Changeset 3339444

cryptx/tags/4.0.0/classes/Admin/ChangelogSettingsTab.php

-                      r3323475
+                      r3339444
 use CryptX\Config;
-/**
- * Class ChangelogSettingsTab
- * Handles the changelog tab functionality in the CryptX plugin admin interface
- */
 class ChangelogSettingsTab
+{
 …
      */
     private Config $config;
+    /**
+     * Template path
+     */
+    private const TEMPLATE_PATH = CRYPTX_DIR_PATH . 'templates/admin/tabs/changelog.php';
     /**
 …
     public function render(): void
+    {
+        echo '<h4>' . esc_html__('Changelog', 'cryptx') . '</h4>';
+        $this->renderChangelogContent();
+        if ('changelog' !== $this->getActiveTab()) {
+            return;
+        }
+        $changelogs = $this->getChangelogData();
+        $this->renderTemplate(self::TEMPLATE_PATH, ['changelogs' => $changelogs]);
+    }
     /**
      * Parse and render changelog content from readme.txt
+     * Get changelog data
      */
     private function renderChangelogContent(): void
+    private function getChangelogData(): array
+    {
         $readmePath = CRYPTX_DIR_PATH . '/readme.txt';
         if (!file_exists($readmePath)) {
             return;
+            return [];
+        }
         $fileContents = file_get_contents($readmePath);
         if ($fileContents === false) {
             return;
+            return [];
+        }
+        $changelogs = $this->parseChangelog($fileContents);
+        foreach ($changelogs as $log) {
+            echo wp_kses_post("<dl>" . implode("", $log) . "</dl>");
+        return $this->parseChangelog($fileContents);
+    }
+    /**
+     * Render template with data
+     */
+    private function renderTemplate(string $path, array $data): void
+    {
+        if (!file_exists($path)) {
+            throw new \RuntimeException(sprintf('Template file not found: %s', $path));
+        }
+        extract($data);
+        include $path;
+    }
+    /**
+     * Get active tab
+     */
+    private function getActiveTab(): string
+    {
+        return sanitize_text_field($_GET['tab'] ?? 'general');
+    }
 …
         for ($i = 1; $i <= count($_sections); $i += 2) {
+            if (!isset($_sections[$i - 1]) || !isset($_sections[$i])) {
+                continue;
+            }
             $title = $_sections[$i - 1];
             $sections[str_replace(' ', '_', strtolower($title))] = [
 …
         for ($i = 1; $i <= count($_changelogs); $i += 2) {
+            if (!isset($_changelogs[$i - 1]) || !isset($_changelogs[$i])) {
+                continue;
+            }
             $version = $_changelogs[$i - 1];
             $content = ltrim($_changelogs[$i], "\n");
-            $content = str_replace("* ", "<li>", $content);
-            $content = str_replace("\n", " </li>\n", $content);
+            $changelogs[] = [
+                'version' => "<dt>" . esc_html($version) . "</dt>",
+                'content' => "<dd><ul>" . wp_kses_post($content) . "</ul></dd>"
+            ];
+            // Parse changelog items
+            $items = $this->parseChangelogItems($content);
+            if (!empty($items)) {
+                $changelogs[] = [
+                    'version' => $version,
+                    'items' => $items
+                ];
+            }
+        }
         return $changelogs;
+    }
+    /**
+     * Parse individual changelog items
+     *
+     * @param string $content
+     * @return array
+     */
+    private function parseChangelogItems(string $content): array
+    {
+        $lines = explode("\n", $content);
+        $items = [];
+        foreach ($lines as $line) {
+            $line = trim($line);
+            if (empty($line)) {
+                continue;
+            }
+            // Remove leading asterisk and clean up
+            if (strpos($line, '* ') === 0) {
+                $line = substr($line, 2);
+            }
+            if (!empty($line)) {
+                $items[] = trim($line);
+            }
+        }
+        return $items;
+    }
+}

cryptx/tags/4.0.0/classes/Admin/GeneralSettingsTab.php

-                      r3323475
+                      r3339444
         'disable_rss' => 0,
         'java' => 1,
+        'load_java' => 1
+        'load_java' => 1,
+        'use_secure_encryption' => 0,
+        'encryption_mode' => 'legacy'
     ];
     public function __construct(Config $config) {
         $this->config = $config;
 …
         $settings = [
             'options' => $options, // Pass all options
+            'securitySettings' => [
+                'use_secure_encryption' => [
+                    'label' => __('Use Secure Encryption', 'cryptx'),
+                    'description' => __('Enable AES-256-GCM encryption for enhanced security (recommended for new installations)', 'cryptx'),
+                    'value' => $options['use_secure_encryption'] ?? 0
+                ],
+                'encryption_mode' => [
+                    'label' => __('Encryption Mode', 'cryptx'),
+                    'description' => __('Choose encryption method. Legacy mode maintains backward compatibility with existing encrypted emails.', 'cryptx'),
+                    'value' => $options['encryption_mode'] ?? 'legacy',
+                    'options' => [
+                        'legacy' => __('Legacy (Compatible)', 'cryptx'),
+                        'secure' => __('Secure (AES-256-GCM)', 'cryptx')
+                    ]
+                ]
+            ],
             'applyTo' => [
                 'the_content' => [
 …
                 'widget_text' => [
                     'label' => __('Widgets', 'cryptx'),
                     'description' => __('(works only on all widgets, not on a single widget!)', 'cryptx')
+                    'description' => __('(applies to all text and HTML widgets)', 'cryptx')
+                ]
             ],

cryptx/tags/4.0.0/classes/Admin/PresentationSettingsTab.php

-                      r3323475
+                      r3339444
+    }
+    /**
+     * Renders the template for the active tab.
+     *
+     * The function checks if the 'presentation' tab is active. If not, it returns without further
+     * execution. When active, it retrieves configuration options, organizes them into a structured
+     * settings array, and renders the template with the specified settings.
+     *
+     * @return void
+     */
     public function render(): void {
         if ('presentation' !== $this->getActiveTab()) {
 …
+    }
+    /**
+     * Renders a template file by including it and extracting the provided data for use within the template scope.
+     *
+     * @param string $path The file path to the template to be rendered. Must be a valid, existing file.
+     * @param array $data An associative array of data to be extracted and made available to the template.
+     *
+     * @return void
+     *
+     * @throws \RuntimeException If the specified template file does not exist.
+     */
     private function renderTemplate(string $path, array $data): void {
         if (!file_exists($path)) {
 …
+    }
+    /**
+     * Retrieves the active tab from the request, defaulting to 'general' if not specified.
+     *
+     * @return string The sanitized active tab value from the request or 'general' if no tab is provided.
+     */
     private function getActiveTab(): string {
         return sanitize_text_field($_GET['tab'] ?? 'general');
+    }
+    /**
+     * Retrieves the available font options by scanning a directory for font files.
+     *
+     * @return array An associative array where the keys are the font file names and the values are the font names without the '.ttf' extension.
+     */
     private function getFontOptions(): array {
         $fonts = [];
 …
+    }
+    /**
+     * Retrieves a list of files in a specified directory that match the given file extensions.
+     *
+     * @param string $path The path to the directory to scan for files.
+     * @param array $extensions An array of file extensions to filter the files by.
+     *                          Only files matching these extensions will be included in the results.
+     *
+     * @return array An array of filenames from the specified directory that match the provided extensions.
+     *               If the directory does not exist, an empty array is returned.
+     */
     private function getFilesInDirectory(string $path, array $extensions): array {
         if (!is_dir($path)) {
 …
+    }
+    /**
+     * Saves and processes the settings for the application. Handles security checks,
+     * optional reset functionality, and updates sanitized settings to the configuration.
+     *
+     * @param array $data The input array containing settings data to be saved.
+     *                     The data is sanitized before being saved into the configuration.
+     *
+     * @return void This method does not return a value.
+     */
     public function saveSettings(array $data): void {
         if (!current_user_can('manage_options')) {
 …
         check_admin_referer('cryptX');
+        $sanitized = $this->sanitizeSettings($data);
+        // Handle reset button
         if (!empty($_POST['cryptX_var_reset'])) {
             $this->config->reset();
+            add_settings_error(
+                'cryptx_messages',
+                'settings_reset',
+                __('Presentation settings have been reset to defaults.', 'cryptx'),
+                'updated'
+            );
             return;
+        }
+        $sanitized = $this->sanitizeSettings($data);
         $this->config->update($sanitized);
 …
+    }
+    /**
+     * Sanitizes an array of settings data to ensure secure and valid formatting.
+     *
+     * @param array $data The input array containing settings data to be sanitized.
+     *                     Expected keys include CSS settings, text replacements, link text options,
+     *                     and font settings, each of which is sanitized according to its respective type.
+     *
+     * @return array The sanitized array with cleaned or validated values for all specified settings.
+     */
     private function sanitizeSettings(array $data): array {
         $sanitized = [];
 …
         $sanitized['css_class'] = sanitize_html_class($data['css_class'] ?? '');
         // Text replacements
         $sanitized['at'] = sanitize_text_field($data['at'] ?? ' [at] ');
         $sanitized['dot'] = sanitize_text_field($data['dot'] ?? ' [dot] ');
+        // Text replacements - preserve whitespace for 'at' and 'dot' fields
+        $sanitized['at'] = wp_kses_post($data['at'] ?? ' [at] ');
+        $sanitized['dot'] = wp_kses_post($data['dot'] ?? ' [dot] ');
         // Link text options
 …
         return $sanitized;
+    }
+}

