{"id":5574,"date":"2019-09-24T12:43:38","date_gmt":"2019-09-24T19:43:38","guid":{"rendered":"https:\/\/www.ait-pro.com\/aitpro-blog\/?p=5574"},"modified":"2019-09-24T12:46:16","modified_gmt":"2019-09-24T19:46:16","slug":"whats-new-in-bulletproof-security-pro-14-2","status":"publish","type":"post","link":"https:\/\/www.ait-pro.com\/aitpro-blog\/5574\/bulletproof-security-pro\/whats-new-in-bulletproof-security-pro-14-2\/","title":{"rendered":"Whats New In BulletProof Security Pro 14.2"},"content":{"rendered":"\n\n\n

\n\u2022 Major Redesign|ModSecurity CRS Proofing Continued:<\/strong><\/span> JTC Anti-Spam|Anti-Hacker and Idle Session Logout Encrypt and Decrypt buttons created. ModSecurity CRS falsely sees legitimate CSS code Form data as a threat. JavaScript Encryption|Decryption and PHP openssl_encrypt|openssl_decrypt used to encrypt and decrypt CSS code submitted in the JTC and ISL Forms. Form data is encrypted in POST Form submission to evade\/bypass ModSecurity CRS detection and decrypted in the Form processing code.\u00a0 A full detailed list of broken\/fixed\/pending Forms\/Features\/Pages can be found here: ModSecurity CRS Proofing<\/a><\/strong><\/strong><\/p>\n

\u2022 Procedural Change|BugFix:<\/strong><\/span>\u00a0ARQ Automation: Theme Details: JavaScript\/AJAX reload code removed. Original issue: In older versions of WP the CSS properties in the Theme Overlay were not accessible unless a page reload was performed.
\n<\/span><\/p>\n

\u2022 BugFix:<\/strong><\/span>\u00a0DB Backup: % characters were intentionally being replaced with placeholder strings by WP when using esc_sql(). Added the WP remove_placeholder_escape() function to correct this issue.<\/span><\/p>\n

\u2022 BugFix:<\/strong><\/span>\u00a0DB Backup: Condition added to quote PayPal numeric transaction codes. Note: Most PayPal transaction codes are alphanumeric.<\/p>\n

\u2022 BugFix:<\/strong><\/span>\u00a0Hidden Plugin Folders|Files Cron (HPF): File contents displaying outside of pre tags. Added CSS overflow and white-space properties to pre tag style.<\/p>\n

\u2022 Procedural Change:<\/strong><\/span>\u00a0PHP7.2|7.3 PHP Warning: Use of undefined constant assumed this will throw an Error in a future version of PHP): Newer versions of PHP check for any unquoted strings and will log php warning errors. All unquoted strings have now been quoted in BPS.<\/p>\n

\u2022 Procedural Change:<\/strong><\/span>\u00a0Plugin Firewall: New hack\/attack method\/vector found. Additional file extension name added to the Plugin Firewall base protection code.<\/p>\n

\u2022 BugFix:<\/strong><\/span>\u00a0Plugin Firewall: BPS Pro Status Display not displaying the correct Plugin Firewall status for the scenario where the Plugin Firewall is deactivated directly from Test Mode.<\/p>\n

\u2022 HUD wp-content htaccess File Check:<\/strong><\/span>\u00a0Updated the HUD wp-content htaccess file detection message to include new additional updated help information.<\/p>\n

\u2022 BugFix:<\/strong><\/span>\u00a0BPS Pro Upgrade Email: Email text displaying in bold font for Alternative Zip Upgrade Installation Method. Added missing closing tag.<\/p>\n

\u2022 CSS Fix:<\/strong><\/span>\u00a0P-Security Page Title: inline CSS code added to correct Title Text margin distance.<\/p>\n

\u2022 Improvement:<\/strong><\/span>\u00a0All Purpose File Editor: Additional help information added to the All Purpose File Editor error check.<\/p>\n

\u2022 Procedural Change:<\/strong><\/span>\u00a0ini_set Options: ini_set options code preg_replace pattern match changed for the wp-config.php file.<\/p>\n

\u2022 Procedural Change:<\/strong><\/span>\u00a0PHP Error Log: Additional error check added to the Set Error Log Location option.<\/p>\n

\u2022 Procedural Change:<\/strong><\/span>\u00a0Root htaccess File: Error check for BPS version line of code in the Root htaccess file changed to a Dismiss Notice.<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n","protected":false},"excerpt":{"rendered":"

\u2022 Major Redesign|ModSecurity CRS Proofing Continued: JTC Anti-Spam|Anti-Hacker and Idle Session Logout Encrypt and Decrypt buttons created. ModSecurity CRS falsely sees legitimate CSS code Form data as a threat. JavaScript Encryption|Decryption and PHP openssl_encrypt|openssl_decrypt used to encrypt and decrypt CSS code submitted in the JTC and ISL Forms. Form data is encrypted in POST Form […]<\/p>\n","protected":false},"author":167,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":"","_links_to":"","_links_to_target":""},"categories":[393],"tags":[672,673],"class_list":["post-5574","post","type-post","status-publish","format-standard","hentry","category-bulletproof-security-pro","tag-bps-pro-14-2","tag-bulletproof-security-pro-14-2"],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/www.ait-pro.com\/aitpro-blog\/wp-json\/wp\/v2\/posts\/5574","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.ait-pro.com\/aitpro-blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.ait-pro.com\/aitpro-blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.ait-pro.com\/aitpro-blog\/wp-json\/wp\/v2\/users\/167"}],"replies":[{"embeddable":true,"href":"https:\/\/www.ait-pro.com\/aitpro-blog\/wp-json\/wp\/v2\/comments?post=5574"}],"version-history":[{"count":7,"href":"https:\/\/www.ait-pro.com\/aitpro-blog\/wp-json\/wp\/v2\/posts\/5574\/revisions"}],"predecessor-version":[{"id":5577,"href":"https:\/\/www.ait-pro.com\/aitpro-blog\/wp-json\/wp\/v2\/posts\/5574\/revisions\/5577"}],"wp:attachment":[{"href":"https:\/\/www.ait-pro.com\/aitpro-blog\/wp-json\/wp\/v2\/media?parent=5574"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.ait-pro.com\/aitpro-blog\/wp-json\/wp\/v2\/categories?post=5574"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.ait-pro.com\/aitpro-blog\/wp-json\/wp\/v2\/tags?post=5574"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}