WordPress.org
Get WordPress

Plugin Directory

Changeset 3459337


Ignore:
Timestamp:
02/11/2026 08:45:48 PM (7 days ago)
Author:
SiteLockSecurity
Message:

Update trunk to 5.0.3

Location:
sitelock/trunk
Files:
5 edited

Legend:

Unmodified
Added
Removed

  • sitelock/trunk/admin/class-sitelock-admin.php

    r3418542 r3459337  
    10671067
    10681068public function sitelock_scan_enqueue_scripts() {
     1069    // Prevents nonce leaking to unauthorized users by only enqueuing the script for users with manage_options capability
     1070    if (!current_user_can('manage_options')) {
     1071        return;
     1072    }
    10691073       
    10701074    wp_enqueue_script('sitelock-scan', plugin_dir_url(__FILE__) . 'js/sitelock-scan.js', ['jquery'], '1.0', true);
     
    10791083    check_ajax_referer('sitelock_scan_nonce', 'nonce');
    10801084
     1085    if (!current_user_can('manage_options')) {
     1086        wp_send_json_error(['message' => 'Unauthorized'], 403);
     1087    }
     1088
    10811089    $scanType = isset($_POST['scan_type']) ? sanitize_text_field(wp_unslash($_POST['scan_type'])) : ''; // Default to 'patchman' if not provided
    10821090    $response = $this->api->sites->post_scan_now($scanType);

  • sitelock/trunk/changelog.txt

    r3418542 r3459337  
    11== Changelog ==
     2
     3= 5.0.3 =
     4_Release Date February 11, 2026_
     5
     6* Security: Improved admin permission checks for restricted functions
    27
    38= 5.0.2 =

  • sitelock/trunk/includes/api/class-auth-manager.php

    r3418542 r3459337  
    136136    public function handle_auth($external_key = null)
    137137    {
     138        if (!current_user_can('manage_options')) {
     139            wp_die(esc_html__('Unauthorized user.', 'sitelock-wordpress-plugin'), '', array('response' => 403));
     140        }
     141
    138142        // Verify nonce
    139143        if (!$external_key && (!isset($_POST['sitelock_license_key_nonce']) || !wp_verify_nonce(sanitize_text_field(wp_unslash($_POST['sitelock_license_key_nonce'])), 'sitelock_license_key_action'))) {

  • sitelock/trunk/readme.txt

    r3418542 r3459337  
    55Tested up to: 6.9
    66Requires PHP: 7.2
    7 Stable tag: 5.0.2
     7Stable tag: 5.0.3
    88Language: English
    99License: GPLv2 or later
     
    1414== Description ==
    1515
    16 >= 🌟 Completely Redesigned in Version 5.0 (November 2025) 🌟 =
     16>**🌟 Completely Redesigned in Version 5.0 (November 2025) 🌟**
    1717>
    1818>This November marks a milestone: the SiteLock WordPress Plugin has been rebuilt with three goals: make it faster, make it clearer and move the heavy work to the cloud. We built a cloud-first architecture, modernized UI, expanded security controls and stripped out everything that didn't need to be there.
     
    2828>If you used the old plugin: this is a different tool. If you're new: you're starting with the cleanest, fastest version of the plugin.
    2929
     30---
     31
    3032Your website deserves protection that’s simple, fast and built for WordPress. SiteLock WordPress Security focuses on the everyday controls that matter most and helps you establish a secure baseline in minutes — WordPress-specific hardening, login protection and a clear Site Health dashboard that keeps you in control without slowing your site down.
    3133It’s lightweight, action-first protection that complements your host defenses: essential safeguards run inside WordPress while deeper checks happen securely in the SiteLock cloud. Skip heavy on-server scans and alert fatigue — run on-demand checks when you need extra assurance, so you can ship updates with confidence.
     
    105107- For broader topics explore the [SiteLock Help Center](https://www.sitelock.com/help-center/)
    106108
     109= Security =
     110Protecting our customers and systems is a top priority, and we take security very seriously. If you believe you’ve found a security vulnerability in the SiteLock WordPress plugin, please let us know at [email protected] before sharing any details publicly.
    107111
    108112== Frequently Asked Questions ==
     
    184188
    185189== Changelog ==
     190
     191= 5.0.3 =
     192_Release Date February 11, 2026_
     193
     194* Security: Improved admin permission checks for restricted functions
    186195
    187196= 5.0.2 =

  • sitelock/trunk/sitelock.php

    r3418542 r3459337  
    1717 * Plugin URI:        https://www.sitelock.com/wordpress
    1818 * Description:       Free, lightweight WordPress security. WP Hardening, login protection and Site Health & on‑demand checks without slowing your site. Setup in minutes.
    19  * Version:           5.0.2
     19 * Version:           5.0.3
    2020 * Author:            SiteLockSecurity
    2121 * Author URI:        https://www.sitelock.com
     
    276276            .notice.notice-error {
    277277                max-width: 1115px; /* Set your desired max width */
     278                margin: 10px 15px 0 10px; /* Set your desired margin */
    278279            }
    279280        </style>';
Note: See TracChangeset for help on using the changeset viewer.