$failedRules = $waf->getFailedRules();
} catch (wfWAFBlockXSSException $e) {
$result = '<strong class="error">Blocked For XSS</strong>';
$failedRules = $waf->getFailedRules();
}
?>
<!doctype html>
<html lang="en">
<head>
<meta charset="UTF-8">
<title><?php
echo esc_html($title);
?>
</title>
<link rel="stylesheet" href="<?php
echo wfUtils::getBaseURL() . 'css/main.css';
?>
">
<style>
html {
font-family: "Open Sans", Helvetica, Arial, sans-serif;
}
h1, h2, h3, h4, h5 {
margin: 20px 0px 8px;
}
pre, p {
8px 0px 20px;
}
pre.request-debug {
padding: 12px;
background: #fafafa;
<?php
if (!wfUtils::isAdmin()) {
exit;
}
?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" dir="ltr" lang="en-US">
<head>
<title>Wordfence System Info</title>
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8" />
<link rel='stylesheet' id='wordfence-main-style-css' href='<?php
echo wfUtils::getBaseURL();
?>
/css/phpinfo.css?ver=<?php
echo WORDFENCE_VERSION;
?>
' type='text/css' media='all' />
<body>
<?php
ob_start();
phpinfo(INFO_ALL);
$out = ob_get_clean();
$out = str_replace('width="600"', 'width="900"', $out);
$out = preg_replace('/<hr.*?PHP Credits.*?<\\/h1>/s', '', $out);
$out = preg_replace('/<a [^>]+>/', '', $out);
$out = preg_replace('/<\\/a>/', '', $out);
$out = preg_replace('/<title>[^<]*<\\/title>/', '', $out);
echo $out;
?>
<div class="diffFooter">© 2011 Wordfence — Visit <a href="http://wordfence.com/">Wordfence.com</a> for help, security updates and more.</a>
public static function addDashboardWidget()
{
if (wfUtils::isAdmin() && (is_network_admin() || !is_multisite()) && wfConfig::get('email_summary_dashboard_widget_enabled')) {
wp_enqueue_style('wordfence-activity-report-widget', wfUtils::getBaseURL() . 'css/activity-report-widget.css', '', WORDFENCE_VERSION);
$report_date_range = 'week';
switch (wfConfig::get('email_summary_interval')) {
case 'biweekly':
$report_date_range = '2 weeks';
break;
case 'monthly':
$report_date_range = 'month';
break;
}
wp_add_dashboard_widget('wordfence_activity_report_widget', 'Wordfence activity in the past ' . $report_date_range, array('wfActivityReport', 'outputDashboardWidget'));
}
}
$pageTitle = "Audit the Strength of your Passwords";
$helpLink = "http://docs.wordfence.com/en/Wordfence_Password_Auditing";
$helpLabel = "Learn more about Password Auditing";
include 'pageTitle.php';
?>
<?php
if (!wfConfig::get('isPaid')) {
?>
<div class="wordfenceRightRail">
<ul>
<li><a href="https://www.wordfence.com/gnl1rightRailGetPremium/wordfence-signup/" target="_blank"><img src="<?php
echo wfUtils::getBaseURL() . 'images/rr_premium.png';
?>
" alt="Upgrade your protection - Get Wordfence Premium"></a></li>
<li><a href="https://www.wordfence.com/gnl1rightRailSiteCleaning/wordfence-site-cleanings/" target="_blank"><img src="<?php
echo wfUtils::getBaseURL() . 'images/rr_sitecleaning.jpg';
?>
" alt="Have you been hacked? Get help from Wordfence"></a></li>
<li>
<p class="center"><strong>Would you like to remove these ads?</strong><br><a href="https://www.wordfence.com/gnl1rightRailBottomUpgrade/wordfence-signup/" target="_blank">Get Premium</a></p>
</li>
</ul>
</div>
<?php
}
?>
<?php
if (!wfConfig::get('isPaid')) {
?>
<div class="wf-premium-callout" style="margin: 20px 0 20px 20px; width: 700px;">
<h3>Password Auditing is only available to Premium Members</h3>
<div data-bind="if: !groupBy()">
<div id="wf-lt-listings" data-bind="foreach: listings">
<div data-bind="attr: { id: ('wfActEvent_' + id()), 'class': cssClasses }">
<table border="0" cellpadding="1" cellspacing="0">
<tr>
<td>
