</a>, and then copy and paste it into your options page. You can
             <a href="http://docs.wordfence.com/en/Wordfence_Password_Auditing" target="_blank">learn more about Password Auditing on our Documentation Website</a>.
         </div>
@@ -178 +178 @@
         ?>
         If you would like access to this premium feature, please
-        <a href="https://www.wordfence.com/wordfence-signup/" target="_blank">upgrade to our premium version</a>.
+        <a href="https://www.wordfence.com/gnl1pwAuditUp2/wordfence-signup/" target="_blank">upgrade to our premium version</a>.
     </p>
     <?php

wordfence/trunk/lib/menu_scan.php

@@ -13 +13 @@
                 <td>
                     <div style="border: 1px solid #CCC; padding: 4px;">
-                        <a href="http://docs.wordfence.com/en/Wordfence_scanning" target="_blank" class="wfhelp"></a><a href="http://docs.wordfence.com/en/Wordfence_scanning" target="_blank">Read our scanning documentation</a>. You can also <a href="#" onclick="WFAD.startTourAgain(); return false;">start the tour again</a>, <a href="http://www.wordfence.com/subscribe-to-the-wordfence-email-list/" target="_blank">subscribe to get WordPress Security Alerts and Product News</a> or <a target="_blank" href="http://support.wordfence.com/">visit our support website help.</a> Love Wordfence? You can help by doing two simple things: <a href="http://wordpress.org/extend/plugins/wordfence/" target="_blank">Go to WordPress.org now and give this plugin a 5&#9733; rating</a>. Blog about Wordfence and link to the <a href="http://wordpress.org/extend/plugins/wordfence/" target="_blank">plugin page</a> or <a href="http://www.wordfence.com/" target="_blank">www.wordfence.com</a>. Spreading the word helps us keep the best features free.
+                        <a href="http://docs.wordfence.com/en/Wordfence_scanning" target="_blank" class="wfhelp"></a><a href="http://docs.wordfence.com/en/Wordfence_scanning" target="_blank">Read our scanning documentation</a>. You can also <a href="#" onclick="WFAD.startTourAgain(); return false;">start the tour again</a>, <a href="http://www.wordfence.com/gnl1listSubscr/subscribe-to-the-wordfence-email-list/" target="_blank">subscribe to get WordPress Security Alerts and Product News</a> or <a target="_blank" href="http://support.wordfence.com/">visit our support website help.</a> Love Wordfence? You can help by doing two simple things: <a href="http://wordpress.org/extend/plugins/wordfence/" target="_blank">Go to WordPress.org now and give this plugin a 5&#9733; rating</a>. Blog about Wordfence and link to the <a href="http://wordpress.org/extend/plugins/wordfence/" target="_blank">plugin page</a> or <a href="http://www.wordfence.com/gnl1scanTopHome/" target="_blank">www.wordfence.com</a>. Spreading the word helps us keep the best features free.
                     </div>
                 </td>
@@ -40 +40 @@
             <?php } else { ?>
             <div style="margin: 0 0 20px 5px; width: 795px;">
-                <strong style="color: #F00;">How to upgrade:</strong> If you would like access to our <a href="http://support.wordfence.com/" target="_blank">Premium Support help system</a> and features like Cellphone Sign-in, Country Blocking, external site scanning and the ability to schedule scans, simply <a href="https://www.wordfence.com/wordfence-signup/" target="_blank">visit our Wordfence Premium sign-up page</a> and sign up for a Premium Wordfence API key. Then go to the Wordfence options page on this site and replace your free API key with your new premium key. You will immediately be upgraded to Wordfence Premium with all the features it includes and you will have instant access to our ticketing system on <a href="http://support.wordfence.com/" target="_blank">support.wordfence.com</a>.
+                <strong style="color: #F00;">How to upgrade:</strong> If you would like access to our <a href="http://support.wordfence.com/" target="_blank">Premium Support help system</a> and features like Cellphone Sign-in, Country Blocking, external site scanning and the ability to schedule scans, simply <a href="https://www.wordfence.com/gnl1scanUpgrade/wordfence-signup/" target="_blank">visit our Wordfence Premium sign-up page</a> and sign up for a Premium Wordfence API key. Then go to the Wordfence options page on this site and replace your free API key with your new premium key. You will immediately be upgraded to Wordfence Premium with all the features it includes and you will have instant access to our ticketing system on <a href="http://support.wordfence.com/" target="_blank">support.wordfence.com</a>.
             </div>
 

