Changeset 3058342

Timestamp:

03/25/2024 01:44:05 PM (21 months ago)

Author:

someguy9

Message:

1.7.9

Location:

wp-anti-clickjack

Files:

• tags/1.7.8 (added)
• tags/1.7.8/readme.txt (added)
• tags/1.7.8/wp-anti-clickjack.php (added)
• trunk/readme.txt (modified) (2 diffs)
• trunk/wp-anti-clickjack.php (modified) (1 diff)

wp-anti-clickjack/trunk/readme.txt

@@ -4 +4 @@
 Tags: anti click jacking, security, Browser Frame Breaking Script, clickjacking
 Requires at least: 5.0.0
-Tested up to: 6.3
-Stable tag: 1.7.8
+Tested up to: 6.5
+Stable tag: 1.7.9
 License: GPLv2 or later
 License URI: http://www.gnu.org/licenses/gpl-2.0.html
 
-Adds an HTTP header and OWASP's legacy browser frame breaking script to prevent clickjacking.
+Protect Your WordPress Site From Clickjacking Attacks by Adding the X-Frame-Options Header and Owasp's Legacy Browser Frame Breaking Script.
 
 == Description ==
 
-Prevent your site from being clickjacked with this plugin that includes the X-Frame-Options SAMEORIGIN and a modified version of OWASP's legacy browser frame breaking script. The OWASP's legacy browser frame breaking script is modified to work in browsers without Javascript (as well as browsers with Javascript). This additional script prevents other sites from putting your site in an iFrame for security reasons.
+WP Anti-Clickjack is a powerful security plugin that helps prevent your WordPress site from being vulnerable to clickjacking attacks. Clickjacking is a malicious technique where an attacker tricks users into clicking on a concealed link or button by overlaying it on your legitimate website.
 
-You can read more about clickjacking defense on [OWASP](https://cheatsheetseries.owasp.org/cheatsheets/Clickjacking_Defense_Cheat_Sheet.html)
+This plugin implements two key defense mechanisms:
+
+1. **X-Frame-Options Header**: The plugin adds the `X-Frame-Options: SAMEORIGIN` HTTP header to your site's responses. This header instructs web browsers to prevent other websites from embedding your site within an iframe, effectively blocking clickjacking attempts.
+
+2. **OWASP's Legacy Browser Frame Breaking Script**: The plugin includes a modified version of OWASP's legacy browser frame breaking script. This script prevents other sites from putting your site in an iframe, even in browsers that don't support the X-Frame-Options header. The script is optimized to work seamlessly in browsers with and without JavaScript enabled.
+
+By combining these two security measures, WP Anti-Clickjack provides comprehensive protection against clickjacking attacks, ensuring the safety and integrity of your WordPress site.
+
+For more information about clickjacking defense techniques, refer to the [OWASP Clickjacking Defense Cheat Sheet](https://cheatsheetseries.owasp.org/cheatsheets/Clickjacking_Defense_Cheat_Sheet.html).
+
+= Features =
+
+- Adds the `X-Frame-Options: SAMEORIGIN` HTTP header to prevent clickjacking
+- Includes a modified version of OWASP's legacy browser frame breaking script
+- Compatible with popular page builders and editors like Elementor, Divi, WPBakery, and more
+- Provides filters to disable the anti-clickjacking measures when needed
+- Easy to install and configure
+- Regularly updated and tested with the latest WordPress versions
 
 = Additional Details =
 
-If you'd like to disable the clickjacking JavaScript on a page you can use this filter in your theme's functions.php file.
+If you need to disable the clickjacking JavaScript on a specific page, you can use the following filter in your theme's `functions.php` file:
 
-`add_filter('wp_anti_clickjack', '__return_false' );`
+`add_filter('wp_anti_clickjack', '__return_false');`
 
-If you'd like to disable the clickjacking X-Frame-Options HTTP header you can use this filter in your theme's functions.php file.
+To disable the clickjacking X-Frame-Options HTTP header, use this filter in your theme's `functions.php` file:
 
-`add_filter('wp_anti_clickjack_x_frame_options_header', '__return_false' );`
-
+`add_filter('wp_anti_clickjack_x_frame_options_header', '__return_false');`
 
 == Installation ==
 
-To install this plugin:
+1. Download the plugin from the WordPress.org repository or your WordPress admin dashboard.
+2. Upload the plugin files to the `/wp-content/plugins/wp-anti-clickjack` directory, or install the plugin through the WordPress admin interface.
+3. Activate the plugin through the 'Plugins' screen in your WordPress admin.
+4. The plugin will automatically add the necessary anti-clickjacking measures to your site.
 
-1. Download the plugin
-2. Upload the plugin to the wp-content/plugins directory,
-3. Go to "plugins" in your WordPress admin, then click activate.
+== Frequently Asked Questions ==
+
+= Does this plugin affect my site's performance? =
+
+No, WP Anti-Clickjack is designed to have minimal impact on your site's performance. The anti-clickjacking measures are applied efficiently without causing any significant overhead.
+
+= Is this plugin compatible with page builders and editors? =
+
+Yes, WP Anti-Clickjack is compatible with popular page builders and editors such as Elementor, Divi, WPBakery, Thrive Architect, and more. If you encounter any compatibility issues, please contact me for assistance.
+
+= Can I customize the anti-clickjacking behavior? =
+
+Yes, the plugin provides filters that allow you to disable the clickjacking JavaScript and the X-Frame-Options header when needed. You can use these filters in your theme's `functions.php` file to fine-tune the plugin's behavior.
 
 == Frequently Asked Questions ==
@@ -40 +69 @@
 
 == Changelog ==
+
+= 1.7.9 =
+* Tested up to WordPress 6.5
 
 = 1.7.8 =

wp-anti-clickjack/trunk/wp-anti-clickjack.php

@@ -4 +4 @@
  * Plugin URI: https://drawne.com/wordpress-anti-clickjack-plugin/
  * Description: Plugin to prevent your site from being clickjacked by adding OWASP's legacy browser frame breaking script & X-Frame-Options.
- * Version: 1.7.8
+ * Version: 1.7.9
  * Text Domain: wp-anti-clickjack
  * Author: Andy Feliciotti