cryptx/tags/4.0.0/classes/Config.php

-                      r3323475
+                      r3339444
         'whiteList' => 'jpeg,jpg,png,gif',
         'disable_rss' => 1, // Disable CryptX in RSS feeds by default
+        'encryption_mode' => 'secure', // Changed to 'secure' by default
+        'encryption_password' => null,  // Will be auto-generated if null
+        'use_secure_encryption' => 1,   // Enable secure encryption by default
+    ];
+    // Define the actual widget filters that will be used when widget_text is enabled
+    private const WIDGET_FILTERS = [
+        'widget_text',                    // Legacy text widget (pre-4.9)
+        'widget_text_content',            // Modern text widget (4.9+)
+        'widget_custom_html_content'      // Custom HTML widget (4.8.1+)
     ];
 …
     public function getVersion(): ?string {
         return $this->options['version'];
+    }
+    /**
+     * Get the actual widget filters to be applied
+     *
+     * @return array
+     */
+    public function getWidgetFilters(): array {
+        return self::WIDGET_FILTERS;
+    }
 …
         // Convert checkbox values to integers
         foreach (['the_content', 'the_meta_key', 'the_excerpt', 'comment_text',
                      'widget_text', 'autolink', 'metaBox', 'disable_rss'] as $key) {
+                     'widget_text', 'autolink', 'metaBox', 'disable_rss', 'use_secure_encryption'] as $key) {
             if (isset($newOptions[$key])) {
                 $newOptions[$key] = (int)$newOptions[$key];
 …
         $this->save();
+    }
+    /**
+     * Retrieves the encryption mode configured in the options.
+     *
+     * @return string Returns the encryption mode as a string. Defaults to 'secure' if not set.
+     */
+    public function getEncryptionMode(): string
+    {
+        return $this->options['encryption_mode'] ?? 'secure';
+    }
+    /**
+     * Checks if secure encryption is enabled in the options.
+     *
+     * @return bool Returns true if secure encryption is enabled, false otherwise.
+     */
+    public function isSecureEncryptionEnabled(): bool
+    {
+        return (bool) ($this->options['use_secure_encryption'] ?? true);
+    }
+    /**
+     * Retrieves the encryption password configured in the options or generates a secure password if not set.
+     *
+     * @return string Returns the encryption password as a string.
+     */
+    public function getEncryptionPassword(): string
+    {
+        if (empty($this->options['encryption_password'])) {
+            // Generate a secure password based on WordPress keys
+            $this->options['encryption_password'] = hash('sha256',
+                (defined('AUTH_KEY') ? AUTH_KEY : '') .
+                (defined('SECURE_AUTH_KEY') ? SECURE_AUTH_KEY : '') .
+                get_site_url()
+            );
+            $this->save();
+        }
+        return $this->options['encryption_password'];
+    }
+}

