Magic Fields plugin – breaks BPS plugin pages, CSS and js broken

Home Forums BulletProof Security Pro Magic Fields plugin – breaks BPS plugin pages, CSS and js broken

This topic contains 0 replies, has 1 voice, and was last updated by  AITpro Admin 1 year, 2 months ago.

Viewing 1 post (of 1 total)
  • Author
    Posts
  • #32963

    AITpro Admin
    Keymaster

    The Magic Fields plugin breaks BPS and BPS Pro plugin pages by loading its scripts in BPS plugin pages.  Unfortunately, we were unable to figure out which code in the Magic Fields plugin is causing this problem since the Magic Fields plugin is not coded using WordPress standards and is instead coded using non-WordPress standards coding methods, etc.  External js scripts seem to be called from external sources instead of using WP libraries.  In general js scripts are not being enqueued correctly.  There are a lot of things in the Magic Fields plugin that are hard coded, which makes it very difficult to check things like WordPress filters and actions.  CAUTION: Magic Fields DB Queries are not using WP Prepare statements.  So it is very likely that the Magic Fields plugin is vulnerable to SQL Injection hacking attempts.

Viewing 1 post (of 1 total)

You must be logged in to reply to this topic.