Liveupx Security

Comprehensive WordPress security plugin with login protection, firewall, brute force prevention, IP blocking, and activity logging.

Author:	Liveupx (profile at wordpress.org)
WordPress version required:	5.0
WordPress version tested:	6.9
Plugin version:	1.5.2
Added to WordPress repository:	09-01-2026
Last updated:	09-01-2026
Rating, %:	0
Rated by:	0
Plugin URI:	https://liveupx.com/liveupx-security
Total downloads:	103
Click to start download

Liveupx Security is a lightweight yet powerful WordPress security plugin that protects your website from hackers, brute force attacks, and malicious activity. Developed by Liveupx.com.

Features

Login Security

Brute force protection with automatic IP lockout
Configurable failed login attempts and lockout duration
Honeypot field to catch automated bots
Simple math CAPTCHA for human verification
Hide specific login error messages

Firewall Protection

Block malicious query strings (SQL injection, XSS)
Block known vulnerability scanners and bad bots
Disable XML-RPC to prevent DDoS attacks
Disable pingbacks
Remove WordPress version from source code

User Security

User enumeration protection
REST API user endpoint protection
Strong password enforcement
Block common admin usernames
Disable theme/plugin file editor

IP Management

Manual IP blocking with reason
IP whitelisting for trusted addresses
Automatic blocking after security violations

Activity Monitoring

Comprehensive security event logging
Track login attempts and user activity
Automatic cleanup of old log entries

Server Protection (Apache)

.htaccess security rules
Protect wp-config.php
Disable directory browsing
Block common exploits

Why Choose Liveupx Security?

Lightweight – Minimal impact on site performance
No External Services – All protection happens on your server
Easy to Use – Simple settings with sensible defaults
Open Source – 100% free with no premium upsells
Privacy Focused – No data sent to third parties

Data Storage

This plugin stores security-related data in your WordPress database including:

Failed login attempts (IP address, username, timestamp)
Login lockouts (IP address, duration, reason)
Blocked and whitelisted IP addresses
Security activity log (events, user info, IP addresses)

All data is stored locally on your server and is never transmitted to external services.

Documentation

For documentation and support, visit liveupx.com/docs.

Contributing

Liveupx Security is open source. Contribute on GitHub.

Privacy Policy

Liveupx Security stores the following data locally in your WordPress database:

Login Attempts: IP addresses, usernames, and timestamps of failed login attempts
Lockouts: IP addresses and lockout details for brute force protection
Activity Log: Security events including user actions, IP addresses, and timestamps
IP Lists: Manually blocked and whitelisted IP addresses

This data is used solely for security purposes and is never shared with third parties. Data is automatically cleaned up based on configurable retention periods (default: 7 days for failed logins, 30 days for activity logs).

You can clear all stored data at any time from the plugin settings. When the plugin is uninstalled, all data is permanently deleted from your database.