: str_replace(): Passing null to parameter #2 ($replace) of type array|string is deprecated in
foreach ($patternBlocks as $b) {
if (!empty($b->ipRange) && preg_match('/^\d+\-\d+$/', $b->ipRange)) { //Old-style range block using long2ip
$ipRange = new wfUserIPRange($b->ipRange);
$ipRange = $ipRange->getIPString();
$parameters = $b->parameters;
$parameters['ipRange'] = $ipRange;
$wpdb->query($wpdb->prepare("UPDATE `{$blocksTable}` SET `parameters` = %s WHERE `id` = %d", json_encode($parameters), $b->id));
wfConfig::set('needsGeoIPSync', true, wfConfig::DONT_AUTOLOAD);
// Set the default scan options based on scan type.
if (!wfConfig::get('config720Migration', false)) {
// Replace critical/warning checkboxes with setting based on numeric severity value.
if (wfConfig::hasCachedOption('alertOn_critical') && wfConfig::hasCachedOption('alertOn_warnings')) {
$alertOnCritical = wfConfig::get('alertOn_critical');
$alertOnWarnings = wfConfig::get('alertOn_warnings');
wfConfig::set('alertOn_scanIssues', $alertOnCritical || $alertOnWarnings);
if ($alertOnCritical && ! $alertOnWarnings) {
wfConfig::set('alertOn_severityLevel', wfIssues::SEVERITY_HIGH);
wfConfig::set('alertOn_severityLevel', wfIssues::SEVERITY_LOW);
// Update severity for existing issues where they are still using the old severity values.
foreach (wfIssues::$issueSeverities as $issueType => $severity) {
$wpdb->query($wpdb->prepare("UPDATE $issuesTable SET severity = %d
", $severity, $issueType));
$syncedOptions = array();
switch (wfConfig::get('scanType')) {
case wfScanner::SCAN_TYPE_LIMITED:
$syncedOptions = wfScanner::limitedScanTypeOptions();
case wfScanner::SCAN_TYPE_STANDARD:
$syncedOptions = wfScanner::standardScanTypeOptions();
case wfScanner::SCAN_TYPE_HIGH_SENSITIVITY:
$syncedOptions = wfScanner::highSensitivityScanTypeOptions();
foreach ($syncedOptions as $key => $value) {
wfConfig::set($key, $value ? 1 : 0);
wfConfig::set('config720Migration', true);
if (wfConfig::get('waf_status') === false) {
$firewall = new wfFirewall();
$firewall->syncStatus(true);
//---- drop long deprecated tables
$tables = array('wfBadLeechers', 'wfBlockedCommentLog', 'wfBlocks', 'wfBlocksAdv', 'wfLeechers', 'wfLockedOut', 'wfNet404s', 'wfScanners', 'wfThrottleLog', 'wfVulnScanners');
foreach ($tables as $t) {
$knownFilesTable = wfDB::networkTable('wfKnownFileList');
$wordpressPathColumn = $wpdb->get_row($wpdb->prepare("SELECT * FROM information_schema.COLUMNS WHERE TABLE_SCHEMA = DATABASE() AND TABLE_NAME = %s AND COLUMN_NAME = 'wordpress_path'", $knownFilesTable));
if ($wordpressPathColumn === null) {
$wpdb->query("DELETE FROM `{$knownFilesTable}`");
$wpdb->query("ALTER TABLE `{$knownFilesTable}` ADD COLUMN wordpress_path TEXT NOT NULL");
$realPathColumn = $wpdb->get_row($wpdb->prepare("SELECT * FROM information_schema.COLUMNS WHERE TABLE_SCHEMA = DATABASE() AND TABLE_NAME = %s AND COLUMN_NAME = 'real_path'", $fileModsTable));
if ($realPathColumn === null) {
$wpdb->query("DELETE FROM `{$fileModsTable}`");
$wpdb->query("ALTER TABLE `{$fileModsTable}` ADD COLUMN real_path TEXT NOT NULL AFTER filename");
$wpdb->query("ALTER TABLE {$fileModsTable} ALTER COLUMN oldMD5 SET DEFAULT ''");
//---- enable legacy 2fa if applicable
if (wfConfig::get('isPaid') && (wfCredentialsController::hasOld2FARecords() || version_compare(phpversion(), '5.3', '<'))) {
wfConfig::set(wfCredentialsController::ALLOW_LEGACY_2FA_OPTION, true);
//Record the installation timestamp if activating the plugin for the first time
if (get_option('wordfenceActivated') != 1 && wfConfig::get('satisfactionPromptInstallDate') == 0 && empty(wfConfig::get('apiKey'))) {
wfConfig::set('satisfactionPromptInstallDate', time());
//Check the How does Wordfence get IPs setting
wfUtils::requestDetectProxyCallback();
//Install new schedule. If schedule config is blank it will install the default 'auto' schedule.