cryptx/tags/4.0.0/classes/CryptX.php

-                      r3335910
+                      r3339444
+    {
         $this->settingsTabs = new CryptXSettingsTabs($this);
         $this->config = new Config( get_option('cryptX', []) );
+        $this->config = new Config(get_option('cryptX', []));
         self::$cryptXOptions = $this->loadCryptXOptionsWithDefaults();
+    }
 …
+    {
         $this->checkAndUpdateVersion();
+        $this->addUniversalWidgetFilters(); // Add this line
         $this->initializePluginFilters();
         $this->registerCoreHooks();
 …
      * @return void
      */
+    private function initializePluginFilters(): void
+    {
+        foreach (self::$cryptXOptions['filter'] as $filter) {
+            if (isset(self::$cryptXOptions[$filter]) && self::$cryptXOptions[$filter]) {
+                $this->addPluginFilters($filter);
+    public function initializePluginFilters(): void
+    {
+        if (empty($this->config)) {
+            return;
+        }
+        $activeFilters = $this->config->getActiveFilters();
+        foreach ($activeFilters as $filter) {
+            if ($filter === 'widget_text') {
+                $this->addWidgetFilters();
+            } else {
+                // Add autolink filters for non-widget filters if autolink is enabled
+                if ($this->config->isAutolinkEnabled()) {
+                    $this->addAutoLinkFilters($filter, 10);
+                }
+                $this->addOtherFilters($filter);
+            }
+        }
 …
+        }
         // Process content
+        // Process content (inline the encryptAndLinkContent logic)
         if (self::$cryptXOptions['autolink'] ?? false) {
             $content = $this->addLinkToEmailAddresses($content, true);
+        }
+        $processedContent = $this->encryptAndLinkContent($content, true);
+        $content = $this->findEmailAddressesInContent($content, true);
+        $processedContent = $this->replaceEmailInContent($content, true);
         // Reset options to defaults
 …
+    }
+    private function processAndEncryptEmails(EmailProcessingConfig $config): string
+    {
+        $content = $this->encryptMailtoLinks($config);
+        return $this->encryptPlainEmails($content, $config);
+    }
+    private function encryptMailtoLinks(EmailProcessingConfig $config): ?string
+    {
+        $content = $config->getContent();
+        if ($content === null) {
+            return null;
+        }
+        $postId = $config->getPostId() ?? $this->getCurrentPostId();
+        if (!$this->isIdExcluded($postId) || $config->isShortcode()) {
+            return preg_replace_callback(
+                self::MAILTO_PATTERN,
+                [$this, 'encryptEmailAddress'],
+                $content
+            );
+        }
+        return $content;
+    }
+    private function encryptPlainEmails(string $content, EmailProcessingConfig $config): string
+    {
+        $postId = $config->getPostId() ?? $this->getCurrentPostId();
+        if ((!$this->isIdExcluded($postId) || $config->isShortcode()) && !empty($content)) {
+            return preg_replace_callback(
+                self::EMAIL_PATTERN,
+                [$this, 'encodeEmailToLinkText'],
+                $content
+            );
+        }
+        return $content;
+    }
+    /**
+     * Retrieves the ID of the current post.
+     *
+     * @return int The current post ID if available, or -1 if no post object is present.
+     */
     private function getCurrentPostId(): int
+    {
 …
     /**
-     * Add plugin filters.
+     *
-     * This function adds the specified plugin filter if the 'autolink' key is present and its value is true in the global $cryptXOptions variable.
-     * It also adds the 'autolink' function as a filter to the $filterName if the global $shortcode_tags variable is not empty.
-     * Additionally, this function calls the addCommonFilters() and addOtherFilters() functions at specific points.
+     *
-     * @param string $filterName The name of the filter to add.
+     *
-     * @return void
-     */
-    private function addPluginFilters(string $filterName): void
+    {
-        global $shortcode_tags;
-        if (array_key_exists('autolink', self::$cryptXOptions) && self::$cryptXOptions['autolink']) {
-            $this->addAutoLinkFilters($filterName);
-            if (!empty($shortcode_tags)) {
-                $this->addAutoLinkFilters($filterName, 11);
+            }
+        }
-        $this->addOtherFilters($filterName);
+    }
-    /**
      * Adds common filters to a given filter name.
+     *
 …
     private function addOtherFilters(string $filterName): void
+    {
+        add_filter($filterName, [$this, 'findEmailAddressesInContent'], 12);
+        add_filter($filterName, [$this, 'replaceEmailInContent'], 13);
+        // Check if this is a widget filter
+        $widgetFilters = $this->config->getWidgetFilters();
+        $isWidgetFilter = in_array($filterName, $widgetFilters);
+        if ($isWidgetFilter) {
+            // Use higher priority for widget filters (after autolink at priority 10)
+            add_filter($filterName, [$this, 'findEmailAddressesInContent'], 15);
+            add_filter($filterName, [$this, 'replaceEmailInContent'], 16);
+        } else {
+            // Standard priorities for other filters
+            add_filter($filterName, [$this, 'findEmailAddressesInContent'], 12);
+            add_filter($filterName, [$this, 'replaceEmailInContent'], 13);
+        }
+    }
+    /**
+     * Adds and applies widget filters from the configuration.
+     *
+     * @return void
+     */
+    private function addWidgetFilters(): void
+    {
+        $widgetFilters = $this->config->getWidgetFilters();
+        foreach ($widgetFilters as $widgetFilter) {
+            $this->addAutoLinkFilters($widgetFilter, 10);
+            $this->addOtherFilters($widgetFilter);
+        }
+    }
 …
         global $post;
+        if (self::$cryptXOptions['disable_rss'] && $this->isRssFeed())  return $content;
+        if (self::$cryptXOptions['disable_rss'] && $this->isRssFeed()) return $content;
+        // Check if current filter is a widget filter
+        $widgetFilters = $this->config->getWidgetFilters();
+        $isWidgetContext = in_array(current_filter(), $widgetFilters);
         $postId = (is_object($post)) ? $post->ID : -1;
+        if ((!$this->isIdExcluded($postId) || $isShortcode) && !empty($content)) {
+        // For widgets, always process; for other content, check exclusion rules
+        if (($isWidgetContext || !$this->isIdExcluded($postId) || $isShortcode) && !empty($content)) {
             $content = $this->replaceEmailWithLinkText($content);
+        }
 …
         return $content;
+    }
     /**
 …
         global $post;
         if (self::$cryptXOptions['disable_rss'] && $this->isRssFeed())  return $content;
+        if (self::$cryptXOptions['disable_rss'] && $this->isRssFeed()) return $content;
         if ($content === null) {
 …
+        }
+        // Check if current filter is a widget filter
+        $widgetFilters = $this->config->getWidgetFilters();
+        $isWidgetContext = in_array(current_filter(), $widgetFilters);
         $postId = (is_object($post)) ? $post->ID : -1;
         $isIdExcluded = $this->isIdExcluded($postId);
-        // FIXED: Added 's' modifier to handle multiline HTML (like Elementor buttons)
         $mailtoRegex = '/<a\s+[^>]*href=(["\'])mailto:([^"\']+)\1[^>]*>(.*?)<\/a>/is';
+        if ((!$isIdExcluded || $shortcode !== null)) {
+            $content = preg_replace_callback($mailtoRegex, [$this, 'encryptEmailAddressNew'], $content);
+        // For widgets, always process since there's no specific post context
+        // For other content, check exclusion rules
+        if ($isWidgetContext || !$isIdExcluded || $shortcode) {
+            // $content = preg_replace_callback($mailtoRegex, [$this, 'encryptEmailAddressNew'], $content);
+            $content = preg_replace_callback($mailtoRegex, [$this, 'encryptEmailAddressSecure'], $content);
+        }
         return $content;
+    }
     /**
 …
         $return = $originalValue;
         // Apply JavaScript handler if enabled
         if (!empty(self::$cryptXOptions['java'])) {
 …
     /**
+     * Encrypts an email address found in the search results and modifies it to safeguard against email harvesting.
+     *
+     * @param array $searchResults Array containing search result data, where:
+     *                             - Index 0 contains the full match.
+     *                             - Index 2 contains the email address.
+     *                             - Index 3 contains the link text for the email.
+     * @return string The encrypted or modified email link.
+     * Encrypts an email address within the provided search results and generates a secure or obfuscated link.
+     * If secure encryption is enabled, the function uses secure encryption. Otherwise, it falls back to legacy methods
+     * or antispambot obfuscation if JavaScript is not enabled. Additional CSS attributes can be added if specified.
+     *
+     * @param array $searchResults The array containing match results:
+     *                              - Index 0: The full match value (original string),
+     *                              - Index 2: The email address to encrypt,
+     *                              - Index 3: The link text for the email link.
+     * @return string Returns the modified string where the email address is encrypted or obfuscated based on the configuration.
      */
     private function encryptEmailAddressNew(array $searchResults): string
 …
         // Apply JavaScript handler if enabled
         if (!empty(self::$cryptXOptions['java'])) {
+            $javaHandler = "javascript:DeCryptX('" . $this->generateHashFromString($emailAddress) . "')";
+            // Check if secure encryption is enabled and working
+            if ($this->config->isSecureEncryptionEnabled()) {
+                try {
+                    // Use secure encryption - encrypt the full mailto URL
+                    $password = $this->config->getEncryptionPassword();
+                    $mailtoUrl = 'mailto:' . $emailAddress;
+                    $encryptedEmail = SecureEncryption::encrypt($mailtoUrl, $password);
+                    $javaHandler = "javascript:secureDecryptAndNavigate('" .
+                        $this->escapeJavaScript($encryptedEmail) . "', '" .
+                        $this->escapeJavaScript($password) . "')";
+                } catch (\Exception $e) {
+                    // Fallback to legacy encryption if secure encryption fails
+                    error_log('CryptX Secure Encryption failed: ' . $e->getMessage());
