Title: DefendWP Firewall Author: revmakx Published: 1. октобар 2024. Last modified: 16. јун 2025. --- Претражи додатке ![](https://ps.w.org/defend-wp-firewall/assets/banner-772x250.jpg?rev=3160272) ![](https://ps.w.org/defend-wp-firewall/assets/icon.svg?rev=3160272) # DefendWP Firewall [revmakx](https://profiles.wordpress.org/revmakx/) [Преузимање](https://downloads.wordpress.org/plugin/defend-wp-firewall.1.1.6.zip) * [Детаљи](https://sr.wordpress.org/plugins/defend-wp-firewall/#description) * [Прегледи](https://sr.wordpress.org/plugins/defend-wp-firewall/#reviews) * [Постављање](https://sr.wordpress.org/plugins/defend-wp-firewall/#installation) * [Изградња](https://sr.wordpress.org/plugins/defend-wp-firewall/#developers) [Подршка](https://wordpress.org/support/plugin/defend-wp-firewall/) ## Опис ### Instant protection against disclosed vulnerabilities [DefendWP.org](https://defendwp.org/) is a WordPress plugin that protects your website from hackers exploiting vulnerable code on your website. Security research companies discover vulnerabilities and notify plugin developers to patch them. After some time, they disclose the vulnerability to the public, allowing you to update your plugins. However, this system has flaws. Once vulnerabilities are publicly disclosed, hackers rush to exploit the sites in which you haven’t yet applied the patch. #### A Better Approach: Immediate Protection for All Users To solve this, our plugin pushes firewall rules and patches as soon as vulnerabilities are disclosed, ensuring websites are protected without waiting for an official patch. This protection is silent and automatic, ensuring that you are not affected even if you don’t take any immediate action. 1. Immediate Patches Upon Disclosure: When vulnerabilities are disclosed, our plugin pushes patches or firewall rules that prevent exploitation. 2. Silent Protection: We operate in the background, allowing plugin developers to roll out patches at their own pace without compromising user security. 3. Free and Accessible: Security should not be a privilege. Our plugin is free and accessible and ensures that all WordPress users are protected from newly disclosed vulnerabilities. ### Protecting Everyone, Not Just the Privileged Few Security should not be reserved for those who can afford premium services. The spirit of WordPress is inclusivity, and this should extend to security as well. When vulnerabilities are disclosed, they pose a risk to every website, regardless of its owner’s resources. Every WordPress user should have access to immediate protection. Security researchers play a vital role in identifying vulnerabilities, but the current system leaves too many users exposed. Our approach aims to create a safer WordPress ecosystem for all, by closing the gap between vulnerability disclosure and patching. This isn’t about taking credit—it’s about prioritizing the safety of small business owners, bloggers, and entrepreneurs who rely on WordPress. By silently closing the vulnerability gap, we aim for a future where WordPress security is accessible to everyone. Let’s build a safer WordPress ecosystem together—one that protects all users, not just the privileged few. #### For plugin authors: Report a Vulnerability Do you have an active vulnerability in your plugin you want to safeguard users from? Report it [here](https://defendwp.org/submit-a-vulnerability/) #### Support Need help with your website’s security? Just send us an email at [help@defendwp.org](https://sr.wordpress.org/plugins/defend-wp-firewall/help@defendwp.org?output_format=md). #### Note This plugin utilizes the [Ipify.org](https://api.ipify.org?format=json) to provide enhanced functionality. The API allows the plugin to retrieve the exact IP of the current user, which will be used to determine whether the user can access the WordPress site.[Privacy policy](https://ipify.org) Vulnerabilities, IPs, Plugins and Themes data will be sent between [DefendWP.org](https://defendwp.org) and the WP site to instantly patch from vulnerabilities. ## Постављање This section describes how to install the plugin and get it working. ### INSTALL THE PLUGIN FROM WITHIN WORDPRESS 1. Visit the Plugins page within your dashboard and select ‘Add New’. 2. Search for ‘DefendWP’ and in the ‘DefendWP Firewall’ plugin, click on the ‘Install Now’ button and once installed, click Active button. ### INSTALL THE PLUGIN MANUALLY 1. Upload the ‘defendwp-firewall’ folder to the /wp-content/plugins/ directory. 2. Activate the plugin through the ‘Plugins’ menu in WordPress ## ЧПП ### How does the current Vulnerability Disclosure process work? Currently, security research companies identify vulnerabilities in WordPress plugins or themes and notify the developers. The developers are given time to create a patch. During this time, premium users of the security companies are offered protection against the vulnerability. After the patch is made, the vulnerability is disclosed publicly. Unfortunately, once disclosed, hackers can target websites that haven’t yet applied the patch, leaving many users vulnerable. ### Why is this process problematic for many WordPress users? While the current process allows developers time to patch vulnerabilities, it unintentionally leaves many users—especially those without premium protection—exposed once the vulnerability is disclosed. Hackers actively target disclosed vulnerabilities, creating a window in which users who haven’t yet updated their plugins are vulnerable to attacks. The system also prevents plugin developers from informing their own users of vulnerabilities before public disclosure, limiting early protection. ### What is your solution to this problem? We offer a free plugin that immediately pushes patches or firewall rules to protect websites when vulnerabilities are disclosed. This ensures all users are