wfScanner::shared()->scheduleScans();
//Check our minimum versions and generate the necessary warnings
if (!wp_next_scheduled('wordfence_version_check')) {
wp_schedule_single_event(time(), 'wordfence_version_check');
private static function doEarlyAccessLogging(){
$request = $wfLog->getCurrentRequest();
$request->statusCode = 404;
$wfLog->logLeechAndBlock('404');
$wfLog->logLeechAndBlock('hit');
public static function initProtection(){ //Basic protection during WAF learning period
// Infinite WP Client - Authentication Bypass < 1.9.4.5
// https://wpvulndb.com/vulnerabilities/10011
$iwpRule = new wfWAFRule(wfWAF::getInstance(), 0x80000000, null, 'auth-bypass', 100, 'Infinite WP Client - Authentication Bypass < 1.9.4.5', 0, 'block', null);
wfWAF::getInstance()->setRules(wfWAF::getInstance()->getRules() + array(0x80000000 => $iwpRule));
if (strrpos(wfWAF::getInstance()->getRequest()->getRawBody(), '_IWP_JSON_PREFIX_') !== false) {
$iwpRequestDataArray = explode('_IWP_JSON_PREFIX_', wfWAF::getInstance()->getRequest()->getRawBody());
$iwpRequest = json_decode(trim(base64_decode($iwpRequestDataArray[1])), true);
if (is_array($iwpRequest)) {
if (array_key_exists('iwp_action', $iwpRequest) &&
($iwpRequest['iwp_action'] === 'add_site' || $iwpRequest['iwp_action'] === 'readd_site')
require_once ABSPATH . '/wp-admin/includes/plugin.php';
if (is_plugin_active('iwp-client/init.php')) {
$iwpPluginData = get_plugin_data(WP_PLUGIN_DIR . '/iwp-client/init.php');
if (version_compare('1.9.4.5', $iwpPluginData['Version'], '>')) {
remove_action('setup_theme', 'iwp_mmb_set_request');
if ((is_multisite() ? get_site_option('iwp_client_action_message_id') : get_option('iwp_client_action_message_id')) &&
(is_multisite() ? get_site_option('iwp_client_public_key') : get_option('iwp_client_public_key'))
wfWAF::getInstance()->getStorageEngine()->logAttack(array($iwpRule), 'request.rawBody',
wfWAF::getInstance()->getRequest()->getRawBody(),
wfWAF::getInstance()->getRequest(),
wfWAF::getInstance()->getRequest()->getMetadata()
public static function install_actions(){
register_activation_hook(WORDFENCE_FCPATH, 'wordfence::installPlugin');
register_deactivation_hook(WORDFENCE_FCPATH, 'wordfence::uninstallPlugin');
$versionInOptions = ((is_multisite() && function_exists('get_network_option')) ? get_network_option(null, 'wordfence_version', false) : get_option('wordfence_version', false));
if( (! $versionInOptions) || version_compare(WORDFENCE_VERSION, $versionInOptions, '>')){
//Either there is no version in options or the version in options is greater and we need to run the upgrade
self::getLog()->initLogRequest();
//Fix wp_mail bug when $_SERVER['SERVER_NAME'] is undefined
add_filter('wp_mail_from', 'wordfence::fixWPMailFromAddress');
//These access wfConfig::get('apiKey') and will fail if runInstall hasn't executed.
if(defined('MULTISITE') && MULTISITE === true){
if($blog_id == 1 && get_option('wordfenceActivated') != 1){ return; } //Because the plugin is active once installed, even before it's network activated, for site 1 (WordPress team, why?!)