+                    $encryptedEmail = $this->generateHashFromString($emailAddress);
+                    $javaHandler = "javascript:DeCryptX('" . $this->escapeJavaScript($encryptedEmail) . "')";
+                }
+            } else {
+                // Use legacy encryption
+                $encryptedEmail = $this->generateHashFromString($emailAddress);
+                $javaHandler = "javascript:DeCryptX('" . $this->escapeJavaScript($encryptedEmail) . "')";
+            }
             $return = str_replace('mailto:' . $emailAddress, $javaHandler, $originalValue);
         } else {
+            // Only apply antispambot if JavaScript is not enabled
+            $return = str_replace('mailto:' . $emailAddress, antispambot('mailto:' . $emailAddress), $return);
+            // Fallback to antispambot if JavaScript is not enabled
+            $return = str_replace('mailto:' . $emailAddress,
+                antispambot('mailto:' . $emailAddress), $return);
+        }
         // Add CSS attributes if specified
         if (!empty(self::$cryptXOptions['css_id'])) {
+            $return = preg_replace('/(<a\s+[^>]*)(>)/i', '$1 id="' . self::$cryptXOptions['css_id'] . '"$2', $return);
+            $return = preg_replace('/(<a\s+[^>]*)(>)/i',
+                '$1 id="' . self::$cryptXOptions['css_id'] . '"$2', $return);
+        }
         if (!empty(self::$cryptXOptions['css_class'])) {
+            $return = preg_replace('/(<a\s+[^>]*)(>)/i', '$1 class="' . self::$cryptXOptions['css_class'] . '"$2', $return);
+            $return = preg_replace('/(<a\s+[^>]*)(>)/i',
+                '$1 class="' . self::$cryptXOptions['css_class'] . '"$2', $return);
+        }
 …
+    {
         global $post;
+        // Check if current filter is a widget filter
+        $widgetFilters = $this->config->getWidgetFilters();
+        $isWidgetContext = in_array(current_filter(), $widgetFilters);
         $postID = is_object($post) ? $post->ID : -1;
+        if ($this->isIdExcluded($postID) && !$shortcode) {
+        // For widgets, always process; for other content, check exclusion rules
+        if (!$isWidgetContext && $this->isIdExcluded($postID) && !$shortcode) {
             return $content;
+        }
         $emailPattern = "[_a-zA-Z0-9-+]+(\.[_a-zA-Z0-9-+]+)*@[a-zA-Z0-9-]+(\.[a-zA-Z0-9-]+)*(\.[a-zA-Z]{2,})";
+        $emailPattern = "[_a-zA-Z0-9-+]+(\\.[_a-zA-Z0-9-+]+)*@[a-zA-Z0-9-]+(\\.[a-zA-Z0-9-]+)*(\\.[a-zA-Z]{2,})";
         $linkPattern = "<a href=\"mailto:\\2\">\\2</a>";
         $src = [
             "/([\s])($emailPattern)/si",
+            "/([\\s])($emailPattern)/si",
             "/(>)($emailPattern)(<)/si",
             "/(\()($emailPattern)(\))/si",
             "/(>)($emailPattern)([\s])/si",
             "/([\s])($emailPattern)(<)/si",
+            "/(\\()($emailPattern)(\\))/si",
+            "/(>)($emailPattern)([\\s])/si",
+            "/([\\s])($emailPattern)(<)/si",
             "/^($emailPattern)/si",
             "/(<a[^>]*>)<a[^>]*>/",
             "/(<\/A>)<\/A>/i"
+            "/(<\\/A>)<\\/A>/i"
         ];
         $tar = [
 …
+    }
+    /**
+     * Converts an associative array into an argument string.
+     *
+     * @param array $args An optional associative array where keys represent argument names and values represent argument values.
+     * @return string A formatted string of arguments where each key-value pair is encoded and concatenated.
+     */
     public function convertArrayToArgumentString(array $args = []): string
+    {
 …
      * Adds plugin action links to the WordPress plugin row
+     *
      * @param array  $links Existing plugin row links
      * @param string $file  Plugin file path
+     * @param array $links Existing plugin row links
+     * @param string $file Plugin file path
      * @return array Modified plugin row links
      */
 …
     /**
+     * Creates the settings link for the plugin
+     * Creates and returns a settings link for the options page.
+     *
+     * @return string The HTML link to the settings page.
      */
     private function create_settings_link(): string
 …
     /**
+     * Creates the donation link for the plugin
+     * Creates and returns a donation link in HTML format.
+     *
+     * @return string The HTML string for the donation link.
      */
     private function create_donation_link(): string
 …
         );
+    }
+    /**
+     * Adds a universal filter for all widget types by hooking into the widget display process.
+     *
+     * @return void
+     */
+    private function addUniversalWidgetFilters(): void
+    {
+        // Hook into the widget display process to catch all widget types
+        add_filter('widget_display_callback', [$this, 'processWidgetContent'], 10, 3);
+    }
+    /**
+     * Processes the widget content to detect and modify email addresses.
+     *
+     * @param array $instance The current widget instance settings.
+     * @param object $widget The widget object being processed.
+     * @param array $args Additional arguments passed by the widget function.
+     *
+     * @return array The modified widget instance with updated content.
+     */
+    public function processWidgetContent($instance, $widget, $args)
+    {
+        // Only process if widget_text option is enabled
+        if (!(self::$cryptXOptions['widget_text'] ?? false)) {
+            return $instance;
+        }
+        // Check if instance has text content (traditional text widgets)
+        if (isset($instance['text']) && stripos($instance['text'], '@') !== false) {
+            $instance['text'] = $this->addLinkToEmailAddresses($instance['text']);
+            $instance['text'] = $this->findEmailAddressesInContent($instance['text']);
+            $instance['text'] = $this->replaceEmailInContent($instance['text']);
+        }
+        // Check if instance has content field (block widgets)
+        if (isset($instance['content']) && stripos($instance['content'], '@') !== false) {
+            $instance['content'] = $this->addLinkToEmailAddresses($instance['content']);
+            $instance['content'] = $this->findEmailAddressesInContent($instance['content']);
+            $instance['content'] = $this->replaceEmailInContent($instance['content']);
+        }
+        return $instance;
+    }
+    /**
+     * Generates hash using secure or legacy encryption based on settings
+     *
+     * @param string $inputString
+     * @return string
+     */
+    private function generateSecureHashFromString(string $inputString): string
+    {
+        if ($this->config->isSecureEncryptionEnabled()) {
+            try {
+                $password = $this->config->getEncryptionPassword();
+                return SecureEncryption::encrypt($inputString, $password);
+            } catch (\Exception $e) {
+                error_log('CryptX Secure Encryption failed: ' . $e->getMessage());
+                // Fallback to legacy encryption
+                return $this->generateHashFromString($inputString);
+            }
+        }
+        return $this->generateHashFromString($inputString);
+    }
+    /**
+     * Enhanced email encryption with security validation
+     *
+     * @param array $searchResults
+     * @return string
+     */
+    private function encryptEmailAddressSecure(array $searchResults): string
+    {
+        $originalValue = $searchResults[0];  // Full match
+        $emailAddress = $searchResults[2];   // Email address
+        $linkText = $searchResults[3];       // Link text
+        if (strpos($emailAddress, '@') === self::NOT_FOUND) {
+            return $originalValue;
+        }
+        if (str_starts_with($emailAddress, self::SUBJECT_IDENTIFIER)) {
+            return $originalValue;
+        }
+        $return = $originalValue;
+        // Apply JavaScript handler if enabled
+        if (!empty(self::$cryptXOptions['java'])) {
+            $encryptionMode = $this->config->getEncryptionMode();
+            // Determine which encryption method to use
+            if ($encryptionMode === 'secure' &&
+                $this->config->isSecureEncryptionEnabled() &&
+                class_exists('CryptX\SecureEncryption')) {
+                // Use modern AES-256-GCM encryption
+                try {
+                    $password = $this->config->getEncryptionPassword();
+                    $mailtoUrl = 'mailto:' . $emailAddress;
+                    $encryptedEmail = SecureEncryption::encrypt($mailtoUrl, $password);
+                    $javaHandler = "javascript:secureDecryptAndNavigate('" .
+                        $this->escapeJavaScript($encryptedEmail) . "', '" .
+                        $this->escapeJavaScript($password) . "')";
+                } catch (\Exception $e) {
+                    // Fallback to legacy if secure encryption fails
+                    error_log('CryptX Secure Encryption failed, falling back to legacy: ' . $e->getMessage());
+                    $encryptedEmail = $this->generateHashFromString($emailAddress);
+                    $javaHandler = "javascript:DeCryptX('" . $this->escapeJavaScript($encryptedEmail) . "')";
+                }
+            } else {
+                // Use legacy encryption (original algorithm)
+                $encryptedEmail = $this->generateHashFromString($emailAddress);
+                $javaHandler = "javascript:DeCryptX('" . $this->escapeJavaScript($encryptedEmail) . "')";
+            }
+            $return = str_replace('mailto:' . $emailAddress, $javaHandler, $originalValue);
+        } else {
+            // Fallback to antispambot if JavaScript is not enabled
+            $return = str_replace('mailto:' . $emailAddress,
+                antispambot('mailto:' . $emailAddress), $return);
+        }
+        // Add CSS attributes if specified
+        if (!empty(self::$cryptXOptions['css_id'])) {
+            $return = preg_replace('/(<a\s+[^>]*)(>)/i',
+                '$1 id="' . self::$cryptXOptions['css_id'] . '"$2', $return);
+        }
+        if (!empty(self::$cryptXOptions['css_class'])) {
+            $return = preg_replace('/(<a\s+[^>]*)(>)/i',
+                '$1 class="' . self::$cryptXOptions['css_class'] . '"$2', $return);
+        }
+        return $return;
+    }
+    /**
+     * Escapes string for safe JavaScript usage
+     *
+     * @param string $string
+     * @return string
+     */
+    private function escapeJavaScript(string $string): string
+    {
+        return str_replace(
+            ['\\', "'", '"', "\n", "\r", "\t"],
+            ['\\\\', "\\'", '\\"', '\\n', '\\r', '\\t'],
+            $string
+        );
+    }
+    /**
+     * Secure URL validation
+     *
+     * @param string $url
+     * @return bool
+     */
+    private function isValidUrl(string $url): bool
+    {
+        return SecureEncryption::validateUrl($url);
+    }
+}

