Support » Plugins and Hacks » BulletProof Security » [Resolved] [Plugin: BulletProof Security] 500 error

[Resolved] [Plugin: BulletProof Security] 500 error

  • Hi,

    Within a page or post I can set a custom header image. This functionality is part of the theme that I am using. When I click on the button to upload an header image I get this error:
    You don’t have permission to access /wp-admin/media-upload.php on this server.
    Additionally, a 500 Internal Server Error error was encountered while trying to use an ErrorDocument to handle the request.

    I renamed the .htaccess files to htaccess.txt in de root and wp-admin and the error disappeared. So this is related to BPS?


Viewing 4 replies - 1 through 4 (of 4 total)
  • Plugin Author AITpro


    To allow this Theme to use the WP media-upload.php file without being blocked by BPS add this .htaccess bypass / skip code below to the wp-admin Custom Code box – CUSTOM CODE WPADMIN PLUGIN FIXES: and then activate BulletProof Mode for your wp-admin folder again. The skip rule must be [S=2] because it will be written to your wp-admin .htaccess file above skip / bypass rule [S=1]. This bypass / skip rule is safe to use because the wp-admin area is protected with WP Authentication security.

    # Allow Theme to use media-upload.php bypass / skip rule
    RewriteCond %{REQUEST_URI} (media-upload\.php) [NC]
    RewriteRule . - [S=2]

    And thank you for the excellent description of the issue. It makes providing the solution a no-brainer. 🙂


    Thank you also for responding so quickly and helping me out with this issue.
    The header image functionality works now! WOW 😉

    This custom code will not be deleted after an upgrade?

    Plugin Author AITpro


    Good timing on posting your question that’s all. I was making my rounds and was checking the BPS posting area. 😉 I check it every 6 hours or if I get a reply to a post, so good timing.

    Yep I’ve seen a very similar issue before so I already had the solution – just did a copy and paste here.

    Custom Code that you save is permanently saved forever to your WP DB or until you delete it. Plugin Repository upgrading / updating from WP.org only replaces plugin files in the plugin folder and does not change or modify your WP DB settings / options.

    Good to know that it will stay there.

Viewing 4 replies - 1 through 4 (of 4 total)
  • The topic ‘[Resolved] [Plugin: BulletProof Security] 500 error’ is closed to new replies.