wordfence/trunk/lib/menu_scanSchedule.php

@@ -7 +7 @@
                 <strong>Scan Scheduling is only available to Premium Members at this time</strong><br /><br />
                 Scan Scheduling is a premium feature because it places additional load on our scanning servers. If you would like to
-                activate this feature, simply <a href="https://www.wordfence.com/wordfence-signup/" target="_blank">click here and get a premium Wordfence API Key</a>, and then copy and paste it into your options
+                activate this feature, simply <a href="https://www.wordfence.com/gnl1scanSched1/wordfence-signup/" target="_blank">click here and get a premium Wordfence API Key</a>, and then copy and paste it into your options
                 page.
             </div>
@@ -93 +93 @@
 ?>
     If you would like access to this premium feature, please 
-    <a href="https://www.wordfence.com/wordfence-signup/" target="_blank">upgrade to our Premium version</a>.
+    <a href="https://www.wordfence.com/gnl1scanSched2/wordfence-signup/" target="_blank">upgrade to our Premium version</a>.
 </p>
 <?php

wordfence/trunk/lib/menu_twoFactor.php

@@ -7 +7 @@
                 <strong>Cellphone Sign-in is only available to Premium Members at this time</strong><br /><br />
                 Cellphone Sign-in is a premium feature because we are charged per SMS we send when a user signs in. If you would like to
-                activate this feature, simply <a href="https://www.wordfence.com/wordfence-signup/" target="_blank">click here and get a premium Wordfence API Key</a>, and then copy and paste it into your options page.
+                activate this feature, simply <a href="https://www.wordfence.com/gnl1twoFac1/wordfence-signup/" target="_blank">click here and get a premium Wordfence API Key</a>, and then copy and paste it into your options page.
                 <br /><br />
                 Wordfence's Cellphone Sign-in uses a technique called "Two Factor Authentication" which is used by banks, government agencies and military world-wide as one of the most secure forms of remote system authentication. It's now available from Wordfence for your WordPress website. We recommend you enable Cellphone Sign-in for all Administrator level accounts. You can <a href="http://docs.wordfence.com/en/Cellphone_sign-in" target="_blank">learn more about Cellphone Sign-in on our documentation website</a>.
@@ -79 +79 @@
 ?>
     If you would like access to this premium feature, please 
-    <a href="https://www.wordfence.com/wordfence-signup/" target="_blank">upgrade to our premium version</a>.
+    <a href="https://www.wordfence.com/gnl1twoFac2/wordfence-signup/" target="_blank">upgrade to our premium version</a>.
 <?php
 }

wordfence/trunk/lib/wfActivityReport.php

@@ -346 +346 @@
         global $wpdb;
 
-        $is_bin_ip = !wfUtils::isValidIP($ip_address);
-        if (!$is_bin_ip) {
-            $ip_address = wfUtils::inet_pton($ip_address);
+        if (wfUtils::isValidIP($ip_address)) {
+            $ip_bin = wfUtils::inet_pton($ip_address);
+        } else {
+            $ip_bin = $ip_address;
+            $ip_address = wfUtils::inet_ntop($ip_bin);
         }
 
@@ -358 +360 @@
         }
 
-        $country = wfUtils::IP2Country($is_bin_ip ? wfUtils::inet_ntop($ip_address) : $ip_address);
+        $country = wfUtils::IP2Country($ip_address);
 