cryptx/tags/4.0.0/classes/CryptXSettingsTabs.php

-                      r3323475
+                      r3339444
         );
+        // Enqueue WordPress color picker assets
         wp_enqueue_style('wp-color-picker');
+        // Enqueue JavaScript files
+        wp_enqueue_script(
+            'cryptx-admin-js',
+            CRYPTX_DIR_URL . 'js/cryptx-admin.min.js',
+            ['jquery', 'wp-color-picker'],
+            CRYPTX_VERSION,
+            true
+        );
+        wp_enqueue_script('wp-color-picker');
+        // Enqueue media uploader
         wp_enqueue_media();
+    }
 …
             $saveOptions = DataSanitizer::sanitize($_POST['cryptX_var']);
+            // Handle reset for any tab
             if (isset($_POST['cryptX_var_reset'])) {
+                $saveOptions = $this->cryptX->getCryptXOptionsDefaults();
+                $this->cryptX->getCryptXOptionsDefaults();
+                $this->cryptX->getConfig()->reset();
+                $this->displayResetMessage();
+                return;
+            }
 …
+        }
+    }
     /**
 …
             'cryptx_messages',
             'cryptx_message',
+            __('Settings saved.'),
+            __('Settings saved.', 'cryptx'),
+            'updated'
+        );
+    }
+    /**
+     * Display reset message
+     */
+    private function displayResetMessage(): void
+    {
+        add_settings_error(
+            'cryptx_messages',
+            'cryptx_reset',
+            __('Settings have been reset to defaults.', 'cryptx'),
             'updated'
         );
 …
             // Handle form submission if needed
             if (isset($_POST['cryptX_save_general_settings'])) {
                 if (!empty($_POST['cryptX_var'])) {
                     $generalTab->saveSettings($_POST['cryptX_var']);
+            if (isset($_POST['cryptX_save_general_settings']) || isset($_POST['cryptX_var_reset'])) {
+                if (!empty($_POST['cryptX_var']) || isset($_POST['cryptX_var_reset'])) {
+                    $generalTab->saveSettings($_POST['cryptX_var'] ?? []);
+                }
+            }
 …
             // Handle form submission if needed
             if (isset($_POST['cryptX_save_presentation_settings'])) {
                 if (!empty($_POST['cryptX_var'])) {
                     $presentationTab->saveSettings($_POST['cryptX_var']);
+            if (isset($_POST['cryptX_save_presentation_settings']) || isset($_POST['cryptX_var_reset'])) {
+                if (!empty($_POST['cryptX_var']) || isset($_POST['cryptX_var_reset'])) {
+                    $presentationTab->saveSettings($_POST['cryptX_var'] ?? []);
+                }
+            }
 …
+        }
+    }
-    /**
-     * Parse and render changelog content from readme.txt
-     */
-    private function renderChangelogContent(): void
+    {
-        $readmePath = CRYPTX_DIR_PATH . '/readme.txt';
-        if (!file_exists($readmePath)) {
-            return;
+        }
-        $fileContents = file_get_contents($readmePath);
-        if ($fileContents === false) {
-            return;
+        }
-        $changelogs = $this->parseChangelog($fileContents);
-        foreach ($changelogs as $log) {
-            echo wp_kses_post("<dl>" . implode("", $log) . "</dl>");
+        }
+    }
-    /**
-     * Parse changelog content from readme.txt
+     *
-     * @param string $content
-     * @return array
-     */
-    private function parseChangelog(string $content): array
+    {
-        $content = str_replace(["\r\n", "\r"], "\n", $content);
-        $content = trim($content);
-        // Split into sections
-        $sections = $this->parseSections($content);
-        if (!isset($sections['changelog'])) {
-            return [];
+        }
-        // Parse changelog entries
-        return $this->parseChangelogEntries($sections['changelog']['content']);
+    }
-    /**
-     * Parse sections from readme content
+     *
-     * @param string $content
-     * @return array
-     */
-    private function parseSections(string $content): array
+    {
-        $_sections = preg_split('/^[\s]*==[\s]*(.+?)[\s]*==/m', $content, -1, PREG_SPLIT_DELIM_CAPTURE | PREG_SPLIT_NO_EMPTY);
-        $sections = [];
-        for ($i = 1; $i <= count($_sections); $i += 2) {
-            $title = $_sections[$i - 1];
-            $sections[str_replace(' ', '_', strtolower($title))] = [
-                'title' => $title,
-                'content' => $_sections[$i]
-            ];
+        }
-        return $sections;
+    }
-    /**
-     * Parse changelog entries
+     *
-     * @param string $content
-     * @return array
-     */
-    private function parseChangelogEntries(string $content): array
+    {
-        $_changelogs = preg_split('/^[\s]*=[\s]*(.+?)[\s]*=/m', $content, -1, PREG_SPLIT_DELIM_CAPTURE | PREG_SPLIT_NO_EMPTY);
-        $changelogs = [];
-        for ($i = 1; $i <= count($_changelogs); $i += 2) {
-            $version = $_changelogs[$i - 1];
-            $content = ltrim($_changelogs[$i], "\n");
-            $content = str_replace("* ", "<li>", $content);
-            $content = str_replace("\n", " </li>\n", $content);
-            $changelogs[] = [
-                'version' => "<dt>" . esc_html($version) . "</dt>",
-                'content' => "<dd><ul>" . wp_kses_post($content) . "</ul></dd>"
-            ];
+        }
-        return $changelogs;
+    }
+}

cryptx/tags/4.0.0/cryptx.php

-                      r3335910
+                      r3339444
 <?php
 /*
  * Plugin Name: CryptX
  * Plugin URI: http://weber-nrw.de/wordpress/cryptx/
  * Description: No more SPAM by spiders scanning you site for email addresses. With CryptX you can hide all your email addresses, with and without a mailto-link, by converting them using javascript or UNICODE.
  * Version: 3.5.2
+/**
+ * Plugin Name:       CryptX
+ * Plugin URI:        https://wordpress.org/plugins/cryptx/
+ * Description:       CryptX encrypts email addresses in your posts, pages, comments, and text widgets to protect them from spam bots while keeping them readable for your visitors.
+ * Version:           4.0.0
  * Requires at least: 6.7
+ * Author: Ralf Weber
+ * Author URI: http://weber-nrw.de/
+ * Tested up to:      6.8
+ * Requires PHP:      8.1
+ * Author:            Ralf Weber
+ * Author URI:        https://weber-nrw.de/
  * License:           GPL v2 or later
  * License URI:       https://www.gnu.org/licenses/gpl-2.0.html
+ * Text Domain: cryptx
+*/
+ * Text Domain:       cryptx
+ * Domain Path:       /languages
+ * Network:           false
+ * Update URI:        https://wordpress.org/plugins/cryptx/
+ *
+ * CryptX is free software: you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License as published by
+ * the Free Software Foundation, either version 2 of the License, or
+ * any later version.
+ *
+ * CryptX is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+ * GNU General Public License for more details.
+ *
+ * You should have received a copy of the GNU General Public License
+ * along with CryptX. If not, see https://www.gnu.org/licenses/gpl-2.0.html.
+ *
+ * @package CryptX
+ * @since   1.0.0
+ */
+//avoid direct calls to this file, because now WP core and framework has been used
+if ( ! function_exists( 'add_action' ) ) {
+    header( 'Status: 403 Forbidden' );
+    header( 'HTTP/1.1 403 Forbidden' );
+    exit();
+// Prevent direct access
+if (!defined('ABSPATH')) {
+    exit;
+}
+/** @const CryptX version */
+define( 'CRYPTX_VERSION', "3.5.2" );
+define( 'CRYPTX_BASENAME', plugin_basename( __FILE__ ) );
+define( 'CRYPTX_BASEFOLDER', plugin_basename( dirname( __FILE__ ) ) );
+define( 'CRYPTX_DIR_URL', rtrim( plugin_dir_url( __FILE__ ), "/" ) . "/" );
+define( 'CRYPTX_DIR_PATH', plugin_dir_path( __FILE__ ) );
+define( 'CRYPTX_FILENAME', str_replace( CRYPTX_BASEFOLDER . '/', '', plugin_basename( __FILE__ ) ) );
+// Plugin constants
+define('CRYPTX_VERSION', '4.0.0');
+define('CRYPTX_PLUGIN_FILE', __FILE__);
+define('CRYPTX_PLUGIN_BASENAME', plugin_basename(__FILE__));
+define('CRYPTX_BASENAME', plugin_basename(__FILE__)); // Add this missing constant
+define('CRYPTX_DIR_PATH', plugin_dir_path(__FILE__));
+define('CRYPTX_DIR_URL', plugin_dir_url(__FILE__));
+define('CRYPTX_BASEFOLDER', dirname(CRYPTX_PLUGIN_BASENAME));
+spl_autoload_register(function ($class_name) {
+    // Handle classes in the CryptX namespace
+    if (strpos($class_name, 'CryptX\\') === 0) {
+        // Convert namespace separators to directory separators
+        $file_path = str_replace('\\', DIRECTORY_SEPARATOR, $class_name);
+        $file_path = str_replace('CryptX' . DIRECTORY_SEPARATOR, '', $file_path);
+// Minimum requirements check
+if (version_compare(PHP_VERSION, '8.1.0', '<')) {
+    add_action('admin_notices', function() {
+        echo '<div class="notice notice-error"><p>';
+        printf(
+        /* translators: %1$s: Required PHP version, %2$s: Current PHP version */
+            __('CryptX requires PHP version %1$s or higher. You are running version %2$s. Please update PHP.', 'cryptx'),
+            '8.1.0',
+            PHP_VERSION
+        );
+        echo '</p></div>';
+    });
+    return;
+}
+        // Construct the full file path
+        $file = CRYPTX_DIR_PATH . 'classes' . DIRECTORY_SEPARATOR . $file_path . '.php';
+// WordPress version check
+global $wp_version;
+if (version_compare($wp_version, '6.7', '<')) {
+    add_action('admin_notices', function() {
+        echo '<div class="notice notice-error"><p>';
+        printf(
+        /* translators: %1$s: Required WordPress version, %2$s: Current WordPress version */
+            __('CryptX requires WordPress version %1$s or higher. You are running version %2$s. Please update WordPress.', 'cryptx'),
+            '5.0',
+            $GLOBALS['wp_version']
+        );
+        echo '</p></div>';
+    });
+    return;
+}
+        if (file_exists($file)) {
+            require_once $file;
+        }
+// Autoloader for plugin classes
+spl_autoload_register(function ($class) {
+    // Check if the class belongs to our namespace
+    if (strpos($class, 'CryptX\\') !== 0) {
+        return;
+    }
+    // Remove namespace prefix
+    $class = substr($class, 7);
+    // Convert namespace separators to directory separators
+    $class = str_replace('\\', DIRECTORY_SEPARATOR, $class);
+    // Build the full path
+    $file = CRYPTX_DIR_PATH . 'classes' . DIRECTORY_SEPARATOR . $class . '.php';
+    // Include the file if it exists
+    if (file_exists($file)) {
+        require_once $file;
+    }
 });
+// Initialize the plugin
+add_action('plugins_loaded', function() {
+    // Check if all required classes can be loaded
+    $requiredClasses = [
+        'CryptX\\CryptX',
+        'CryptX\\Config',
+        'CryptX\\CryptXSettingsTabs',
+        'CryptX\\SecureEncryption',
+        'CryptX\\Admin\\ChangelogSettingsTab',
+        'CryptX\\Admin\\GeneralSettingsTab',
+        'CryptX\\Admin\\PresentationSettingsTab',
+        'CryptX\\Util\\DataSanitizer',
+    ];
+//require_once( CRYPTX_DIR_PATH . 'classes/CryptX.php' );
+//require_once( CRYPTX_DIR_PATH . 'include/admin_option_page.php' );
+    $missingClasses = [];
+    foreach ($requiredClasses as $class) {
+        if (!class_exists($class)) {
+            $missingClasses[] = $class;
+        }
+    }
+$CryptX_instance = CryptX\CryptX::get_instance();
+$CryptX_instance->startCryptX();
+    if (!empty($missingClasses)) {
+        add_action('admin_notices', function() use ($missingClasses) {
+            echo '<div class="notice notice-error"><p>';
+            echo esc_html__('CryptX: Missing required classes: ', 'cryptx') . implode(', ', $missingClasses);
+            echo '</p></div>';
+        });
+        return;
+    }
+/**
+ * Encrypts the given content using the CryptX WordPress plugin.
+ *
+ * @param string|null $content The content to encrypt.
+ * @param array|null $args The optional arguments for the encryption. Default is an empty array.
+ *
+ * @return string The encrypted content wrapped in the '[cryptx]' shortcode.
+ */
+function encryptx( ?string $content, ?array $args = [] ): string {
+    $CryptX_instance = Cryptx\CryptX::get_instance();
+    return do_shortcode( '[cryptx'. $CryptX_instance->convertArrayToArgumentString( $args ).']' . $content . '[/cryptx]' );
+}
+    // Initialize the main plugin class
+    try {
+        $cryptx_instance = CryptX\CryptX::get_instance();
+        $cryptx_instance->startCryptX();
+    } catch (Exception $e) {
+        add_action('admin_notices', function() use ($e) {
+            echo '<div class="notice notice-error"><p>';
+            echo esc_html__('CryptX initialization failed: ', 'cryptx') . esc_html($e->getMessage());
+            echo '</p></div>';
+        });
+    }
+});
+// Remove the strict activation requirements - let the plugin handle fallbacks
+register_activation_hook(__FILE__, function() {
+    // Just flush rewrite rules
+    flush_rewrite_rules();
+});
+// Plugin deactivation hook
+register_deactivation_hook(__FILE__, function() {
+    // Clean up any transients or cached data
+    global $wpdb;
+    $wpdb->query("DELETE FROM {$wpdb->options} WHERE option_name LIKE '_transient_cryptx_%'");
+    $wpdb->query("DELETE FROM {$wpdb->options} WHERE option_name LIKE '_transient_timeout_cryptx_%'");
+});
+// Add plugin action links - updated to match the settings page slug
+add_filter('plugin_action_links_' . plugin_basename(__FILE__), function($links) {
+    $settings_link = '<a href="' . admin_url('options-general.php?page=cryptx') . '">' .
+        esc_html__('Settings', 'cryptx') . '</a>';
+    array_unshift($links, $settings_link);
+    return $links;
+});

