WordPress.org

Ready to get started?Download WordPress

Forums

Shortcode Exec PHP
[resolved] I'm getting a Not Found, 404 Error!!! (13 posts)

  1. fwchapman
    Member
    Posted 2 years ago #

    I love this plugin, but when I went to update to the latest version, I got the strangest WordPress error I've ever seen. The same error showed up in three different places:

    1. When I tried to view the page with information on the plugin, I got a Not Found, 404 Error.
    2. When I tried to update the plugin, I got a Not Found, 404 Error.
    3. I finally deleted the plugin and installed it manually, but when I tried to activate the plugin, I got a Not Fount, 404 Error.

    I get this problem even when I deactivate all other plugins. Any idea what's causing this and how to fix it?

    Thanks very much,

    Fred Chapman

    http://wordpress.org/extend/plugins/shortcode-exec-php/

  2. fwchapman
    Member
    Posted 2 years ago #

    P.S. I updated five other plugins around the same time and did not experience these issues with any of the other updates. The issues were specific to this plugin.

  3. fwchapman
    Member
    Posted 2 years ago #

    I've solved the problem! It was due to changes in my .htaccess files. In the course of updating half a dozen plugins, I had updated to BulletProof Security Version .46.5, which changed .htaccess in ways that caused the Not Found, 404 Error reported above. I had a feeling that Shortcode Exec PHP would be vindicated! :)

  4. Marcel Bokhorst
    Member
    Plugin Author

    Posted 2 years ago #

    I was just going to look into this.
    Thanks for reporting back!

  5. fwchapman
    Member
    Posted 2 years ago #

    Marcel,

    Thanks for a great plugin! I had a feeling this problem wasn't because of anything your plugin did. I'm glad I can keep on using your plugin, which has become essential for my work. Being able to create custom PHP and JavaScript shortcodes lets me overcome a lot of WordPress limitations!

    Thanks again,

    Fred

  6. AITpro
    Member
    Posted 2 years ago #

    Ok thanks for pointing out that there is some sort of conflict going on. I will put this plugin in testing and see exactly what threat BPS is seeing and why BPS is blocking it. Thanks.

  7. fwchapman
    Member
    Posted 2 years ago #

    Thank you, Ed! It's much appreciated. -Fred

  8. Marcel Bokhorst
    Member
    Plugin Author

    Posted 2 years ago #

    @AITpro: let me know if something should be changed to the plugin.

  9. AITpro
    Member
    Posted 2 years ago #

    Yep it was just that silly thing. As an afterthought i added the "exec" php function to the explicit filter. I probably did that because every single hacker script i play around with uses the php exec function. it was not a good idea. A prepared statement in MySQL uses EXECUTE so there is really no good reason to block "exec" explicitly. If you want you can either remove "exec" entirely or just for the heck of it add it to the SQL Injection filter (it won't do anything really there). Anyway protecting a site against "exec" should be done in your php.ini file and not in an .htaccess file anyway so it can be dumped altogether. You will need to remove it from both your Root .htaccess file and your /wp-admin .htaccess file. I will get rid of this altogether in bps .46.6. Thanks.

    FYI - in your custom php.ini file you should add exec to your disable_functions directive
    ...and these php functions as well
    disable_functions = system, exec, passthru, shell_exec, show_source, popen, pclose, pcntl_exec

    I see these php functions in every single hacker script i play with. ;)

  10. fwchapman
    Member
    Posted 2 years ago #

    Marcel and Ed, on this Thanksgiving Day here in the USA, I am truly thankful for wonderful plugin developers like you. You were both kind enough to respond to my bug report within a matter of hours. That kind of incredible service to the WordPress community makes my job as a web consultant a whole lot easier!

    Thanks again,

    Fred

  11. Samara
    Member
    Posted 2 years ago #

    I can confirm that I am running the latest BPS and the same exact thing has happened to me as well.

    Also, I agree - both the devs are awesome! Thank you both :)

  12. AITpro
    Member
    Posted 2 years ago #

    "You will need to remove the word "exec" from both your Root .htaccess file and your /wp-admin .htaccess file."

    And you might as well get rid of "execute" too.

  13. fwchapman
    Member
    Posted 2 years ago #

    Samara, I used Ed's fix for BPS, and it cleared the problem right up. Hopefully, it will work just as well for you! -Fred

Topic Closed

This topic has been closed to new replies.

About this Plugin

About this Topic