         $wpdb->query($wpdb->prepare(<<<SQL
@@ -365 +367 @@
 ON DUPLICATE KEY UPDATE blockCount = blockCount + 1
 SQL
-            , $ip_address, $country));
+            , $ip_bin, $country));
     }
 

wordfence/trunk/lib/wfLog.php

@@ -791 +791 @@
         //End range/UA blocking
 
-        $blockedCountries = wfConfig::get('cbl_countries', false);
-        $bareRequestURI = wfUtils::extractBareURI($_SERVER['REQUEST_URI']);
-        $bareBypassRedirURI = wfUtils::extractBareURI(wfConfig::get('cbl_bypassRedirURL', ''));
-        $skipCountryBlocking = false;
-
-        if($bareBypassRedirURI && $bareRequestURI == $bareBypassRedirURI){ //Run this before country blocking because even if the user isn't blocked we need to set the bypass cookie so they can bypass future blocks.
-            $bypassRedirDest = wfConfig::get('cbl_bypassRedirDest', '');
-            if($bypassRedirDest){
+        // Country blocking
+        if (wfConfig::get('isPaid')) {
+            $blockedCountries = wfConfig::get('cbl_countries', false);
+            $bareRequestURI = wfUtils::extractBareURI($_SERVER['REQUEST_URI']);
+            $bareBypassRedirURI = wfUtils::extractBareURI(wfConfig::get('cbl_bypassRedirURL', ''));
+            $skipCountryBlocking = false;
+
+            if($bareBypassRedirURI && $bareRequestURI == $bareBypassRedirURI){ //Run this before country blocking because even if the user isn't blocked we need to set the bypass cookie so they can bypass future blocks.
+                $bypassRedirDest = wfConfig::get('cbl_bypassRedirDest', '');
+                if($bypassRedirDest){
+                    self::setCBLCookieBypass();
+                    $this->redirect($bypassRedirDest); //exits
+                }
+            }
+            $bareBypassViewURI = wfUtils::extractBareURI(wfConfig::get('cbl_bypassViewURL', ''));
+            if($bareBypassViewURI && $bareBypassViewURI == $bareRequestURI){
                 self::setCBLCookieBypass();
-                $this->redirect($bypassRedirDest); //exits
-            }
-        }
-        $bareBypassViewURI = wfUtils::extractBareURI(wfConfig::get('cbl_bypassViewURL', ''));
-        if($bareBypassViewURI && $bareBypassViewURI == $bareRequestURI){
-            self::setCBLCookieBypass();
-            $skipCountryBlocking = true;
-        }
-            
-        if((! $skipCountryBlocking) && $blockedCountries && wfConfig::get('isPaid') && (! self::isCBLBypassCookieSet()) ){
-            if(is_user_logged_in() && (! wfConfig::get('cbl_loggedInBlocked', false)) ){ //User is logged in and we're allowing logins
-                //Do nothing
-            } else if(strpos($_SERVER['REQUEST_URI'], '/wp-login.php') !== false && (! wfConfig::get('cbl_loginFormBlocked', false))  ){ //It's the login form and we're allowing that
-                //Do nothing 
-            } else if(strpos($_SERVER['REQUEST_URI'], '/wp-login.php') === false && (! wfConfig::get('cbl_restOfSiteBlocked', false))  ){ //It's the rest of the site and we're allowing that 
-                //Do nothing
-            } else {
-                if($country = wfUtils::IP2Country($IP) ){
-                    foreach(explode(',', $blockedCountries) as $blocked){
-                        if(strtoupper($blocked) == strtoupper($country)){ //At this point we know the user has been blocked
-                            if(wfConfig::get('cbl_action') == 'redir'){
-                                $redirURL = wfConfig::get('cbl_redirURL');
-                                $eRedirHost = wfUtils::extractHostname($redirURL);
-                                $isExternalRedir = false;
-                                if($eRedirHost && $eRedirHost != wfUtils::extractHostname(home_url())){ //It's an external redirect...
-                                    $isExternalRedir = true;
+                $skipCountryBlocking = true;
+            }
+
+            if((! $skipCountryBlocking) && $blockedCountries && (! self::isCBLBypassCookieSet()) ){
+                if(is_user_logged_in() && (! wfConfig::get('cbl_loggedInBlocked', false)) ){ //User is logged in and we're allowing logins
+                    //Do nothing