cryptx/tags/4.0.0/js/cryptx.js

-                      r3323475
+                      r3339444
+const UPPER_LIMIT = 8364;
+const DEFAULT_VALUE = 128;
+/**
+ * Decrypts an encrypted string using a specific encryption algorithm.
+ *
+ * @param {string} encryptedString - The encrypted string to be decrypted.
+ * @returns {string} The decrypted string.
+/**
+ * Secure CryptX Library - Fixed for backward compatibility
+ */
+// Configuration constants
+const CONFIG = {
+    ALLOWED_PROTOCOLS: ['http:', 'https:', 'mailto:'],
+    MAX_URL_LENGTH: 2048,
+    ENCRYPTION_KEY_SIZE: 32,
+    IV_SIZE: 16
+};
+/**
+ * Utility functions for secure operations
+ */
+class SecureUtils {
+    static getSecureRandomBytes(length) {
+        if (typeof crypto === 'undefined' || !crypto.getRandomValues) {
+            throw new Error('Secure random number generation not available');
+        }
+        return crypto.getRandomValues(new Uint8Array(length));
+    }
+    static arrayBufferToBase64(buffer) {
+        const bytes = new Uint8Array(buffer);
+        let binary = '';
+        for (let i = 0; i < bytes.byteLength; i++) {
+            binary += String.fromCharCode(bytes[i]);
+        }
+        return btoa(binary);
+    }
+    static base64ToArrayBuffer(base64) {
+        const binary = atob(base64);
+        const buffer = new ArrayBuffer(binary.length);
+        const bytes = new Uint8Array(buffer);
+        for (let i = 0; i < binary.length; i++) {
+            bytes[i] = binary.charCodeAt(i);
+        }
+        return buffer;
+    }
+    static validateUrl(url) {
+        if (typeof url !== 'string' || url.length === 0) {
+            return null;
+        }
+        if (url.length > CONFIG.MAX_URL_LENGTH) {
+            console.error('URL exceeds maximum length');
+            return null;
+        }
+        try {
+            const urlObj = new URL(url);
+            if (!CONFIG.ALLOWED_PROTOCOLS.includes(urlObj.protocol)) {
+                console.error('Protocol not allowed:', urlObj.protocol);
+                return null;
+            }
+            if (urlObj.protocol === 'mailto:') {
+                const emailRegex = /^[^\s@]+@[^\s@]+\.[^\s@]+$/;
+                if (!emailRegex.test(urlObj.pathname)) {
+                    console.error('Invalid email format in mailto URL');
+                    return null;
+                }
+            }
+            return url;
+        } catch (error) {
+            console.error('Invalid URL format:', error.message);
+            return null;
+        }
+    }
+    static escapeJavaScript(str) {
+        if (typeof str !== 'string') {
+            return '';
+        }
+        return str.replace(/\\/g, '\\\\')
+            .replace(/'/g, "\\'")
+            .replace(/"/g, '\\"')
+            .replace(/\n/g, '\\n')
+            .replace(/\r/g, '\\r')
+            .replace(/\t/g, '\\t');
+    }
+}
+/**
+ * Legacy encryption class - Fixed to match original PHP algorithm
+ */
+class LegacyEncryption {
+    /**
+     * Decrypts using the original CryptX algorithm (matches PHP version)
+     * @param {string} encryptedString
+     * @returns {string}
+     */
+    static originalDecrypt(encryptedString) {
+        if (typeof encryptedString !== 'string' || encryptedString.length === 0) {
+            throw new Error('Invalid encrypted string');
+        }
+        // Constants from original algorithm
+        const UPPER_LIMIT = 8364;
+        const DEFAULT_VALUE = 128;
+        let charCode = 0;
+        let decryptedString = "mailto:";
+        let encryptionKey = 0;
+        try {
+            for (let i = 0; i < encryptedString.length; i += 2) {
+                if (i + 1 >= encryptedString.length) {
+                    break;
+                }
+                // Get the salt (encryption key) from current position
+                encryptionKey = parseInt(encryptedString.charAt(i), 10);
+                // Handle invalid salt values
+                if (isNaN(encryptionKey)) {
+                    encryptionKey = 0;
+                }
+                // Get the character code from next position
+                charCode = encryptedString.charCodeAt(i + 1);
+                // Apply the same logic as original
+                if (charCode >= UPPER_LIMIT) {
+                    charCode = DEFAULT_VALUE;
+                }
+                // Decrypt by subtracting the salt
+                const decryptedCharCode = charCode - encryptionKey;
+                // Validate the result
+                if (decryptedCharCode < 0 || decryptedCharCode > 1114111) {
+                    throw new Error('Invalid character code during decryption');
+                }
+                decryptedString += String.fromCharCode(decryptedCharCode);
+            }
+            return decryptedString;
+        } catch (error) {
+            throw new Error('Original decryption failed: ' + error.message);
+        }
+    }
+    /**
+     * Encrypts using the original CryptX algorithm (matches PHP version)
+     * @param {string} inputString
+     * @returns {string}
+     */
+    static originalEncrypt(inputString) {
+        if (typeof inputString !== 'string' || inputString.length === 0) {
+            throw new Error('Invalid input string');
+        }
+        // Remove "mailto:" prefix if present for encryption
+        const cleanInput = inputString.replace(/^mailto:/, '');
+        let crypt = '';
+        // ASCII values blacklist (from PHP constant)
+        const ASCII_VALUES_BLACKLIST = ['32', '34', '39', '60', '62', '63', '92', '94', '96', '127'];
+        try {
+            for (let i = 0; i < cleanInput.length; i++) {
+                let salt, asciiValue;
+                let attempts = 0;
+                const maxAttempts = 20; // Prevent infinite loops
+                do {
+                    if (attempts >= maxAttempts) {
+                        // Fallback to a safe salt if we can't find a valid one
+                        salt = 1;
+                        asciiValue = cleanInput.charCodeAt(i) + salt;
+                        break;
+                    }
+                    // Generate random number between 0 and 3 (matching PHP rand(0,3))
+                    const randomValues = SecureUtils.getSecureRandomBytes(1);
+                    salt = randomValues[0] % 4;
+                    // Get ASCII value and add salt
+                    asciiValue = cleanInput.charCodeAt(i) + salt;
+                    // Check if value exceeds limit (matching PHP logic)
+                    if (asciiValue >= 8364) {
+                        asciiValue = 128;
+                    }
+                    attempts++;
+                } while (ASCII_VALUES_BLACKLIST.includes(asciiValue.toString()) && attempts < maxAttempts);
+                // Append salt and character to result
+                crypt += salt.toString() + String.fromCharCode(asciiValue);
+            }
+            return crypt;
+        } catch (error) {
+            throw new Error('Original encryption failed: ' + error.message);
+        }
+    }
+}
+/**
+ * Modern encryption class using Web Crypto API - PHP Compatible
+ */
+class SecureEncryption {
+    static async deriveKey(password, salt) {
+        const encoder = new TextEncoder();
+        const keyMaterial = await crypto.subtle.importKey(
+            'raw',
+            encoder.encode(password),
+            { name: 'PBKDF2' },
+            false,
+            ['deriveKey']
+        );
+        return crypto.subtle.deriveKey(
+            {
+                name: 'PBKDF2',
+                salt: salt,
+                iterations: 100000,
+                hash: 'SHA-256'
+            },
+            keyMaterial,
+            { name: 'AES-GCM', length: 256 },
+            false,
+            ['encrypt', 'decrypt']
+        );
+    }
+    static async encrypt(plaintext, password) {
+        if (typeof plaintext !== 'string' || typeof password !== 'string') {
+            throw new Error('Both plaintext and password must be strings');
+        }
+        const encoder = new TextEncoder();
+        const salt = SecureUtils.getSecureRandomBytes(16);
+        const iv = SecureUtils.getSecureRandomBytes(CONFIG.IV_SIZE);
+        const key = await this.deriveKey(password, salt);
+        const encrypted = await crypto.subtle.encrypt(
+            { name: 'AES-GCM', iv: iv },
+            key,
+            encoder.encode(plaintext)
+        );
+        // Match PHP format: salt(16) + iv(16) + encrypted_data + tag(16)
+        const encryptedArray = new Uint8Array(encrypted);
+        const encryptedData = encryptedArray.slice(0, -16); // Remove tag from encrypted data
+        const tag = encryptedArray.slice(-16); // Get the tag
+        const combined = new Uint8Array(salt.length + iv.length + encryptedData.length + tag.length);
+        combined.set(salt, 0);
+        combined.set(iv, salt.length);
+        combined.set(encryptedData, salt.length + iv.length);
+        combined.set(tag, salt.length + iv.length + encryptedData.length);
+        return SecureUtils.arrayBufferToBase64(combined.buffer);
+    }
+    static async decrypt(encryptedData, password) {
+        if (typeof encryptedData !== 'string' || typeof password !== 'string') {
+            throw new Error('Both encryptedData and password must be strings');
+        }
+        try {
+            const combined = SecureUtils.base64ToArrayBuffer(encryptedData);
+            const totalLength = combined.byteLength;
+            // PHP format: salt(16) + iv(16) + encrypted_data + tag(16)
+            const saltLength = 16;
+            const ivLength = 16;
+            const tagLength = 16;
+            const encryptedDataLength = totalLength - saltLength - ivLength - tagLength;
+            if (totalLength < saltLength + ivLength + tagLength) {
+                throw new Error('Encrypted data too short');
+            }
+            const salt = combined.slice(0, saltLength);
+            const iv = combined.slice(saltLength, saltLength + ivLength);
+            const encryptedDataOnly = combined.slice(saltLength + ivLength, saltLength + ivLength + encryptedDataLength);
+            const tag = combined.slice(-tagLength); // Last 16 bytes
+            const key = await this.deriveKey(password, new Uint8Array(salt));
+            // Reconstruct the encrypted data with tag for Web Crypto API
+            const encryptedWithTag = new Uint8Array(encryptedDataOnly.byteLength + tag.byteLength);
+            encryptedWithTag.set(new Uint8Array(encryptedDataOnly), 0);
+            encryptedWithTag.set(new Uint8Array(tag), encryptedDataOnly.byteLength);
+            const decrypted = await crypto.subtle.decrypt(
+                { name: 'AES-GCM', iv: new Uint8Array(iv) },
+                key,
+                encryptedWithTag
+            );
+            const decoder = new TextDecoder();
+            return decoder.decode(decrypted);
+        } catch (error) {
+            throw new Error('Decryption failed: ' + error.message);
+        }
+    }
+}
+/**
+ * Main CryptX functions with backward compatibility
+ */
+/**
+ * Securely decrypts and validates a URL before navigation
+ * @param {string} encryptedUrl
+ * @param {string} password
+ */
+async function secureDecryptAndNavigate(encryptedUrl, password = 'default_key') {
+    if (typeof encryptedUrl !== 'string' || encryptedUrl.length === 0) {
+        console.error('Invalid encrypted URL provided');
+        return;
+    }
+    try {
+        let decryptedUrl;
+        // Try modern decryption first, then fall back to original algorithm
+        try {
+            decryptedUrl = await SecureEncryption.decrypt(encryptedUrl, password);
+        } catch (modernError) {
+            console.warn('Modern decryption failed, trying original algorithm');
+            decryptedUrl = LegacyEncryption.originalDecrypt(encryptedUrl);
+        }
+        const validatedUrl = SecureUtils.validateUrl(decryptedUrl);
+        if (!validatedUrl) {
+            console.error('Invalid or unsafe URL detected');
+            return;
+        }
+        window.location.href = validatedUrl;
+    } catch (error) {
+        console.error('Error during URL decryption and navigation:', error.message);
+    }
+}
+/**
+ * Legacy function for backward compatibility - using original algorithm
+ * @param {string} encryptedString
+ * @returns {string|null}
  */
 function DeCryptString(encryptedString) {
+    let charCode = 0;
+    let decryptedString = "mailto:";
+    let encryptionKey = 0;
+    for (let i = 0; i < encryptedString.length; i += 2) {
+        encryptionKey = encryptedString.substr(i, 1);
+        charCode = encryptedString.charCodeAt(i + 1);
+        if (charCode >= UPPER_LIMIT) {
+            charCode = DEFAULT_VALUE;
+        }
+        decryptedString += String.fromCharCode(charCode - encryptionKey);
+    }
+    return decryptedString;
+}
+/**
+ * Redirects the current page to the decrypted URL.
+ *
+ * @param {string} encryptedUrl - The encrypted URL to be decrypted and redirected to.
+ * @return {void}
+ */
+function DeCryptX( encryptedUrl )
+{
+    location.href=DeCryptString( encryptedUrl );
+}
+/**
+ * Generates a hashed string from the input string using a custom algorithm.
+ * The method applies a randomized salt to the ASCII values of the characters
+ * in the input string while avoiding certain blacklisted ASCII values.
+ *
+ * @param {string} inputString - The input string to be hashed.
+ * @return {string} The generated hash string.
+    try {
+        return LegacyEncryption.originalDecrypt(encryptedString);
+    } catch (error) {
+        console.error('Legacy decryption failed:', error.message);
+        return null;
+    }
+}
+/**
+ * Legacy function for backward compatibility - secured
+ * @param {string} encryptedUrl
+ */
+function DeCryptX(encryptedUrl) {
+    const decryptedUrl = DeCryptString(encryptedUrl);
+    if (!decryptedUrl) {
+        console.error('Failed to decrypt URL');
+        return;
+    }
+    const validatedUrl = SecureUtils.validateUrl(decryptedUrl);
+    if (!validatedUrl) {
+        console.error('Invalid or unsafe URL detected');
+        return;
+    }
+    window.location.href = validatedUrl;
+}
+/**
+ * Generates encrypted email link with proper security
+ * @param {string} emailAddress
+ * @param {string} password
+ * @returns {Promise<string>}
+ */
+async function generateSecureEmailLink(emailAddress, password = 'default_key') {
+    if (typeof emailAddress !== 'string' || emailAddress.length === 0) {
+        throw new Error('Valid email address required');
+    }
+    const emailRegex = /^[^\s@]+@[^\s@]+\.[^\s@]+$/;
+    if (!emailRegex.test(emailAddress)) {
+        throw new Error('Invalid email format');
+    }
+    const mailtoUrl = `mailto:${emailAddress}`;
+    const encryptedData = await SecureEncryption.encrypt(mailtoUrl, password);
+    const escapedData = SecureUtils.escapeJavaScript(encryptedData);
+    return `javascript:secureDecryptAndNavigate('${escapedData}', '${SecureUtils.escapeJavaScript(password)}')`;
+}
+/**
+ * Legacy function for backward compatibility - using original algorithm
+ * @param {string} emailAddress
+ * @returns {string}
+ */
+function generateDeCryptXHandler(emailAddress) {
+    if (typeof emailAddress !== 'string' || emailAddress.length === 0) {
+        console.error('Valid email address required');
+        return 'javascript:void(0)';
+    }
+    try {
+        const encrypted = LegacyEncryption.originalEncrypt(emailAddress);
+        const escaped = SecureUtils.escapeJavaScript(encrypted);
+        return `javascript:DeCryptX('${escaped}')`;
+    } catch (error) {
+        console.error('Error generating handler:', error.message);
+        return 'javascript:void(0)';
+    }
+}
+/**
+ * Legacy function - matches original PHP generateHashFromString
+ * @param {string} inputString
+ * @returns {string}
  */
 function generateHashFromString(inputString) {
+    // Replace & with itself (this line seems redundant in the original PHP code)
+    inputString = inputString.replace("&", "&");
+    let crypt = '';
+    // ASCII values blacklist (taken from the PHP constant)
+    const ASCII_VALUES_BLACKLIST = ['32', '34', '39', '60', '62', '63', '92', '94', '96', '127'];
+    for (let i = 0; i < inputString.length; i++) {
+        let salt, asciiValue;
+        do {
+            // Generate random number between 0 and 3
+            salt = Math.floor(Math.random() * 4);
+            // Get ASCII value and add salt
+            asciiValue = inputString.charCodeAt(i) + salt;
+            // Check if value exceeds limit
+            if (8364 <= asciiValue) {
+                asciiValue = 128;
+            }
+        } while (ASCII_VALUES_BLACKLIST.includes(asciiValue.toString()));
+        // Append salt and character to result
+        crypt += salt + String.fromCharCode(asciiValue);
+    }
+    return crypt;
+}
+/**
+ * Generates a DeCryptX handler URL with a hashed email address.
+ *
+ * @param {string} emailAddress - The email address to be hashed and included in the handler URL.
+ * @return {string} A string representing the JavaScript DeCryptX handler with the hashed email address.
+ */
+function generateDeCryptXHandler(emailAddress) {
+    return `javascript:DeCryptX('${generateHashFromString(emailAddress)}')`;
+}
+    try {
+        return LegacyEncryption.originalEncrypt(inputString);
+    } catch (error) {
+        console.error('Error generating hash:', error.message);
+        return '';
+    }
+}
+// Export functions for module usage
+if (typeof module !== 'undefined' && module.exports) {
+    module.exports = {
+        secureDecryptAndNavigate,
+        generateSecureEmailLink,
+        DeCryptX,
+        DeCryptString,
+        generateDeCryptXHandler,
+        generateHashFromString,
+        SecureEncryption,
+        LegacyEncryption,
+        SecureUtils
+    };
+}