//User may be logged in or not, so register both handlers
add_action('wp_ajax_nopriv_wordfence_lh', 'wordfence::ajax_lh_callback');
add_action('wp_ajax_nopriv_wordfence_doScan', 'wordfence::ajax_doScan_callback');
add_action('wp_ajax_nopriv_wordfence_testAjax', 'wordfence::ajax_testAjax_callback');
if(wfUtils::hasLoginCookie()){ //may be logged in. Fast way to check. These aren't secure functions, this is just a perf optimization, along with every other use of hasLoginCookie()
add_action('wp_ajax_wordfence_lh', 'wordfence::ajax_lh_callback');
add_action('wp_ajax_wordfence_doScan', 'wordfence::ajax_doScan_callback');
add_action('wp_ajax_wordfence_testAjax', 'wordfence::ajax_testAjax_callback');
add_action('wp_network_dashboard_setup', 'wordfence::addDashboardWidget');
add_action('wp_dashboard_setup', 'wordfence::addDashboardWidget');
add_action('wp_ajax_wordfence_wafStatus', 'wordfence::ajax_wafStatus_callback');
add_action('wp_ajax_nopriv_wordfence_wafStatus', 'wordfence::ajax_wafStatus_callback');
add_action('wp_ajax_nopriv_wordfence_remoteVerifySwitchTo2FANew', 'wordfence::ajax_remoteVerifySwitchTo2FANew_callback');
add_action('wordfence_start_scheduled_scan', 'wordfence::wordfenceStartScheduledScan');
add_action('wordfence_daily_cron', 'wordfence::dailyCron');
add_action('wordfence_daily_autoUpdate', 'wfConfig::autoUpdate');
add_action('wordfence_hourly_cron', 'wordfence::hourlyCron');
add_action('wordfence_version_check', array(wfVersionCheckController::shared(), 'checkVersionsAndWarn'));
add_action('plugins_loaded', 'wordfence::veryFirstAction');
add_action('init', 'wordfence::initAction');
//add_action('admin_bar_menu', 'wordfence::admin_bar_menu', 99);
add_action('template_redirect', 'wordfence::templateRedir', 1001);
add_action('shutdown', 'wordfence::shutdownAction');
if (!wfConfig::get('ajaxWatcherDisabled_front')) {
add_action('wp_enqueue_scripts', 'wordfence::enqueueAJAXWatcher');
if (!wfConfig::get('ajaxWatcherDisabled_admin')) {
add_action('admin_enqueue_scripts', 'wordfence::enqueueAJAXWatcher');
//add_action('wp_enqueue_scripts', 'wordfence::enqueueDashboard');
add_action('admin_enqueue_scripts', 'wordfence::enqueueDashboard');
add_action('wp_authenticate','wordfence::authAction', 1, 2);
add_action('wp_authenticate_user', 'wordfence::authUserAction', 1, 2); //A secondary lockout check for plugins that override the login flow and don't call the complete set of hooks
add_filter('authenticate', 'wordfence::authenticateFilter', 99, 3);
$lockout = wfBlock::lockoutForIP(wfUtils::getIP());
if ($lockout !== false) {
add_filter('xmlrpc_enabled', '__return_false');
add_action('login_init','wordfence::loginInitAction');
add_action('wp_login','wordfence::loginAction');
add_action('wp_logout','wordfence::logoutAction');
add_action('lostpassword_post', 'wordfence::lostPasswordPost', 1, 2);
$allowSeparatePrompt = ini_get('output_buffering') > 0;
if (wfConfig::get('loginSec_enableSeparateTwoFactor') && $allowSeparatePrompt) {
add_action('login_form', 'wordfence::showTwoFactorField');
if(wfUtils::hasLoginCookie()){
add_action('user_profile_update_errors', 'wordfence::validateProfileUpdate', 0, 3 );
add_action('profile_update', 'wordfence::profileUpdateAction', 99, 2);
add_action('validate_password_reset', 'wordfence::validatePassword', 10, 2);
// Add actions for the email summary
add_action('wordfence_email_activity_report', array('wfActivityReport', 'executeCronJob'));
//add_filter( 'cron_schedules', 'wordfence::cronAddSchedules' );
add_filter('wp_redirect', 'wordfence::wpRedirectFilter', 99, 2);
add_filter('wp_redirect_status', 'wordfence::wpRedirectStatusFilter', 99, 2);
//html|xhtml|atom|rss2|rdf|comment|export
if(wfConfig::get('other_hideWPVersion')){
add_filter('style_loader_src', 'wordfence::replaceVersion');