<span data-bind="if: action() != 'loginOK' && user()">
<span data-bind="html: user.avatar" class="wfAvatar"></span>
<a data-bind="attr: { href: user.editLink }, text: user().display_name"
target="_blank"></a>
</span>
<span data-bind="if: loc()">
<span data-bind="if: action() != 'loginOK' && user()"> in</span>
<img data-bind="attr: { src: '<?php
echo wfUtils::getBaseURL() . 'images/flags/';
?>
' + loc().countryCode.toLowerCase() + '.png',
alt: loc().countryName, title: loc().countryName }" width="16"
height="11"
class="wfFlag"/>
<a data-bind="text: (loc().city ? loc().city + ', ' : '') + loc().countryName,
attr: { href: 'http://maps.google.com/maps?q=' + loc().lat + ',' + loc().lon + '&z=6' }"
target="_blank"></a>
</span>
<span data-bind="if: !loc()">
<span
data-bind="text: action() != 'loginOK' && user() ? 'at an' : 'An'"></span> unknown location at IP <a
data-bind="text: IP, attr: { href: WFAD.makeIPTrafLink(IP()) }"
target="_blank"></a>
</span>
public static function admin_menus()
{
if (!wfUtils::isAdmin()) {
return;
}
$warningAdded = false;
if (get_option('wf_plugin_act_error', false)) {
if (wfUtils::isAdminPageMU()) {
add_action('network_admin_notices', 'wordfence::activation_warning');
} else {
add_action('admin_notices', 'wordfence::activation_warning');
}
$warningAdded = true;
}
if (!wfConfig::get('apiKey')) {
if (wfUtils::isAdminPageMU()) {
add_action('network_admin_notices', 'wordfence::noKeyError');
} else {
add_action('admin_notices', 'wordfence::noKeyError');
}
$warningAdded = true;
}
if (!$warningAdded) {
if (wfConfig::get('tourClosed') == '1' && !wfConfig::get('autoUpdate') && !wfConfig::get('autoUpdateChoice')) {
$warningAdded = true;
if (wfUtils::isAdminPageMU()) {
add_action('network_admin_notices', 'wordfence::autoUpdateNotice');
} else {
add_action('admin_notices', 'wordfence::autoUpdateNotice');
}
}
}
if (!$warningAdded) {
if (wfConfig::get('tourClosed') == '1' && !wfConfig::get('alertEmails')) {
$warningAdded = true;
if (wfUtils::isAdminPageMU()) {
add_action('network_admin_notices', 'wordfence::adminEmailWarning');
} else {
add_action('admin_notices', 'wordfence::adminEmailWarning');
}
}
}
add_submenu_page("Wordfence", "Scan", "Scan", "activate_plugins", "Wordfence", 'wordfence::menu_scan');
add_menu_page('Wordfence', 'Wordfence', 'activate_plugins', 'Wordfence', 'wordfence::menu_scan', wfUtils::getBaseURL() . 'images/wordfence-logo-16x16.png');
add_submenu_page("Wordfence", "Live Traffic", "Live Traffic", "activate_plugins", "WordfenceActivity", 'wordfence::menu_activity');
/* add_submenu_page('Wordfence', 'Site Performance', 'Site Performance', 'activate_plugins', 'WordfenceSitePerfStats', 'wordfence::menu_sitePerfStats'); */
add_submenu_page('Wordfence', 'Performance Setup', 'Performance Setup', 'activate_plugins', 'WordfenceSitePerf', 'wordfence::menu_sitePerf');
add_submenu_page('Wordfence', 'Blocked IPs', 'Blocked IPs', 'activate_plugins', 'WordfenceBlockedIPs', 'wordfence::menu_blockedIPs');
add_submenu_page("Wordfence", "Cellphone Sign-in", "Cellphone Sign-in", "activate_plugins", "WordfenceTwoFactor", 'wordfence::menu_twoFactor');
add_submenu_page("Wordfence", "Country Blocking", "Country Blocking", "activate_plugins", "WordfenceCountryBlocking", 'wordfence::menu_countryBlocking');
add_submenu_page("Wordfence", "Scan Schedule", "Scan Schedule", "activate_plugins", "WordfenceScanSchedule", 'wordfence::menu_scanSchedule');
add_submenu_page("Wordfence", "Whois Lookup", "Whois Lookup", "activate_plugins", "WordfenceWhois", 'wordfence::menu_whois');