+                } else if(strpos($_SERVER['REQUEST_URI'], '/wp-login.php') !== false && (! wfConfig::get('cbl_loginFormBlocked', false))  ){ //It's the login form and we're allowing that
+                    //Do nothing
+                } else if(strpos($_SERVER['REQUEST_URI'], '/wp-login.php') === false && (! wfConfig::get('cbl_restOfSiteBlocked', false))  ){ //It's the rest of the site and we're allowing that
+                    //Do nothing
+                } else {
+                    if($country = wfUtils::IP2Country($IP) ){
+                        foreach(explode(',', $blockedCountries) as $blocked){
+                            if(strtoupper($blocked) == strtoupper($country)){ //At this point we know the user has been blocked
+                                if(wfConfig::get('cbl_action') == 'redir'){
+                                    $redirURL = wfConfig::get('cbl_redirURL');
+                                    $eRedirHost = wfUtils::extractHostname($redirURL);
+                                    $isExternalRedir = false;
+                                    if($eRedirHost && $eRedirHost != wfUtils::extractHostname(home_url())){ //It's an external redirect...
+                                        $isExternalRedir = true;
+                                    }
+                                    if( (! $isExternalRedir) && wfUtils::extractBareURI($redirURL) == $bareRequestURI){ //Is this the URI we want to redirect to, then don't block it
+                                        //Do nothing
+                                        /* Uncomment the following if page components aren't loading for the page we redirect to.
+                                           Uncommenting is not recommended because it means that anyone from a blocked country
+                                           can crawl your site by sending the page blocked users are redirected to as the referer for every request.
+                                           But it's your call.
+                                        } else if(wfUtils::extractBareURI($_SERVER['HTTP_REFERER']) == $redirURL){ //If the referer the page we want to redirect to? Then this might be loading as a component so don't block.
+                                            //Do nothing
+                                        */
+                                    } else {
+                                        $this->redirect(wfConfig::get('cbl_redirURL'));
+                                    }
+                                } else {
+                                    $this->do503(3600, "Access from your area has been temporarily limited for security reasons");
+                                    wfConfig::inc('totalCountryBlocked');
                                 }
-                                if( (! $isExternalRedir) && wfUtils::extractBareURI($redirURL) == $bareRequestURI){ //Is this the URI we want to redirect to, then don't block it
-                                    //Do nothing
-                                /* Uncomment the following if page components aren't loading for the page we redirect to.
-                                   Uncommenting is not recommended because it means that anyone from a blocked country
-                                   can crawl your site by sending the page blocked users are redirected to as the referer for every request.
-                                   But it's your call.
-                                } else if(wfUtils::extractBareURI($_SERVER['HTTP_REFERER']) == $redirURL){ //If the referer the page we want to redirect to? Then this might be loading as a component so don't block.
-                                    //Do nothing    
-                                */
-                                } else {
-                                    $this->redirect(wfConfig::get('cbl_redirURL'));
-                                }
-                            } else {
-                                $this->do503(3600, "Access from your area has been temporarily limited for security reasons");
-                                wfConfig::inc('totalCountryBlocked');
                             }
                         }

