Download NinjaFirewall WP+ Edition v4.4 Nulled Free
= v4.4 =
* The "Full WAF" mode can be configured to exclude some directories. That can be done from the "NinjaFirewall > Dashboard" page by clicking on the new "Configure" button. There's no need to use the ".htninja" script to exclude folders anymore. That can be useful to exclude third-party applications that rely on PHP sessions and could behave erratically with the "Full WAF" mode (e.g., Piwik/Matomo, phpMyAdmin, forums etc).
* You can easily downgrade from "Full WAF" mode to "WordPress WAF" mode by clicking the "Configure" button in the "NinjaFirewall > Dashboard" page.
* Added a warning about the "X-XSS-Protection" HTTP header in the "Firewall Policies" section: although NinjaFirewall still supports it, it is now deprecated and only used by Safari. Consider using "Content-Security-Policy" (CSP) instead.
* When reactivating NinjaFirewall from the "Plugins" page, it will verify that the path to the firewall file is correct or, if necessary, will adjust it (e.g., after a server migration etc).
* NinjaFirewall will display a warning in its "Dashboard" page if the .user.ini or php.ini file is readable.
* The configuation backup files are now base64-encoded to prevent being wrongly flagged by some hosting companies antivirus.
* NinjaFirewall will hightlight in red colour in the "Plugins" page any plugin that has a pending security update. See [
https://nin.link/nfsecupdates/](https://nin.link/nfsecupdates/) for more details.
* The cache used to store information about pending security updates will be automatically flushed.
* On old multisite installations, the firewall will no longer block access to the "/wp-includes/ms-files.php" script.
* The firewall can now detect user roles even before WordPress is loaded.
* Updated Charts.js to v3.4.1.
* WP+ Edition (Premium): Updated GeoIP databases.
* Many additional small fixes and adjustments.