Solid Security Pro (iThemes Security Pro) 8.5.6 NULLED

8.5.6 - 2025-04-28 - Timothy Jacobs
Bug Fix: Fix fatal error in WP-Admin when File Change is active.

8.5.5 - 2025-04-28 - Timothy Jacobs
Tweak: Delete older JS files that were causing false-positives on scans. They have not been used since the UI was rewritten in React.
Security: Update StellarWP Telemetry library to improve authorization checks.

8.5.4 - 2025-03-24 - Timothy Jacobs, Zach Tirrell
Enhancement: Use block API Version 3 for the Security Profile block.
Bug Fix: PHP warning when HTTP_HOST not set.

8.5.3 - 2024-12-04 - Timothy Jacobs
Enhancement: Better surface Login Security features during onboarding.

8.5.2 - 2024-11-19 - Timothy Jacobs
Bug Fix: PHP warning about translations being loaded too early.

8.5.1 - 2024-11-11 - Timothy Jacobs
Important: Solid Security now requires WordPress 6.5.
Tweak: Add a new `solid_security_mail_site_logo` filter to modify the Site Logo used in email notifications.
Bug Fix: PHP fatal error on shutdown due to missing Event class on some sites.
Bug Fix: PHP warning on Site Health page.
Bug Fix: PHP warning in the SSL module on some server setups.

8.5.0 - 2024-06-18 - Timothy Jacobs, Lisa Canini, Jared Hill
New: Users can register for an account using passkeys on WP Login.
Enhancement: Improve highlighting settings search results.
Bug Fix: Checkbox styling issue on WordPress 6.6.
Bug Fix: If Login Methods is set to "Email Only" use the user's email address for the passkey's name.
Bug Fix: Fire an action when a vulnerability is unresolved due to plugin activation.

8.4.1 - 2024-03-21 - Timothy Jacobs, Lisa Canini, Jared Hill
Security: Fix a Google reCAPTCHA v3 bypass.
Important: "Automatic (Insecure)" IP detection has been removed. Read more: https://go.solidwp.com/firewall-features-not-available
Tweak: Block repeated session hijacking attacks from the same device even if the user has not specifically blocked the attacker's device. Previously, subsequent attacks after the first block would have their capabilities reduced.
Tweak: Remove the "Accept-Language" and "DNT" header from the list of sources for Trusted Devices.
Tweak: The Updater library has been updated to 1.8.4. The list of Patchstack licensed domains have been removed from the SolidWP licensing page.
Bug Fix: Fix the Trusted Devices "Approve" link in Outlook mail clients.
Bug Fix: The "Privilege Escalation" tab would not appear in a user's profile unless Passwordless Login was enabled.

8.3.2 - 2024-02-06 - Timothy Jacobs, Lisa Canini, Jared Hill
Tweak: Add a notice when a user's role is demoted from the Site Scans page.
Tweak: Update Privacy Policy generator text.
Bug Fix: Could not proceed through onboarding when BuddyPress or BuddyBoss was active.
Bug Fix: Some firewall rules could not be deactivated.
Bug Fix: Allow opting in to Telemetry via the Settings Page.
Bug Fix: PHP 8.2 deprecation warnings.