wordfence/trunk/lib/wfScanEngine.php

@@ -68 +68 @@
         $this->jobList[] = 'knownFiles_main';
         $this->jobList[] = 'knownFiles_finish';
-        foreach(array('knownFiles', 'fileContents', 'database', 'posts', 'comments', 'passwds', 'dns', 'diskSpace', 'oldVersions') as $scanType){
-            if(wfConfig::get('scansEnabled_' . $scanType)){
-                if(method_exists($this, 'scan_' . $scanType . '_init')){
-                    foreach(array('init', 'main', 'finish') as $op){ $this->jobList[] = $scanType . '_' . $op; };
-                } else {
+        foreach (array('knownFiles', 'fileContents', 'database', 'posts', 'comments', 'passwds', 'dns', 'diskSpace', 'oldVersions') as $scanType) {
+            if (wfConfig::get('scansEnabled_' . $scanType)) {
+                if (method_exists($this, 'scan_' . $scanType . '_init')) {
+                    foreach (array('init', 'main', 'finish') as $op) {
+                        $this->jobList[] = $scanType . '_' . $op;
+                    };
+                } else if (method_exists($this, 'scan_' . $scanType)) {
                     $this->jobList[] = $scanType;
                 }
@@ -124 +126 @@
             self::checkForKill();
             $jobName = $this->jobList[0];
-            call_user_func(array($this, 'scan_' . $jobName));
+            $callback = array($this, 'scan_' . $jobName);
+            if (is_callable($callback)) {
+                call_user_func($callback);
+            }
             array_shift($this->jobList); //only shift once we're done because we may pause halfway through a job and need to pick up where we left off
             self::checkForKill();
@@ -812 +817 @@
             $this->status(2, 'info', "Starting DNS scan for $host");
 
-            $cnameArrRec = dns_get_record($host, DNS_CNAME);
+            $cnameArrRec = @dns_get_record($host, DNS_CNAME);
             $cnameArr = array(); 
             $cnamesWeMustTrack = array();
-            foreach($cnameArrRec as $elem){ 
-                $this->status(2, 'info', "Scanning CNAME DNS record for " . $elem['host']);
-                if($elem['host'] == $host){ 
-                    $cnameArr[] = $elem; 
-                    $cnamesWeMustTrack[] = $elem['target'];
-                } 
-            }
+            if ($cnameArrRec) {
+                foreach($cnameArrRec as $elem){
+                    $this->status(2, 'info', "Scanning CNAME DNS record for " . $elem['host']);
+                    if($elem['host'] == $host){
+                        $cnameArr[] = $elem;
+                        $cnamesWeMustTrack[] = $elem['target'];
+                    }
+                }
+            }
+
             function wfAnonFunc1($a){ return $a['host'] . ' points to ' . $a['target']; }
             $cnameArr = array_map('wfAnonFunc1', $cnameArr);

wordfence/trunk/lib/wordfenceClass.php

@@ -329 +329 @@
         $db->queryWriteIgnoreError("drop table if exists $prefix"."wfFileQueue");
         $db->queryWriteIgnoreError("drop table if exists $prefix"."wfFileChanges");
-        //Adding primary key to this table because some backup apps use primary key during backup.
-        $db->queryWriteIgnoreError("alter table {$prefix}wfStatus add id bigint UNSIGNED NOT NULL auto_increment PRIMARY KEY");
+
+        $result = $wpdb->get_row("SHOW FIELDS FROM {$prefix}wfStatus where field = 'id'");
+        if (!$result || strtolower($result->Key) != 'pri') {
+            //Adding primary key to this table because some backup apps use primary key during backup.
+            $db->queryWriteIgnoreError("alter table {$prefix}wfStatus add id bigint UNSIGNED NOT NULL auto_increment PRIMARY KEY");
+        }
 
         $optScanEnabled = $db->querySingle("select val from $prefix"."wfConfig where name='scansEnabled_options'");
@@ -388 +392 @@
         }
 
+        // Fix the data in the country column.
+        // TODO: add version check so this doesn't run on every update.
+        $ip_results = $wpdb->get_results("SELECT * FROM `{$prefix}wfBlockedIPLog` GROUP BY IP");
+        if ($ip_results) {
+            foreach ($ip_results as $ip_row) {
+                $wpdb->query($wpdb->prepare("UPDATE `{$prefix}wfBlockedIPLog` SET countryCode = %s WHERE IP = %s", wfUtils::IP2Country(wfUtils::inet_ntop($ip_row->IP)), $ip_row->IP));
+            }
+        }
+
         //Must be the final line
     }
@@ -505 +518 @@
 