cryptx/tags/4.0.0/js/cryptx.min.js

r3323475	r3339444
1		const UPPER_LIMIT=8364,DEFAULT_VALUE=128;function DeCryptString(t){let r=0,e="mailto:",n=0;for(let o=0;o<t.length;o+=2)n=t.substr(o,1),r=t.charCodeAt(o+1),r>=8364&&(r=128),e+=String.fromCharCode(r-n);return e}function DeCryptX(t){location.href=DeCryptString(t)}function generateHashFromString(t){t=t.replace("&","&");let r="";const e=["32","34","39","60","62","63","92","94","96","127"];for(let n=0;n<t.length;n++){let o,a;do{o=Math.floor(4*Math.random()),a=t.charCodeAt(n)+o,8364<=a&&(a=128)}while(e.includes(a.toString()));r+=o+String.fromCharCode(a)}return r}function generateDeCryptXHandler(t){return`javascript:DeCryptX('${generateHashFromString(t)}')`}
	1	const CONFIG={ALLOWED_PROTOCOLS:["http:","https:","mailto:"],MAX_URL_LENGTH:2048,ENCRYPTION_KEY_SIZE:32,IV_SIZE:16};class SecureUtils{static getSecureRandomBytes(e){if("undefined"==typeof crypto\|\|!crypto.getRandomValues)throw new Error("Secure random number generation not available");return crypto.getRandomValues(new Uint8Array(e))}static arrayBufferToBase64(e){const r=new Uint8Array(e);let t="";for(let e=0;e<r.byteLength;e++)t+=String.fromCharCode(r[e]);return btoa(t)}static base64ToArrayBuffer(e){const r=atob(e),t=new ArrayBuffer(r.length),n=new Uint8Array(t);for(let e=0;e<r.length;e++)n[e]=r.charCodeAt(e);return t}static validateUrl(e){if("string"!=typeof e\|\|0===e.length)return null;if(e.length>CONFIG.MAX_URL_LENGTH)return console.error("URL exceeds maximum length"),null;try{const r=new URL(e);if(!CONFIG.ALLOWED_PROTOCOLS.includes(r.protocol))return console.error("Protocol not allowed:",r.protocol),null;if("mailto:"===r.protocol){if(!/^[^\s@]+@[^\s@]+\.[^\s@]+$/.test(r.pathname))return console.error("Invalid email format in mailto URL"),null}return e}catch(e){return console.error("Invalid URL format:",e.message),null}}static escapeJavaScript(e){return"string"!=typeof e?"":e.replace(/\\/g,"\\\\").replace(/'/g,"\\'").replace(/"/g,'\\"').replace(/\n/g,"\\n").replace(/\r/g,"\\r").replace(/\t/g,"\\t")}}class LegacyEncryption{static originalDecrypt(e){if("string"!=typeof e\|\|0===e.length)throw new Error("Invalid encrypted string");let r=0,t="mailto:",n=0;try{for(let a=0;a<e.length&&!(a+1>=e.length);a+=2){n=parseInt(e.charAt(a),10),isNaN(n)&&(n=0),r=e.charCodeAt(a+1),r>=8364&&(r=128);const o=r-n;if(o<0\|\|o>1114111)throw new Error("Invalid character code during decryption");t+=String.fromCharCode(o)}return t}catch(e){throw new Error("Original decryption failed: "+e.message)}}static originalEncrypt(e){if("string"!=typeof e\|\|0===e.length)throw new Error("Invalid input string");const r=e.replace(/^mailto:/,"");let t="";const n=["32","34","39","60","62","63","92","94","96","127"];try{for(let e=0;e<r.length;e++){let a,o,i=0;const c=20;do{if(i>=c){a=1,o=r.charCodeAt(e)+a;break}a=SecureUtils.getSecureRandomBytes(1)[0]%4,o=r.charCodeAt(e)+a,o>=8364&&(o=128),i++}while(n.includes(o.toString())&&i<c);t+=a.toString()+String.fromCharCode(o)}return t}catch(e){throw new Error("Original encryption failed: "+e.message)}}}class SecureEncryption{static async deriveKey(e,r){const t=new TextEncoder,n=await crypto.subtle.importKey("raw",t.encode(e),{name:"PBKDF2"},!1,["deriveKey"]);return crypto.subtle.deriveKey({name:"PBKDF2",salt:r,iterations:1e5,hash:"SHA-256"},n,{name:"AES-GCM",length:256},!1,["encrypt","decrypt"])}static async encrypt(e,r){if("string"!=typeof e\|\|"string"!=typeof r)throw new Error("Both plaintext and password must be strings");const t=new TextEncoder,n=SecureUtils.getSecureRandomBytes(16),a=SecureUtils.getSecureRandomBytes(CONFIG.IV_SIZE),o=await this.deriveKey(r,n),i=await crypto.subtle.encrypt({name:"AES-GCM",iv:a},o,t.encode(e)),c=new Uint8Array(i),s=c.slice(0,-16),l=c.slice(-16),y=new Uint8Array(n.length+a.length+s.length+l.length);return y.set(n,0),y.set(a,n.length),y.set(s,n.length+a.length),y.set(l,n.length+a.length+s.length),SecureUtils.arrayBufferToBase64(y.buffer)}static async decrypt(e,r){if("string"!=typeof e\|\|"string"!=typeof r)throw new Error("Both encryptedData and password must be strings");try{const t=SecureUtils.base64ToArrayBuffer(e),n=t.byteLength,a=16,o=16,i=16,c=n-a-o-i;if(n<a+o+i)throw new Error("Encrypted data too short");const s=t.slice(0,a),l=t.slice(a,a+o),y=t.slice(a+o,a+o+c),g=t.slice(-i),d=await this.deriveKey(r,new Uint8Array(s)),p=new Uint8Array(y.byteLength+g.byteLength);p.set(new Uint8Array(y),0),p.set(new Uint8Array(g),y.byteLength);const u=await crypto.subtle.decrypt({name:"AES-GCM",iv:new Uint8Array(l)},d,p);return(new TextDecoder).decode(u)}catch(e){throw new Error("Decryption failed: "+e.message)}}}async function secureDecryptAndNavigate(e,r="default_key"){if("string"==typeof e&&0!==e.length)try{let t;try{t=await SecureEncryption.decrypt(e,r)}catch(r){console.warn("Modern decryption failed, trying original algorithm"),t=LegacyEncryption.originalDecrypt(e)}const n=SecureUtils.validateUrl(t);if(!n)return void console.error("Invalid or unsafe URL detected");window.location.href=n}catch(e){console.error("Error during URL decryption and navigation:",e.message)}else console.error("Invalid encrypted URL provided")}function DeCryptString(e){try{return LegacyEncryption.originalDecrypt(e)}catch(e){return console.error("Legacy decryption failed:",e.message),null}}function DeCryptX(e){const r=DeCryptString(e);if(!r)return void console.error("Failed to decrypt URL");const t=SecureUtils.validateUrl(r);t?window.location.href=t:console.error("Invalid or unsafe URL detected")}async function generateSecureEmailLink(e,r="default_key"){if("string"!=typeof e\|\|0===e.length)throw new Error("Valid email address required");if(!/^[^\s@]+@[^\s@]+\.[^\s@]+$/.test(e))throw new Error("Invalid email format");const t=`mailto:${e}`,n=await SecureEncryption.encrypt(t,r);return`javascript:secureDecryptAndNavigate('${SecureUtils.escapeJavaScript(n)}', '${SecureUtils.escapeJavaScript(r)}')`}function generateDeCryptXHandler(e){if("string"!=typeof e\|\|0===e.length)return console.error("Valid email address required"),"javascript:void(0)";try{const r=LegacyEncryption.originalEncrypt(e);return`javascript:DeCryptX('${SecureUtils.escapeJavaScript(r)}')`}catch(e){return console.error("Error generating handler:",e.message),"javascript:void(0)"}}function generateHashFromString(e){try{return LegacyEncryption.originalEncrypt(e)}catch(e){return console.error("Error generating hash:",e.message),""}}"undefined"!=typeof module&&module.exports&&(module.exports={secureDecryptAndNavigate:secureDecryptAndNavigate,generateSecureEmailLink:generateSecureEmailLink,DeCryptX:DeCryptX,DeCryptString:DeCryptString,generateDeCryptXHandler:generateDeCryptXHandler,generateHashFromString:generateHashFromString,SecureEncryption:SecureEncryption,LegacyEncryption:LegacyEncryption,SecureUtils:SecureUtils});

cryptx/tags/4.0.0/readme.txt

-                      r3335910
+                      r3339444
 Contributors: d3395
 Donate link: https://www.paypal.com/cgi-bin/webscr?cmd=_s-xclick&hosted_button_id=4026696
 Tags: antispam, email, mail, addresses
 Requires at least: 6.0
+Tags: antispam, email, mail, addresses, spam protection, email encryption, privacy
+Requires at least: 6.7
 Tested up to: 6.8
 Stable tag: 3.5.2
 Requires PHP: 8.0
+Stable tag: 4.0.0
+Requires PHP: 8.1
 License: GPLv2 or later
 License URI: https://www.gnu.org/licenses/gpl-2.0.html
 …
 No more SPAM by spiders scanning you site for email addresses. With CryptX you can hide all your email addresses, with and without a mailto-link, by converting them using javascript or UNICODE.
+CryptX protects your email addresses from spam bots while keeping them readable and functional for your visitors. The plugin automatically detects email addresses in your content and encrypts them using various methods including JavaScript encryption, Unicode conversion, and image replacement.
+**Key Features:**
+* **Automatic Email Detection** - Finds and encrypts email addresses in posts, pages, comments, and widgets
+* **Multiple Encryption Methods** - JavaScript, Unicode, image replacement, and custom text options
+* **Widget Support** - Works with text widgets and other widget content
+* **RSS Feed Control** - Option to disable encryption in RSS feeds
+* **Whitelist Support** - Exclude specific domains from encryption
+* **Per-Post Control** - Enable/disable encryption on individual posts and pages
+* **Shortcode Support** - Use `[cryptx][email protected][/cryptx]` for manual encryption
+* **Template Functions** - Developer-friendly functions for theme integration
 [Plugin Homepage](http://weber-nrw.de/wordpress/cryptx/ "Plugin Homepage")
 == Screenshots ==
+. Plugin settings
+. Template functions
+. Plugin settings - General configuration options
+. Email encryption methods and display options
+. Advanced settings and whitelist configuration
+== Installation ==
+. Upload the CryptX folder to the `/wp-content/plugins/` directory
+. Activate the plugin through the 'Plugins' menu in WordPress
+. Configure the plugin settings under Settings > CryptX
+. Your email addresses will now be automatically protected!
+== Frequently Asked Questions ==
+= How does CryptX protect my email addresses? =
+CryptX uses various methods to hide email addresses from spam bots while keeping them functional for visitors. Methods include JavaScript encryption, Unicode conversion, and replacing emails with images or custom text.
+= Will this affect my website's performance? =
+CryptX is designed to be lightweight and only loads JavaScript when needed. The performance impact is minimal.
+= Can I exclude certain email addresses from encryption? =
+Yes, you can use the whitelist feature to exclude specific domains or email addresses from encryption.
+= Does it work with contact forms? =
+CryptX primarily works with email addresses displayed in content. It doesn't interfere with contact forms or other form functionality.
+= Can I disable encryption on specific posts? =
+Yes, you can enable the meta box feature to control encryption on individual posts and pages.
+For more information, visit the [Plugin Homepage](http://weber-nrw.de/wordpress/cryptx/ "Plugin Homepage")
 == Changelog ==
+= 4.0.0 =
+* **Major Update**: Complete code refactoring and modernization
+* Improved PHP 8.1+ compatibility and performance
+* Enhanced plugin architecture with better separation of concerns
+* Improved widget filtering and universal widget support
+* Better error handling and debugging capabilities
+* Updated minimum requirements: WordPress 6.7+ and PHP 8.1+
+* Improved security and code quality
+* Enhanced admin interface and settings organization
+* Better handling of complex HTML structures and multiline content
 = 3.5.2 =
 * Fixed a bug where activating CryptX for the first time caused a PHP Fatal error
 …
 * Add Option to disable CryptX on single post/page
-== Installation ==
-. Upload "cryptX folder" to the `/wp-content/plugins/` directory
-. Activate the plugin through the 'Plugins' menu in WordPress
-. Edit the Options under the Options Page.
-. Look at your Blog and be happy.
 == Upgrade Notice ==
+Nothing special to do.
+== Frequently Asked Questions ==
+[Plugin Homepage](http://weber-nrw.de/wordpress/cryptx/ "Plugin Homepage")
+= 4.0.0 =
+Major update with improved PHP 8.1+ compatibility, enhanced performance, and modernized codebase. Please test on a staging site first. Minimum requirements: WordPress 6.7+ and PHP 8.1+.
+= 3.5.2 =
+Bug fixes for activation errors and Elementor compatibility issues.

