內容簡介
Injection Guard 是一款專為 WordPress 設計的外掛,旨在阻擋惡意查詢字串攻擊和可疑的 URL 參數。它記錄所有進入的攻擊嘗試,阻擋有害參數,並增強 WordPress 控制台的安全性。
【主要功能】
• 記錄所有獨特的查詢字串嘗試
• 阻擋惡意或未知的查詢參數
• 追蹤每位使用者的登入、登出及會話持續時間
• 提供所有 WordPress 使用者的能力審核報告
• 支援多語言(法文、德文、西班牙文)
外掛標籤
開發者團隊
原文外掛簡介
Author: Fahad Mahmood
Project URI: https://www.androidbubbles.com/extends/wordpress/plugins/injection-guard
License: GPL v3
Injection Guard is a WordPress plugin designed to block malicious query string attacks and suspicious URL parameters. It logs all incoming attempts, blocks harmful parameters, and adds extra security intelligence to your WordPress admin—like user session tracking and capability audit.
The plugin uses the ig_ prefix for database keys and functions, follows WordPress coding standards, and supports multiple languages. It’s compatible with pretty permalinks and helps in securing your site from automated bots and manual attacks.
Method A (Admin Panel)
Login to WordPress Admin > Plugins > Add New > Upload Plugin
Upload the ZIP file and activate the plugin
Go to Settings > IG Settings and click “Save Settings”
Method B (Manual Upload)
Download and unzip the plugin package
Upload the folder to /wp-content/plugins/injection-guard/
Activate the plugin from the WordPress Dashboard
Visit Settings > IG Settings to configure
Features
Logs all unique query strings attempting to penetrate your website
Blocks malicious or unknown query parameters
Tracks login, logout, session start and duration per user
Capability audit report for all WordPress users
Multi-language support (FR, DE, ES)
Bootstrap-based admin UI and dashboard
License
This plugin is free software licensed under the GNU GPL v2 or later.
You should have received a copy of the GNU General Public License along with this plugin. If not, see http://www.gnu.org/licenses/gpl-2.0.html.