add_submenu_page("Wordfence", "Advanced Blocking", "Advanced Blocking", "activate_plugins", "WordfenceRangeBlocking", 'wordfence::menu_rangeBlocking');
add_submenu_page("Wordfence", "Options", "Options", "activate_plugins", "WordfenceSecOpt", 'wordfence::menu_options');
}
<?php
$stripe = wfHelperString::cycle('odd', 'even');
?>
<tr class="<?php
echo $stripe;
?>
" style="font-size: 100%; vertical-align: baseline; margin: 0; padding: 0; border: 0;">
<td style="font-size: 100%; vertical-align: baseline; font-weight: normal; text-align: left; border-collapse: collapse; margin: 0; padding: 6px 4px; border: 1px solid #cccccc;<?php
echo $bg_colors[$stripe];
?>
" align="left" valign="baseline">
<?php
if ($row->countryCode) {
?>
<img src="<?php
echo wfUtils::getBaseURL() . 'images/flags/' . strtolower($row->countryCode);
?>
.png" class="wfFlag" height="11" width="16" style="font-size: 100%; vertical-align: baseline; -ms-interpolation-mode: bicubic; outline: none; text-decoration: none; margin: 0; padding: 0; border: 0;">
<?php
echo esc_html($row->countryCode);
?>
<?php
} else {
?>
(Unknown)
<?php
}
?>
</td>
<td style="font-size: 100%; vertical-align: baseline; font-weight: normal; text-align: left; border-collapse: collapse; margin: 0; padding: 6px 4px; border: 1px solid #cccccc;<?php
<?php
if ($v['user']) {
?>
<tr><th>User:</th><td><a href="<?php
echo $v['user']['editLink'];
?>
" target="_blank"><?php
echo $v['user']['avatar'] . ' ' . $v['user']['display_name'];
?>
</a></td></tr>
<?php
}
if ($v['loc']) {
?>
<tr><th>Location:</th><td><img src="<?php
echo wfUtils::getBaseURL() . 'images/flags/' . strtolower($v['loc']['countryCode']);
?>
.png" width="16" height="11" alt="<?php
echo $v['loc']['countryName'];
?>
" title="<?php
echo $v['loc']['countryName'];
?>
" class="wfFlag" />
<?php
if ($v['loc']['city']) {
echo $v['loc']['city'] . ', ';
}
?>
<?php
echo $v['loc']['countryName'];
public static function admin_menus()
{
if (!wfUtils::isAdmin()) {
return;
}
$warningAdded = false;
if (get_option('wf_plugin_act_error', false)) {
if (wfUtils::isAdminPageMU()) {
add_action('network_admin_notices', 'wordfence::activation_warning');
} else {
add_action('admin_notices', 'wordfence::activation_warning');
}
$warningAdded = true;
}
if (!wfConfig::get('apiKey')) {
if (wfUtils::isAdminPageMU()) {
add_action('network_admin_notices', 'wordfence::noKeyError');
} else {
add_action('admin_notices', 'wordfence::noKeyError');
}
$warningAdded = true;
}
if (!$warningAdded) {
if (wfConfig::get('tourClosed') == '1' && !wfConfig::get('alertEmails')) {
if (wfUtils::isAdminPageMU()) {
add_action('network_admin_notices', 'wordfence::adminEmailWarning');
} else {
add_action('admin_notices', 'wordfence::adminEmailWarning');
}
}
}
/*
if(is_plugin_active('w3-total-cache/w3-total-cache.php') && wfConfig::get('liveTrafficEnabled')){
wfConfig::set('liveTrafficEnabled', 0);
if(wfUtils::isAdminPageMU()){
add_action('network_admin_notices', 'wordfence::liveTrafficW3TCWarning');
} else {
add_action('admin_notices', 'wordfence::liveTrafficW3TCWarning');
}
}
if(is_plugin_active('wp-super-cache/wp-cache.php') && wfConfig::get('liveTrafficEnabled')){
wfConfig::set('liveTrafficEnabled', 0);
if(wfUtils::isAdminPageMU()){
add_action('network_admin_notices', 'wordfence::liveTrafficSuperCacheWarning');
} else {
add_action('admin_notices', 'wordfence::liveTrafficSuperCacheWarning');
}
}
*/
add_submenu_page("Wordfence", "Scan", "Scan", "activate_plugins", "Wordfence", 'wordfence::menu_scan');
add_menu_page('Wordfence', 'Wordfence', 'activate_plugins', 'Wordfence', 'wordfence::menu_scan', wfUtils::getBaseURL() . 'images/wordfence-logo-16x16.png');