         // Change GoDaddy's limit login mu-plugin since it can interfere with the two factor auth message.
-        if (defined('GD_SYSTEM_PLUGIN_DIR') && file_exists(GD_SYSTEM_PLUGIN_DIR . 'limit-login-attempts/limit-login-attempts.php')
-            && defined('LIMIT_LOGIN_DIRECT_ADDR')) {
+        if (self::hasGDLimitLoginsMUPlugin()) {
             add_action('login_errors', array('wordfence', 'fixGDLimitLoginsErrors'), 11);
         }
@@ -585 +597 @@
         if($UA){
             $b = $browscap->getBrowser($UA);
-            if($b['Crawler']){
+            if(!empty($b['Crawler'])){
                 $isCrawler = true;
             }
@@ -879 +891 @@
                                 } else if($_POST['wordfence_authFactor'] == $t[2]){
                                     $api = new wfAPI(wfConfig::get('apiKey'), wfUtils::getWPVersion());
-                                    $codeResult = $api->call('twoFactor_verification', array(), array('phone' => $t[1]) );
-                                    if(isset($codeResult['notPaid']) && $codeResult['notPaid']){
-                                        break; //Let them sign in without two factor
-                                    }
-                                    if(isset($codeResult['ok']) && $codeResult['ok']){
-                                        $t[2] = $codeResult['code'];
-                                        $t[4] = time() + 1800; //30 minutes until code expires
-                                        wfConfig::set_ser('twoFactorUsers', $twoFactorUsers); //save the code the user needs to enter and return an error.
-                                        self::$authError = new WP_Error('twofactor_required', __('<strong>CODE EXPIRED. CHECK YOUR PHONE:</strong> The code you entered has expired. Codes are only valid for 30 minutes for security reasons. We have sent you a new code. Please sign in using your username and your password followed by a space and the new code we sent you.'));
-                                        return self::$authError;
-                                    } else {
-                                        break; //No new code was received. Let them sign in with the expired code.
+                                    try {
+                                        $codeResult = $api->call('twoFactor_verification', array(), array('phone' => $t[1]) );
+
+                                        if(isset($codeResult['notPaid']) && $codeResult['notPaid']){
+                                            break; //Let them sign in without two factor
+                                        }
+                                        if(isset($codeResult['ok']) && $codeResult['ok']){
+                                            $t[2] = $codeResult['code'];
+                                            $t[4] = time() + 1800; //30 minutes until code expires
+                                            wfConfig::set_ser('twoFactorUsers', $twoFactorUsers); //save the code the user needs to enter and return an error.
+                                            self::$authError = new WP_Error('twofactor_required', __('<strong>CODE EXPIRED. CHECK YOUR PHONE:</strong> The code you entered has expired. Codes are only valid for 30 minutes for security reasons. We have sent you a new code. Please sign in using your username and your password followed by a space and the new code we sent you.'));
+                                            return self::$authError;
+                                        } else {
+                                            break; //No new code was received. Let them sign in with the expired code.
+                                        }
+
+                                    } catch (Exception $e) {
+                                        // Couldn't connect to noc1, let them sign in since the password was correct.
+                                        break;
                                     }
                                 } else { //Bad code, so cancel the login and return an error to user.
@@ -902 +921 @@
                             if($t[0] == $userDat->ID && $t[3] == 'activated'){ //Yup, enabled, so lets send the code
                                 $api = new wfAPI(wfConfig::get('apiKey'), wfUtils::getWPVersion());
-                                $codeResult = $api->call('twoFactor_verification', array(), array('phone' => $t[1]) );
-                                if(isset($codeResult['notPaid']) && $codeResult['notPaid']){
-                                    break; //Let them sign in without two factor if their API key has expired or they're not paid and for some reason they have this set up.
+                                try {
+                                    $codeResult = $api->call('twoFactor_verification', array(), array('phone' => $t[1]) );
+                                    if(isset($codeResult['notPaid']) && $codeResult['notPaid']){
+                                        break; //Let them sign in without two factor if their API key has expired or they're not paid and for some reason they have this set up.
+                                    }
+                                } catch (Exception $e) {
+                                    // Couldn't connect to noc1, let them sign in since the password was correct.
+                                    break;
                                 }
-
                                 if(isset($codeResult['ok']) && $codeResult['ok']){
                                     $t[2] = $codeResult['code'];
                                     $t[4] = time() + 1800; //30 minutes until code expires
                                     wfConfig::set_ser('twoFactorUsers', $twoFactorUsers); //save the code the user needs to enter and return an error.
+
+                                    if (self::hasGDLimitLoginsMUPlugin() && function_exists('limit_login_get_address')) {
+                                        $retries = get_option('limit_login_retries', array());
+                                        $ip = limit_login_get_address();
+
+                                        if (!is_array($retries)) {
+                                            $retries = array();
+                                        }
+                                        if (isset($retries[$ip]) && is_int($retries[$ip])) {
+                                            $retries[$ip]--;
+                                        } else {
+                                            $retries[$ip] = 0;
+                                        }
+                                        update_option('limit_login_retries', $retries);
+                                    }
+
                                     self::$authError = new WP_Error( 'twofactor_required', __( '<strong>CHECK YOUR PHONE</strong>: A code has been sent to your phone and will arrive within 30 seconds. Please sign in again and add a space and the code to the end of your password.' ) );
                                     return self::$authError;
@@ -3283 +3322 @@
     }
 