protected, regardless of whether they have premium protection. Our plugin works silently, pushing protection as soon as a vulnerability is disclosed, even if a patch from the developer hasn’t been applied yet. ### How does your plugin work when a vulnerability is disclosed? Once a vulnerability is disclosed, our plugin pushes a silent update that either applies a patch or implements firewall rules to prevent exploitation. This immediate protection means that users are safeguarded against attacks, even if they haven’t yet applied the official patch provided by the plugin developer. ### Do you take credit for patching vulnerabilities? No, our goal is to protect users, not to take credit for patching or disclosures. Security research companies deserve recognition for their work in identifying vulnerabilities, and we respect that. We focus on providing immediate protection to all WordPress users, without seeking credit or publicity for doing so. ### Can plugin developers work with you to push patches before public disclosure? Yes, plugin developers can contact us to push patches through our platform before public disclosure. This ensures that their users are protected without violating early disclosure agreements with security companies. ### Is your plugin free? Yes, our plugin is completely free and accessible to all WordPress users. We believe that security should not be a luxury and aim to protect every WordPress site, regardless of financial resources. ### Why focus on protecting everyone instead of just premium users? The WordPress ecosystem is built on open-source principles: inclusivity and accessibility. Unfortunately, the current vulnerability disclosure process leaves many users—particularly those using free plugins—vulnerable to attacks. By offering free, immediate protection, we aim to ensure that all WordPress users, regardless of financial status, are safeguarded from potential threats. ### How does your solution differ from other security companies? Unlike other security companies that offer early protection only to their premium users, our solution is free and available to everyone. We push patches and firewall rules silently upon vulnerability disclosure, ensuring that all users are protected, not just those with paid services. ### Does your plugin interfere with official patches from plugin developers? No, our plugin works alongside official patches from developers. It provides temporary protection through firewall rules or patches until the official update is applied, ensuring that users are not left vulnerable during the critical window between disclosure and patch adoption. ## Прегледи Нема рецензија за овај додатак. ## Сарадници и градитељи „DefendWP Firewall“ је софтвер отвореног кода. Следећи људи су допринели овом додатку. Сарадници * [ revmakx ](https://profiles.wordpress.org/revmakx/) * [ Moh ](https://profiles.wordpress.org/dark-prince/) * [ Kuppuraj ](https://profiles.wordpress.org/rajkuppus/) * [ Amrit Anandh ](https://profiles.wordpress.org/amritanandh/) „DefendWP Firewall“ је преведен на 1 језик. Хвала [преводиоцима](https://translate.wordpress.org/projects/wp-plugins/defend-wp-firewall/contributors) за њихове доприносе. [Преведите „DefendWP Firewall“ на свој језик.](https://translate.wordpress.org/projects/wp-plugins/defend-wp-firewall) ### Заинтересовани сте за градњу? [Прегледајте код](https://plugins.trac.wordpress.org/browser/defend-wp-firewall/), проверите [SVN складиште](https://plugins.svn.wordpress.org/defend-wp-firewall/) или се пријавите на [белешку градње](https://plugins.trac.wordpress.org/log/defend-wp-firewall/) преко [RSS-а](https://plugins.trac.wordpress.org/log/defend-wp-firewall/?limit=100&mode=stop_on_copy&format=rss). ## Белешка о изменама #### 1.1.6 _Release Date – 16 June 2025_ Improvement: Firewall rules mechanism improved. Improvement: UI improved. #### 1.1.5 _Release Date – 5 May 2025_ Improvement: Support for IWP addon. #### 1.1.4 _Release Date – 14 Mar 2025_ Fix: Firewall service error. #### 1.1.3 _Release Date – 03 Mar 2025_ Fix: IP fetching failed in a few cases. #### 1.1.2 _Release Date – 03 Mar 2025_ Fix: Firewall JSON input error in a few cases. Improvement: Admin dashboard DefendWP settings page improvements. #### 1.1.1 _Release Date – 28 Feb 2025_ Fix: Broken Access Control fixed. #### 1.1.0 _Release Date – 11 Feb 2025_ Improvement: Support for DefendWP Pro v.2.0.0 plugin. #### 1.0.0 _Release Date – 30 Sep 2024_ Improvement: First Release. ## Мета * Version **1.1.6** * Last updated **10 месеци раније** * Active installations **3.000+** * WordPress version ** 6.2.0 или новије ** * Tested up to **6.8.5** * PHP version ** 8.1 или новије ** * Languages * [English (US)](https://wordpress.org/plugins/defend-wp-firewall/) и [German](https://de.wordpress.org/plugins/defend-wp-firewall/). * [Преведите на свој језик](https://translate.wordpress.org/projects/wp-plugins/defend-wp-firewall) * Tags * [malware](https://sr.wordpress.org/plugins/tags/malware/)[performance](https://sr.wordpress.org/plugins/tags/performance/) [security](https://sr.wordpress.org/plugins/tags/security/)[vulnerability](https://sr.wordpress.org/plugins/tags/vulnerability/) * [Напредни преглед](https://sr.wordpress.org/plugins/defend-wp-firewall/advanced/) ## Оцене No reviews have been submitted yet. [Your review](https://wordpress.org/support/plugin/defend-wp-firewall/reviews/#new-post) [See all reviews](https://wordpress.org/support/plugin/defend-wp-firewall/reviews/) ## Сарадници * [ revmakx ](https://profiles.wordpress.org/revmakx/) * [ Moh ](https://profiles.wordpress.org/dark-prince/) * [ Kuppuraj ](https://profiles.wordpress.org/rajkuppus/) * [ Amrit Anandh ](https://profiles.wordpress.org/amritanandh/) ## Подршка Имате нешто да кажете? Потребна вам је помоћ? [Види форум подршке](https://wordpress.org/support/plugin/defend-wp-firewall/)