if (wfConfig::get('liveTrafficEnabled')) {
add_submenu_page("Wordfence", "Live Traffic", "Live Traffic", "activate_plugins", "WordfenceActivity", 'wordfence::menu_activity');
}
add_submenu_page('Wordfence', 'Blocked IPs', 'Blocked IPs', 'activate_plugins', 'WordfenceBlockedIPs', 'wordfence::menu_blockedIPs');
add_submenu_page("Wordfence", "Cellphone Sign-in", "Cellphone Sign-in", "activate_plugins", "WordfenceTwoFactor", 'wordfence::menu_twoFactor');
add_submenu_page("Wordfence", "Country Blocking", "Country Blocking", "activate_plugins", "WordfenceCountryBlocking", 'wordfence::menu_countryBlocking');
add_submenu_page("Wordfence", "Scan Schedule", "Scan Schedule", "activate_plugins", "WordfenceScanSchedule", 'wordfence::menu_scanSchedule');
add_submenu_page("Wordfence", "Whois Lookup", "Whois Lookup", "activate_plugins", "WordfenceWhois", 'wordfence::menu_whois');
add_submenu_page("Wordfence", "Advanced Blocking", "Advanced Blocking", "activate_plugins", "WordfenceRangeBlocking", 'wordfence::menu_rangeBlocking');
add_submenu_page("Wordfence", "Options", "Options", "activate_plugins", "WordfenceSecOpt", 'wordfence::menu_options');
}
<?php if(! wfUtils::isAdmin()){ exit(); } ?><!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" dir="ltr" lang="en-US">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8" />
<link rel='stylesheet' id='wordfence-main-style-css' href='<?php echo wfUtils::getBaseURL(); ?>/css/iptraf.css?ver=<?php echo WORDFENCE_VERSION; ?>' type='text/css' media='all' />
<body>
<h1>Wordfence: All recent hits for IP address <?php echo wp_kses($IP, array()); if($reverseLookup){ echo '[' . wp_kses($reverseLookup, array()) . ']'; } ?></h1>
<table border="0" cellpadding="2" cellspacing="0" style="width: 900px;">
<?php foreach($results as $key => $v){ ?>
<tr><th>Time:</th><td><?php echo $v['timeAgo'] ?> ago -- <?php echo date(DATE_RFC822, $v['ctime']); ?> -- <?php echo $v['ctime']; ?> in Unixtime</td></tr>
<?php if($v['timeSinceLastHit']){ echo '<th>Secs since last hit:</th><td>' . $v['timeSinceLastHit'] . '</td></tr>'; } ?>
<?php if(wfUtils::hasXSS($v['URL'])){ ?>
<tr><th>URL:</th><td><span style="color: #F00;">Possible XSS code filtered out for your security</span></td></tr>
<?php } else { ?>
<tr><th>URL:</th><td><a href="<?php echo wp_kses($v['URL'], array()); ?>" target="_blank"><?php echo $v['URL']; ?></a></td></tr>
<?php } ?>
<tr><th>Type:</th><td><?php if($v['type'] == 'hit'){ echo 'Normal request'; } else if($v['type'] == '404'){ echo '<span style="color: #F00;">Page not found</span>'; } ?></td></tr>
<?php if($v['referer']){ ?><tr><th>Referrer:</th><td><a href="<?php echo $v['referer']; ?>" target="_blank"><?php echo $v['referer']; ?></a></td></tr><?php } ?>
<tr><th>Full Browser ID:</th><td><?php echo wp_kses($v['UA'], array()); ?></td></tr>
<?php if($v['user']){ ?>
<tr><th>User:</th><td><a href="<?php echo $v['user']['editLink']; ?>" target="_blank"><?php echo $v['user']['avatar'] . ' ' . $v['user']['display_name']; ?></a></td></tr>
<?php } ?>
<?php if($v['loc']){ ?>
<tr><th>Location:</th><td><img src="http://www.wordfence.com/images/flags/<?php echo strtolower($v['loc']['countryCode']); ?>.png" width="16" height="11" alt="<?php echo $v['loc']['countryName']; ?>" title="<?php echo $v['loc']['countryName']; ?>" class="wfFlag" />
<?php if($v['loc']['city']){ echo $v['loc']['city'] . ', '; } ?>
<?php echo $v['loc']['countryName']; ?>
</td></tr>
<?php } ?>
<tr><td colspan="2"><hr></td></tr>
<?php } ?>