+    /**
+     * @return bool
+     */
+    public static function hasGDLimitLoginsMUPlugin() {
+        return defined('GD_SYSTEM_PLUGIN_DIR') && file_exists(GD_SYSTEM_PLUGIN_DIR . 'limit-login-attempts/limit-login-attempts.php')
+            && defined('LIMIT_LOGIN_DIRECT_ADDR');
+    }
+
+    /**
+     * @param string $content
+     * @return string
+     */
     public static function fixGDLimitLoginsErrors($content) {
         if (self::$authError) {

wordfence/trunk/readme.txt

@@ -4 +4 @@
 Requires at least: 3.9
 Tested up to: 4.2.2
-Stable tag: 6.0.5
+Stable tag: 6.0.6
 
 Wordfence Security is a free enterprise class security and performance plugin that makes your site up to 50 times faster and more secure. 
@@ -172 +172 @@
 
 == Changelog ==
+
+= 6.0.6 =
+* Improvement: Handled uncaught exception when noc1 is not available in 2FA.
+* Improvement: Fixed issue with limit-logins mu-plugin on GoDaddy counting first login attempt in 2FA against total allowed login attempts.
+* Fix: Fixed bug with IPs not resolving to countries when printable IP passed to logBlockedIP.
+* Fix: Fixed issue with free users country blocking redirects working after downgrade.
+* Fix: Encoded URL field in country blocking options.
+* Fix: Added a check to verify field has not already been altered prior to calling ALTER in runInstall.
+* Fix: Fixed issue with scan_options method being called after method has been removed.
+* Fix: Fixed bug in scan when dns_get_record fails and error condition was not handled.
+* Fix: Fixed PHP notice when 'Crawler' not included in browser pcap result.
 