add_filter('script_loader_src', 'wordfence::replaceVersion');
add_action('upgrader_process_complete', 'wordfence::hideReadme');
add_filter('get_the_generator_html', 'wordfence::genFilter', 99, 2);
add_filter('get_the_generator_xhtml', 'wordfence::genFilter', 99, 2);
add_filter('get_the_generator_atom', 'wordfence::genFilter', 99, 2);
add_filter('get_the_generator_rss2', 'wordfence::genFilter', 99, 2);
add_filter('get_the_generator_rdf', 'wordfence::genFilter', 99, 2);
add_filter('get_the_generator_comment', 'wordfence::genFilter', 99, 2);
add_filter('get_the_generator_export', 'wordfence::genFilter', 99, 2);
add_filter('registration_errors', 'wordfence::registrationFilter', 99, 3);
add_filter('woocommerce_new_customer_data', 'wordfence::wooRegistrationFilter', 99, 1);
if (wfConfig::get('loginSec_disableAuthorScan')) {
add_filter('oembed_response_data', 'wordfence::oembedAuthorFilter', 99, 4);
add_filter('rest_request_before_callbacks', 'wordfence::jsonAPIAuthorFilter', 99, 3);
add_filter('rest_post_dispatch', 'wordfence::jsonAPIAdjustHeaders', 99, 3);
add_filter('wp_sitemaps_users_pre_url_list', '__return_false', 99, 0);
add_filter('wp_sitemaps_add_provider', 'wordfence::wpSitemapUserProviderFilter', 99, 2);
if (wfConfig::get('loginSec_disableApplicationPasswords')) {
add_filter('wp_is_application_passwords_available', '__return_false');
add_action('edit_user_profile', 'wordfence::showDisabledApplicationPasswordsMessage', -1);
add_action('show_user_profile', 'wordfence::showDisabledApplicationPasswordsMessage', -1);
// Override the wp_die handler to let the user know app passwords were disabled by the Wordfence option.
if (!empty($_SERVER['SCRIPT_FILENAME']) && $_SERVER['SCRIPT_FILENAME'] === ABSPATH . 'wp-admin/authorize-application.php') {
add_filter('wp_die_handler', function ($handler = null) {
return function ($message, $title, $args) {
if ($message === 'Application passwords are not available.') {
$message = __('Application passwords have been disabled by Wordfence.', 'wordfence');
_default_wp_die_handler($message, $title, $args);
add_filter('rest_dispatch_request', 'wordfence::_filterCentralFromLiveTraffic', 99, 4);
// Change GoDaddy's limit login mu-plugin since it can interfere with the two factor auth message.
if (self::hasGDLimitLoginsMUPlugin()) {
add_action('login_errors', array('wordfence', 'fixGDLimitLoginsErrors'), 11);
add_action('upgrader_process_complete', 'wfUpdateCheck::syncAllVersionInfo');
add_action('upgrader_process_complete', 'wordfence::_scheduleRefreshUpdateNotification', 99, 2);
add_action('automatic_updates_complete', 'wordfence::_scheduleRefreshUpdateNotification', 99, 0);
add_action('wordfence_refreshUpdateNotification', 'wordfence::_refreshUpdateNotification', 99, 0);
add_action('wordfence_completeCoreUpdateNotification', 'wordfence::_completeCoreUpdateNotification', 99, 0);
add_action('wfls_xml_rpc_blocked', 'wordfence::checkSecurityNetwork');
add_action('wfls_registration_blocked', 'wordfence::checkSecurityNetwork');
add_action('wfls_activation_page_footer', 'wordfence::_outputLoginSecurityTour');
add_action('wfls_settings_set', 'wordfence::queueCentralConfigurationSync', 10, 2);
add_action('admin_init', 'wordfence::admin_init');
add_action('admin_head', 'wordfence::_retargetWordfenceSubmenuCallout');
if(wfUtils::isAdminPageMU()){
add_action('network_admin_menu', 'wordfence::admin_menus', 10);
add_action('network_admin_menu', 'wordfence::admin_menus_20', 20);
add_action('network_admin_menu', 'wordfence::admin_menus_30', 30);
add_action('network_admin_menu', 'wordfence::admin_menus_40', 40);
add_action('network_admin_menu', 'wordfence::admin_menus_50', 50);
add_action('network_admin_menu', 'wordfence::admin_menus_60', 60);
add_action('network_admin_menu', 'wordfence::admin_menus_70', 70);
