Title: Vanguard Admin Protection & Notifications Author: Luis Published: 2026 年 5 月 4 日 Last modified: 2026 年 5 月 29 日 --- 搜索插件 ![](https://ps.w.org/vanguard-admin-protection/assets/banner-772x250.png?rev=3522782) ![](https://ps.w.org/vanguard-admin-protection/assets/icon-256x256.png?rev=3522782) # Vanguard Admin Protection & Notifications 作者:[Luis](https://profiles.wordpress.org/luisescoffie/) [下载](https://downloads.wordpress.org/plugin/vanguard-admin-protection.4.0.7.zip) * [详情](https://cn.wordpress.org/plugins/vanguard-admin-protection/#description) * [评价](https://cn.wordpress.org/plugins/vanguard-admin-protection/#reviews) * [安装](https://cn.wordpress.org/plugins/vanguard-admin-protection/#installation) * [开发进展](https://cn.wordpress.org/plugins/vanguard-admin-protection/#developers) [支持](https://wordpress.org/support/plugin/vanguard-admin-protection/) ## 描述 Vanguard Admin Protection & Notifications is a vital and strict security plugin for WordPress that shields your site against vulnerabilities, malicious plugins, and direct database access attempts to escalate privileges or create unauthorized administrator users. **MAIN FEATURES:** * **RESTRICTED ADMINISTRATORS:** Delegate administrator access safely! Allow your team to manage plugins, themes, and content, while strictly blocking their ability to create or promote new administrators. * 6 Real-time protection levels against privilege escalation. * Strict WP-CLI blocking for user creation and updates. * **Configurable Scan Frequency:** Adjust the database integrity scan interval to 30 minutes, 1, 3, 6, 12, or 24 hours. * **External Cron Support:** Fully supports ultra-efficient database integrity scanning triggered by your server’s Cron via a secure, token-protected REST API endpoint. * **Visual Scan Tracking:** Real-time visibility of the last exact time the cron executed in your dashboard.* Monitoring and automatic degradation of unauthorized administrators. * Detailed audit log table with 90-day automatic retention and CSV export. * Periodic integrity verification of wp-config.php. * Prevention of unauthorized plugin deactivation and deletion. ### Disclaimer WordPress® is a registered trademark of the WordPress Foundation. This plugin, “ Vanguard Admin Protection & Notifications”, is an independent software developed by @luisescoffie and is not affiliated with, sponsored by, endorsed by, or associated with the WordPress Foundation, Automattic Inc., or any of their products or services. The use of the “WordPress” name is for descriptive and compatibility purposes only. ## 屏幕截图 [⌊On the Dashboard you will find the Overview of the WordPress Installation like: Last System Scan, Total Events, Unauthorized Attemps, Blocked Promotions, Ghost Admins Removed and Rejected Promotions.⌉⌊On the Dashboard you will find the Overview of the WordPress Installation like: Last System Scan, Total Events, Unauthorized Attemps, Blocked Promotions, Ghost Admins Removed and Rejected Promotions.⌉[ On the Dashboard you will find the Overview of the WordPress Installation like: Last System Scan, Total Events, Unauthorized Attemps, Blocked Promotions, Ghost Admins Removed and Rejected Promotions. [⌊On the Settings tab you will Manage the Administrators and Give them an Access level, settings on the Scan Frequency and the settings for the external CRON that you can setup on a cronjob for custom scanning intervals.⌉⌊On the Settings tab you will Manage the Administrators and Give them an Access level, settings on the Scan Frequency and the settings for the external CRON that you can setup on a cronjob for custom scanning intervals.⌉[ On the Settings tab you will Manage the Administrators and Give them an Access level, settings on the Scan Frequency and the settings for the external CRON that you can setup on a cronjob for custom scanning intervals. [⌊On the Athorize Admin tab you will see new admins waiting on approval.⌉⌊On the Athorize Admin tab you will see new admins waiting on approval.⌉[ On the Athorize Admin tab you will see new admins waiting on approval. ## 安装 1. Download the `vanguard-admin-protection` folder. 2. Upload it to the `/wp-content/plugins/` directory. 3. Activate the plugin. 4. Go to Vanguard Admin Protection in the sidebar menu to manage settings. ## 常见问题 ### How does the Restricted Administrators feature work? Introduced in v4.0.0, this feature allows you to keep members of your team as Administrators so they can manage content and plugins, but completely blocks their ability to assign the Administrator role to others or edit existing Full Administrators. ### What will this plugin solve? This plugin solves the critical vulnerability of unauthorized administrator account creation. It protects against privilege escalation, even via WP-CLI or direct database access. ## 评价 此插件暂无评价。 ## 贡献者及开发者 「Vanguard Admin Protection & Notifications」是开源软件。 以下人员对此插件做出了 贡献。 贡献者 * [ Luis ](https://profiles.wordpress.org/luisescoffie/) 「Vanguard Admin Protection & Notifications」插件已被翻译至 1 种本地化语言。 感谢 [所有译者](https://translate.wordpress.org/projects/wp-plugins/vanguard-admin-protection/contributors) 为本插件所做的贡献。 [帮助将「Vanguard Admin Protection & Notifications」翻译成简体中文。](https://translate.wordpress.org/projects/wp-plugins/vanguard-admin-protection) ### 对开发感兴趣吗? 您可以[浏览代码](https://plugins.trac.wordpress.org/browser/vanguard-admin-protection/), 查看[SVN仓库](https://plugins.svn.wordpress.org/vanguard-admin-protection/),或通过 [RSS](https://plugins.trac.wordpress.org/log/vanguard-admin-protection/?limit=100&mode=stop_on_copy&format=rss) 订阅[开发日志](https://plugins.trac.wordpress.org/log/vanguard-admin-protection/)。 ## 更新日志 #### 4.0.7 * **COMPATIBILITY:** Verified and tested up to WordPress 7.0. #### 4.0.6 * **SECURITY ENHANCEMENT:** Upgraded database integrity verification to query wp_usermeta directly, successfully detecting ghost administrators injected natively via direct database connections, bypassing aggressive object caches. * **VERSIONING:** Core bump to 4.0.6. #### 4.0.5 * **BUG FIX:** Fixed a deadlock issue where clearing the object cache upon deactivation wiped the temporary uninstall unlock transient, preventing UI deletion. Migrated to persistent options. * **VERSIONING:** Core bump to 4.0.5. #### 4.0.4 * **FEATURE:** Added core hooks (`do_action`) to `audit.php` to permit extensibility and integrations with the new Pro Add-On (Slack, Telegram, etc). * **VERSIONING:** Core bump to 4.0.4. #### 4.0.3 * **VULNERABILITY PATCH (Privilege Bypass):** Prevented Restricted Administrators from arbitrarily accessing the Audit Log tools via direct URLs which allowed them to read and wipe audit traces. * **VULNERABILITY PATCH (Programmatic Bypass):** Replaced UI-only deactivation hooks (`plugin_action_links`) with strict internal programmatic hooks (`deactivate_plugin` and `delete_plugin`) preventing rogue administrators from intentionally deactivating the plugin using forced/fabricated direct wp-admin URL actions. * **SECURITY ENHANCEMENT:** Patched CSV Injection Vulnerabilities during log exports. Escapes characters preventing arbitrary formula executions in Excel/Sheets. * **VERSIONING:** Core bump to 4.0.3. #### 4.0.2 * **SECURITY:** Fixed non-sanitized input array warnings reported by WordPress Plugin Check. * **COMPLIANCE:** Limited plugin tags to 5 to comply with WordPress.org repository guidelines. * **VERSIONING:** Synchronized all project files to version 4.0.2. #### 4.0.1 * **FIX:** Corrected syntax errors in vanguard-admin-protection.php and other includes. * **TRADEMARK COMPLIANCE:** Added legal disclaimer regarding WordPress® trademark in footer and documentation. * **VERSIONING:** Synchronized all project files to version 4.0.1. #### 4.0.0 (MAJOR RELEASE) * **FEATURE (Restricted Admins):** Support for two tiers of administrators. “Authorized”( Full) and “Restricted” (Maintenance). * **UI UPGRADE:** New dropdown interface for role management. ## 额外信息 * 版本 **4.0.7** * 最后更新:**2 周前** * 活跃安装数量 **不到10** * WordPress 版本 ** 7.0 或更高版本 ** * 已测试的最高版本为 **7.0** * PHP 版本 ** 7.4 或更高版本 ** * 语言 * [English (US)](https://wordpress.org/plugins/vanguard-admin-protection/) 和 [Spanish (Mexico)](https://es-mx.wordpress.org/plugins/vanguard-admin-protection/). * [翻译成简体中文](https://translate.wordpress.org/projects/wp-plugins/vanguard-admin-protection) * 标签 * [admin](https://cn.wordpress.org/plugins/tags/admin/)[audit](https://cn.wordpress.org/plugins/tags/audit/) [Notifications](https://cn.wordpress.org/plugins/tags/notifications/)[protection](https://cn.wordpress.org/plugins/tags/protection/) [security](https://cn.wordpress.org/plugins/tags/security/) * [高级视图](https://cn.wordpress.org/plugins/vanguard-admin-protection/advanced/) ## 评级 尚未提交反馈。 [Your review](https://wordpress.org/support/plugin/vanguard-admin-protection/reviews/#new-post) [查看全部评论](https://wordpress.org/support/plugin/vanguard-admin-protection/reviews/) ## 贡献者 * [ Luis ](https://profiles.wordpress.org/luisescoffie/) ## 支持 有话要说吗?是否需要帮助? [查看支持论坛](https://wordpress.org/support/plugin/vanguard-admin-protection/) ## 捐助 您愿意支持这个插件的发展吗? [ 捐助此插件 ](https://paypal.me/luisescoffie?locale.x=es_XC&country.x=MX)