 = 6.0.5 =

wordfence/trunk/views/reports/activity-report-email-inline.php

@@ -120 +120 @@
                     <?php echo $title ?>
                 </div>
-                <a href="http://www.wordfence.com/" style="font-size: 100%; vertical-align: baseline; outline: none; color: orange; text-decoration: none; margin: 0; padding: 0; border: 0;"><img src="http://www.wordfence.com/wp-content/themes/parallelus-salutation/wfCustomHome/images/wordfenceLogo.png" alt="" style="font-size: 100%; vertical-align: baseline; -ms-interpolation-mode: bicubic; outline: none; text-decoration: none; margin: 0; padding: 0; border: 0 none;" /></a>
-
-                <p style="font-size: 100%; vertical-align: baseline; margin: 1em 0; padding: 0; border: 0;">
-                    This email was sent from your website <a href="<?php echo site_url() ?>"><?php echo site_url() ?></a> and is a summary of security related activity that Wordfence monitors for the period <?php printf('%s to %s', $report_start, $report_end) ?>. <?php if (!wfConfig::get('isPaid')): ?>NOTE: You are using the free version of Wordfence and are missing out on features like cellphone sign-in, country blocking and detecting if your site IP is sending spam. <a href="http://www.wordfence.com/?utm_source=plugin&utm_medium=UI&utm_campaign=summaryEmail">Click here to upgrade to Wordfence Premium now</a>.<?php endif ?>
+                <a href="http://www.wordfence.com/zz5/" style="font-size: 100%; vertical-align: baseline; outline: none; color: orange; text-decoration: none; margin: 0; padding: 0; border: 0;"><img src="http://www.wordfence.com/wp-content/themes/parallelus-salutation/wfCustomHome/images/wordfenceLogo.png" alt="" style="font-size: 100%; vertical-align: baseline; -ms-interpolation-mode: bicubic; outline: none; text-decoration: none; margin: 0; padding: 0; border: 0 none;" /></a>
+
+                <p style="font-size: 100%; vertical-align: baseline; margin: 1em 0; padding: 0; border: 0;">
+                    This email was sent from your website <a href="<?php echo site_url() ?>"><?php echo site_url() ?></a> and is a summary of security related activity that Wordfence monitors for the period <?php printf('%s to %s', $report_start, $report_end) ?>. <?php if (!wfConfig::get('isPaid')): ?>NOTE: You are using the free version of Wordfence and are missing out on features like cellphone sign-in, country blocking and detecting if your site IP is sending spam. <a href="http://www.wordfence.com/zz6/">Click here to upgrade to Wordfence Premium now</a>.<?php endif ?>
                 </p>
 

wordfence/trunk/views/reports/activity-report-email.php

@@ -296 +296 @@
                     Activity for week of<br> <strong><?php echo date_i18n(get_option('date_format')) ?></strong>
                 </div>
-                <a href="http://www.wordfence.com/"><img src="http://www.wordfence.com/wp-content/themes/parallelus-salutation/wfCustomHome/images/wordfenceLogo.png" alt=""/></a>
+                <a href="http://www.wordfence.com/zz7/"><img src="http://www.wordfence.com/wp-content/themes/parallelus-salutation/wfCustomHome/images/wordfenceLogo.png" alt=""/></a>
 
                 <h2>Top 10 IP's Blocked</h2>

wordfence/trunk/views/reports/activity-report.php

@@ -4 +4 @@
  */
 ?>
-<a href="//www.wordfence.com/"><img src="//www.wordfence.com/wp-content/themes/parallelus-salutation/wfCustomHome/images/wordfenceLogo.png" alt=""/></a>
+<a href="//www.wordfence.com/zz8/"><img src="//www.wordfence.com/wp-content/themes/parallelus-salutation/wfCustomHome/images/wordfenceLogo.png" alt=""/></a>
 
 <h2>Top <?php echo (int) $limit; ?> IP's Blocked</h2>

wordfence/trunk/wordfence.php

@@ -5 +5 @@
 Description: Wordfence Security - Anti-virus, Firewall and High Speed Cache
 Author: Wordfence
-Version: 6.0.5
+Version: 6.0.6
 Author URI: http://www.wordfence.com/
 */
@@ -11 +11 @@
     return;
 }
-define('WORDFENCE_VERSION', '6.0.5');
+define('WORDFENCE_VERSION', '6.0.6');
 if(get_option('wordfenceActivated') != 1){
     add_action('activated_plugin','wordfence_save_activation_error'); function wordfence_save_activation_error(){ update_option('wf_plugin_act_error',  ob_get_contents()); }