Released February 28, 2026
Subscribe to download and install
This version has not been security scanned yet.
New: Implemented a "System Readiness" dashboard widget that surfaces configuration and environment issues impacting security and stability, with quick links to relevant settings and documentation. Improved: Enforced stricter Content-Security-Policy (CSP) measures in the plugin admin area by adding additional security directives. Improved: Enhanced the detection of obfuscated malicious JavaScript to better identify hidden security threats. Improved: More efficient analysis of suspicious requests by the firewall, resulting in better performance and fewer false positives. Improved: Implemented batch processing and timestamp formatting for spam comment cleanup to improve performance and prevent resource issues. Improved: Refactored database operations to use stricter identifier validation, improving SQL safety and compliance with MySQL standards. Improved: Updated HTTP header validation methods used for whitelisting requests in the anti-spam engine and traffic firewall settings. These settings now support entries with an empty value after the colon. Improved: Added exception logging and enhanced error handling to the continuous code quality assurance process. Improved: File handling operations are now more fault-tolerant with the implementation of explicit permission checks and thread-safe file locks. Changed: To prevent accidental movement dashboard widgets can now be reorganized using drag-and-drop via their headings only. Compatibility: Refactored code to address deprecated features and ensure compatibility with PHP 8.5. Fixed: A minor bug where escaped HTML tags were not properly handled when rendering the settings pages user interface. Fixed: A minor bug that caused the server error log message: preg_replace(): Passing null to parameter #3 ($subject) of type array|string is deprecated in /wp-cerber/cerber-common.php:4267. Fixed: A minor bug that caused the server error log message: preg_match(): Passing null to parameter #2 ($subject) of type string is deprecated. Fixed: A minor bug that caused the server error log message: Undefined array key "REQUEST_METHOD". Fixed: A minor bug that caused the server error log message: preg_replace(): Passing null to parameter #3 ($subject) of type array|string is deprecated. Fixed: A minor bug that caused the server error log message: Undefined array key "HTTP_HOST".
Get access to WP Cerber Security and 4,000+ more plugins with a subscription.
Code editor for WordPress that supports PHP, JavaScript, CSS, and SCSS with scheduling and conditional execution capabilities.
Tailwind CSS integration plugin for WordPress page builders with server-side compilation support for Oxygen, Bricks, Zion, and Gutenberg.
WordPress plugin providing AI-powered chatbot support with a floating widget for real-time assistance and conversation management.
WordPress plugin that optimizes and accelerates site search functionality through intelligent indexing and query optimization.
WordPress LMS plugin for creating, managing, and selling online courses with student tracking and monetization features.
Customize the WordPress admin dashboard and administrative interface appearance without code modifications.