add_action('network_admin_menu', 'wordfence::admin_menus_80', 80);
add_action('network_admin_menu', 'wordfence::admin_menus_85', 85);
add_action('network_admin_menu', 'wordfence::admin_menus_90', 90);
add_action('admin_menu', 'wordfence::admin_menus', 10);
add_action('admin_menu', 'wordfence::admin_menus_20', 20);
add_action('admin_menu', 'wordfence::admin_menus_30', 30);
add_action('admin_menu', 'wordfence::admin_menus_40', 40);
add_action('admin_menu', 'wordfence::admin_menus_50', 50);
add_action('admin_menu', 'wordfence::admin_menus_60', 60);
add_action('admin_menu', 'wordfence::admin_menus_70', 70);
add_action('admin_menu', 'wordfence::admin_menus_80', 80);
add_action('admin_menu', 'wordfence::admin_menus_85', 85);
add_action('admin_menu', 'wordfence::admin_menus_90', 90);
add_filter('plugin_action_links_' . plugin_basename(realpath(dirname(__FILE__) . '/../wordfence.php')), 'wordfence::_pluginPageActionLinks');
add_filter('pre_current_active_plugins', 'wordfence::registerDeactivationPrompt');
add_action('request', 'wordfence::preventAuthorNScans');
add_action('password_reset', 'wordfence::actionPasswordReset');
$adminUsers = new wfAdminUserMonitor();
if ($adminUsers->isEnabled()) {
add_action('set_user_role', array($adminUsers, 'updateToUserRole'), 10, 3);
add_action('grant_super_admin', array($adminUsers, 'grantSuperAdmin'), 10, 1);
add_action('revoke_super_admin', array($adminUsers, 'revokeSuperAdmin'), 10, 1);
} else if (wfConfig::get_ser('adminUserList', false)) {
// reset this in the event it's disabled or the network is too large
wfConfig::set_ser('adminUserList', false);
if (wfConfig::liveTrafficEnabled()) {
add_action('wp_head', 'wordfence::wfLogHumanHeader');
add_action('login_head', 'wordfence::wfLogHumanHeader');
add_action('wordfence_processAttackData', 'wordfence::processAttackData');
if (!empty($_GET['wordfence_syncAttackData']) && get_site_option('wordfence_syncingAttackData') <= time() - 60 && get_site_option('wordfence_lastSyncAttackData', 0) < time() - 8) {
@ignore_user_abort(true);
update_site_option('wordfence_syncingAttackData', time());
header('Content-Type: text/javascript');
define('WORDFENCE_SYNCING_ATTACK_DATA', true);
add_action('init', 'wordfence::syncAttackData', 10, 0);
add_filter('woocommerce_unforce_ssl_checkout', '__return_false');
add_action('wordfence_batchReportBlockedAttempts', 'wordfence::wfsnBatchReportBlockedAttempts');
add_action('wordfence_batchReportFailedAttempts', 'wordfence::wfsnBatchReportFailedAttempts');
add_action('wordfence_batchSendSecurityEvents', 'wfCentral::sendPendingSecurityEvents');
if (wfConfig::get('other_hideWPVersion')) {
add_filter('update_feedback', 'wordfence::restoreReadmeForUpgrade');
add_action('rest_api_init', 'wordfence::initRestAPI');
if (wfCentral::isConnected()) {
add_action('wordfence_security_event', 'wfCentral::sendSecurityEvent', 10, 3);
add_action('wordfence_security_event', 'wfCentral::sendAlertCallback', 10, 3);
if (!wfConfig::get('wordfenceI18n', true)) {
add_filter('gettext', function ($translation, $text, $domain) {
if ($domain === 'wordfence') {
wfScanMonitor::registerActions();
wfUpdateCheck::installPluginAPIFixer();
public static function registerDeactivationPrompt() {
$deleteMain = (bool) wfConfig::get('deleteTablesOnDeact');
$deleteLoginSecurity = (bool) \WordfenceLS\Controller_Settings::shared()->get('delete-deactivation');
'offboarding/deactivation-prompt',
'deactivationOption' => wfDeactivationOption::forState($deleteMain, $deleteLoginSecurity),
'wafOptimized' => defined('WFWAF_AUTO_PREPEND') && WFWAF_AUTO_PREPEND && (!defined('WFWAF_SUBDIRECTORY_INSTALL') || !WFWAF_SUBDIRECTORY_INSTALL),
'deactivate' => array_key_exists('wf_deactivate', $_GET)
public static function showDisabledApplicationPasswordsMessage() {
