Securitycheck

Version 3.5.2 Stable

Joomla! 3.10 Joomla! 4.2

Released on: Saturday, 12 November 2022
Maturity Stable
Released on Saturday, 12 November 2022
Viewed 0 times

Release notes

Changelog

+ Database update until Nov 17 2022 (both versions)
+ Fixed bug checking vulnerable components (thank you very much for reporting this Christian!) (only Pro version)
A function was not receiving a valid value, causing a fatal error.
+ Improvements in the unistallation process (only Pro version)
To avoid errors in J4.
+ Fixed minor bug enabling active tab (thank you very much for reporting this Tomasz!) (only Pro version)
In J4 the active tab was not properly set into the "Waf configuration" option.

View files

Version 3.5.1 Stable

Joomla! 3.10 Joomla! 4.1 Joomla! 4.2

Released on: Wednesday, 31 August 2022
Maturity Stable
Released on Wednesday, 31 August 2022
Viewed 0 times

Release notes

Changelog

+ Database update until Sep 01 2022 (both versions)

+ Improvements in SQL injection filter (thank you very much for your time Carren!) (both versions)
To detect some boolean-based and time-based blind sql attacks.
+ Improvements in backend protection (free version)
To avoid errors in Joomla 4 when templates get images into the administrator folder. This improvement is already in Pro version since a some versions ago.
+ Fixed bug preventing loading some mandatory files (thanks for your time Grzegorz!)(only Pro version)
Sites stored in subfolders were not loading some mandatory javascript and css files.
+ Changed some firewall default values (only Pro version)
Now default values for "Dynamic blacklist time" and "Dynamic blacklist counter" are 60000 and 2 (instead of 600 and 5). As the 'Default config' is also applied by default, the risks of false positives is lower and the site is better protected.
+ Improvements in OTP feature (only Pro version)
Since Joomla 4.2.0 the 2FA plugins will be replaced by Multifactor Authentication plugins. I have adapted the OTP feature, that allows super users to access to the website even if they are blocked, to support this change. We will still need a Verification or Yubikey code to gain access to the site.
+ Improvements in loading time (thanks for your contribution George!) (only Pro version)
Now the extension has gzipped files for all .js and .css files. This way we can make use of this feature (present in the .htaccess file of J4), improving loading times of the extension.
+ Improvements in the '.htaccess protection' feature (only Pro version)
Updated default .htaccess files to apply the '.htaccess protection' feature. Those files are used only if the htaccess.txt file is not present in the root folder.
+ Improvements in extension's design (again) (only Pro version)
To avoid menu dissapearing on J3 if a plugin loads the modal core function.
+ Improvements to void deprecated errors in PHP 8.1 (both versions)

View files

Version 3.5.0 Stable

Joomla! 3.10 Joomla! 4.1 Joomla! 4.2

Released on: Monday, 30 May 2022
Maturity Stable
Released on Monday, 30 May 2022
Viewed 0 times

Release notes

Changelog

+ Database update until Jun 02 2022 (both versions)
+ Improvements in updates through Control Center (only Pro version)
Added support to update JCH Optimize version 7.
+ Removed the "Determine option accurately" (both versions)
I have improved the way to retrieve the component involved during an attack. The old method gave a 404 error in same cases (for example multilingual sites) and I was forced to include that option in Securitycheck Pro's config. With this new method we should not have this issue anymore as we retrieve the component more accurately. Customers with this option enabled will have to update the exceptions as previous versions returned a predefined value.
+ Fixed bug storing logs (only Pro version)
Avoiding not storing logs if some fields are too long.
+ Improvements in XSS filter (thank you very much for reporting this Philippe!) (only Pro version)
To avoid false positives in certain words.
+ Improvements in scans (thank you very much for reporting this Philippe!) (only Pro version)
To avoid problems encoding filenames.
+ Improvements in extension's design (only Pro version)
To avoid menu dissapearing on J3 if a plugin loads the modal core function.
+ Fixed minor bug adding exceptions from logs (only Pro version)
The 'second level protection' exceptions were not added.
+ Fixed bug in cron (only Pro version)
Preventing launching the task(s) during the schedule selected.
+ Fixed bug storing logs (thank you very much for reporting this Louis!) (only Pro version)
If the original string was too long the log entry was not written.
+ Improvements in LFI filter (only Pro version)
To avoid false positives in certain patterns.

View files