echo wfView::create('user/disabled-application-passwords', array('isAdmin' => self::isCurrentUserAdmin()))->render();
public static function _pluginPageActionLinks($links) {
if (!wfConfig::get('isPaid')) {
$links = array_merge(array('aWordfencePluginCallout' => '<a href="https://www.wordfence.com/zz12/wordfence-signup/" target="_blank" rel="noopener noreferrer"><strong style="color: #11967A; display: inline;">' . esc_html__('Upgrade To Premium', 'wordfence') . '</strong><span class="screen-reader-text"> (' . esc_html__('opens in new tab', 'wordfence') . ')</span></a>'), $links);
public static function _outputLoginSecurityTour() {
if (WORDFENCE_LS_FROM_CORE) {
echo wfView::create('tours/login-security', array())->render();
public static function fixWPMailFromAddress($from_email) {
if ($from_email == 'wordpress@') { //$_SERVER['SERVER_NAME'] is undefined so we get an incomplete email address
wordfence::status(4, 'info', __("wp_mail from address is incomplete, attempting to fix", 'wordfence'));
$urls = array(get_site_url(), get_home_url());
$u = preg_replace('#^[^/]*//+([^/]+).*$#', '\1', $u);
if (substr($u, 0, 4) == 'www.') {
wordfence::status(4, 'info', sprintf(/* translators: Email address. */ __("Fixing wp_mail from address: %s", 'wordfence'), $from_email . $u));
//Can't fix it, return it as it was
public static function wpRedirectFilter($location, $status) {
self::getLog()->initLogRequest();
self::getLog()->getCurrentRequest()->statusCode = $status;
public static function wpRedirectStatusFilter($status, $location) {
self::getLog()->initLogRequest();
self::getLog()->getCurrentRequest()->statusCode = $status;
self::getLog()->logHit();
public static function enqueueAJAXWatcher() {
$wafDisabled = !WFWAF_ENABLED || (class_exists('wfWAFConfig') && wfWAFConfig::isDisabled());
if (wfUtils::isAdmin() && !$wafDisabled) {
wp_enqueue_style('wordfenceAJAXcss', wfUtils::getBaseURL() . wfUtils::versionedAsset('css/wordfenceBox.css'), '', WORDFENCE_VERSION);
wp_enqueue_script('wfi18njs', wfUtils::getBaseURL() . wfUtils::versionedAsset('js/wfi18n.js'), array(), WORDFENCE_VERSION);
wp_enqueue_script('wordfenceAJAXjs', wfUtils::getBaseURL() . wfUtils::versionedAsset('js/admin.ajaxWatcher.js'), array('jquery'), WORDFENCE_VERSION);
wp_localize_script('wordfenceAJAXjs', 'WFAJAXWatcherVars', array(
'nonce' => wp_create_nonce('wf-waf-error-page'),
self::setupI18nJSStrings();
private static function isWordfencePage($includeWfls = true) {
return (isset($_GET['page']) && (preg_match('/^Wordfence/', @$_GET['page']) || ($includeWfls && $_GET['page'] == 'WFLS' && wfOnboardingController::shouldShowNewTour(wfOnboardingController::TOUR_LOGIN_SECURITY))));
private static function isWordfenceSubpage($page, $subpage) {
return array_key_exists('page', $_GET) && $_GET['page'] == ('Wordfence' . ucfirst($page)) && array_key_exists('subpage', $_GET) && $_GET['subpage'] == $subpage;
public static function enqueueDashboard() {
if (wfUtils::isAdmin()) {
wp_enqueue_style('wf-adminbar', wfUtils::getBaseURL() . wfUtils::versionedAsset('css/wf-adminbar.css'), '', WORDFENCE_VERSION);
wp_enqueue_style('wordfence-license-global-style', wfLicense::current()->getGlobalStylesheet(), '', WORDFENCE_VERSION);
wp_enqueue_script('wordfenceDashboardjs', wfUtils::getBaseURL() . wfUtils::versionedAsset('js/wfdashboard.js'), array('jquery'), WORDFENCE_VERSION);
if (wfConfig::get('showAdminBarMenu')) {
wp_enqueue_script('wordfencePopoverjs', wfUtils::getBaseURL() . wfUtils::versionedAsset('js/wfpopover.js'), array('jquery'), WORDFENCE_VERSION);
wp_localize_script('wordfenceDashboardjs', 'WFDashVars', array(
'ajaxURL' => admin_url('admin-ajax.php'),
It is recommended that you Edit text format, this type of Fix handles quite a lot in one request