cryptx/tags/4.0.0/templates/admin/tabs/general.php

-                      r3323475
+                      r3339444
+<?php
+/**
+ * CryptX General Settings Tab Template
+ *
+ * @var array $options
+ * @var array $applyTo
+ * @var array $decryptionType
+ * @var array $javascriptLocation
+ * @var string $excludedIds
+ * @var bool $metaBox
+ * @var bool $autolink
+ * @var string $whiteList
+ */
+defined('ABSPATH') || exit;
+?>
+<h4><?php esc_html_e("General", 'cryptx'); ?></h4>
+<table class="form-table" role="presentation">
+    <!-- Apply CryptX Section -->
+    <tr>
+        <th scope="row"><?php _e("Apply CryptX to...", 'cryptx'); ?></th>
+        <td>
+            <?php foreach ($applyTo as $key => $setting): ?>
+                <label>
+                    <input type="checkbox"
+                           name="cryptX_var[<?php echo esc_attr($key); ?>]"
+                           value="1"
+                        <?php checked($options[$key] ?? 0, 1); ?> />
+                    <?php echo esc_html($setting['label']); ?>
+                    <?php if (isset($setting['description'])): ?>
+                        <small><?php echo esc_html($setting['description']); ?></small>
+                    <?php endif; ?>
+                </label><br/>
+            <?php endforeach; ?>
+        </td>
+    </tr>
+    <tr class="spacer">
+        <td colspan="2"><hr></td>
+    </tr>
+    <!-- RSS Feed Section -->
+    <tr>
+        <th scope="row" colspan="2">
+            <label>
+                <input name="cryptX_var[disable_rss]"
+                       type="checkbox"
+                       value="1"
+                    <?php checked($options['disable_rss'] ?? true, 1); ?> />
+                <?php esc_html_e("Disable CryptX in RSS feeds", 'cryptx'); ?>
+            </label>
+            <p class="description">
+                <?php esc_html_e("When enabled, email addresses in RSS feeds will not be encrypted.", 'cryptx'); ?>
+            </p>
+        </th>
+    </tr>
+    <tr class="spacer">
+        <td colspan="2"><hr></td>
+    </tr>
+    <!-- Excluded IDs Section -->
+    <tr>
+        <th scope="row"><?php esc_html_e("Excluded ID's...", 'cryptx'); ?></th>
+        <td>
+            <input name="cryptX_var[excludedIDs]"
+                   type="text"
+                   value="<?php echo esc_attr($excludedIds); ?>"
+                   class="regular-text" />
+            <p class="description">
+                <?php esc_html_e("Enter all Page/Post ID's to exclude from CryptX as comma separated list.", 'cryptx'); ?>
+            </p>
+            <label>
+                <input name="cryptX_var[metaBox]"
+                       type="checkbox"
+                       value="1"
+                    <?php checked($metaBox, 1); ?> />
+                <?php esc_html_e("Enable the CryptX Widget on editing a post or page.", 'cryptx'); ?>
+            </label>
+        </td>
+    </tr>
+    <tr class="spacer">
+        <td colspan="2"><hr></td>
+    </tr>
+    <!-- Decryption Type Section -->
+    <tr>
+        <th scope="row"><?php esc_html_e("Type of decryption", 'cryptx'); ?></th>
+        <td>
+            <?php foreach ($decryptionType as $type): ?>
+                <label>
+                    <input name="cryptX_var[java]"
+                           type="radio"
+                           value="<?php echo esc_attr($type['value']); ?>"
+                           <?php checked($options['java'], $type['value']); ?> />
+                    <?php echo esc_html($type['label']); ?>
+                </label><br />
+            <?php endforeach; ?>
+        </td>
+    </tr>
+    <tr class="spacer">
+        <td colspan="2"><hr></td>
+    </tr>
+    <!-- JavaScript Location Section -->
+    <tr>
+        <th scope="row"><?php esc_html_e("Where to load the needed javascript...", 'cryptx'); ?></th>
+        <td>
+            <?php foreach ($javascriptLocation as $location): ?>
+                <label>
+                    <input name="cryptX_var[load_java]"
+                           type="radio"
+                           value="<?php echo esc_attr($location['value']); ?>"
+                        <?php //checked(get_option('load_java'), $location['value']); ?>
+                        <?php checked($options['load_java'], $location['value']); ?> />
+                    <?php echo wp_kses($location['label'], ['b' => []]); ?>
+                </label><br />
+            <?php endforeach; ?>
+        </td>
+    </tr>
+    <tr class="spacer">
+        <td colspan="2"><hr></td>
+    </tr>
+    <!-- Autolink Section -->
+    <tr>
+        <th scope="row" colspan="2">
+            <label>
+                <input name="cryptX_var[autolink]"
+                       type="checkbox"
+                       value="1"
+                    <?php checked($autolink, 1); ?> />
+                <?php esc_html_e("Add mailto to all unlinked email addresses", 'cryptx'); ?>
+            </label>
+        </th>
+    </tr>
+    <tr class="spacer">
+        <td colspan="2"><hr></td>
+    </tr>
+    <!-- Whitelist Section -->
+    <tr>
+        <th scope="row"><?php esc_html_e("Whitelist of extensions", 'cryptx'); ?></th>
+        <td>
+            <input name="cryptX_var[whiteList]"
+                   type="text"
+                   value="<?php echo esc_attr($whiteList); ?>"
+                   class="regular-text" />
+            <p class="description">
+                <?php echo wp_kses(
+                    __("<strong>This is a workaround for the 'retina issue'.</strong><br/>You can provide a comma separated list of extensions like 'jpeg,jpg,png,gif' which will be ignored by CryptX.", 'cryptx'),
+                    ['strong' => [], 'br' => []]
+                ); ?>
+            </p>
+        </td>
+    </tr>
+    <tr class="spacer">
+        <td colspan="2"><hr></td>
+    </tr>
+    <!-- Reset Options Section -->
+    <tr>
+        <th scope="row" colspan="2" class="warning">
+            <label>
+                <input name="cryptX_var_reset"
+                       type="checkbox"
+                       value="1" />
+                <?php esc_html_e("Reset CryptX options to defaults. Use it carefully and at your own risk. All changes will be deleted!", 'cryptx'); ?>
+            </label>
+        </th>
+    </tr>
+</table>
+<input type="hidden" name="cryptX_save_general_settings" value="true">
+<?php submit_button(__('Save General Settings', 'cryptx'), 'primary', 'cryptX_save_general_settings'); ?>
+<?php if (!defined('ABSPATH')) exit; ?>
+<div class="cryptx-tab-content cryptx-general-settings">
+    <table class="form-table">
+        <!-- Security Settings Section -->
+        <tr>
+            <th colspan="2">
+                <h3 style="margin: 20px 0 10px 0; padding: 10px 0; border-bottom: 1px solid #ddd;">
+                    <?php _e('Encryption Mode', 'cryptx'); ?>
+                </h3>
+            </th>
+        </tr>
+        <tr>
+            <th scope="row"><?php echo $securitySettings['encryption_mode']['label']; ?></th>
+            <td>
+                <select name="cryptX_var[encryption_mode]" id="encryption_mode">
+                    <?php foreach ($securitySettings['encryption_mode']['options'] as $value => $label): ?>
+                        <option value="<?php echo esc_attr($value); ?>" <?php selected($securitySettings['encryption_mode']['value'], $value); ?>>
+                            <?php echo esc_html($label); ?>
+                        </option>
+                    <?php endforeach; ?>
+                </select>
+                <p class="description">
+                    <?php echo $securitySettings['encryption_mode']['description']; ?>
+                    <br/>
+                    <strong><?php _e('Legacy:', 'cryptx'); ?></strong> <?php _e('Uses the original CryptX encryption algorithm for backward compatibility.', 'cryptx'); ?><br/>
+                    <strong><?php _e('Secure:', 'cryptx'); ?></strong> <?php _e('Uses modern AES-256-GCM encryption with PBKDF2 key derivation for enhanced security.', 'cryptx'); ?>
+                </p>
+                <!-- Hidden checkbox that gets set based on the dropdown -->
+                <input type="hidden" name="cryptX_var[use_secure_encryption]" id="use_secure_encryption"
+                       value="<?php echo $securitySettings['use_secure_encryption']['value']; ?>" />
+            </td>
+        </tr>
+        <!-- Separator -->
+        <tr>
+            <th colspan="2">
+                <h3 style="margin: 20px 0 10px 0; padding: 10px 0; border-bottom: 1px solid #ddd;">
+                    <?php _e('General Settings', 'cryptx'); ?>
+                </h3>
+            </th>
+        </tr>
+        <!-- Apply CryptX to Section -->
+        <tr>
+            <th scope="row"><?php _e('Apply CryptX to', 'cryptx'); ?></th>
+            <td>
+                <fieldset>
+                    <?php foreach ($applyTo as $key => $setting): ?>
+                        <label for="<?php echo esc_attr($key); ?>">
+                            <input type="hidden" name="cryptX_var[<?php echo esc_attr($key); ?>]" value="0" />
+                            <input type="checkbox"
+                                   id="<?php echo esc_attr($key); ?>"
+                                   name="cryptX_var[<?php echo esc_attr($key); ?>]"
+                                   value="1"
+                                <?php checked($options[$key] ?? 0, 1); ?> />
+                            <?php echo esc_html($setting['label']); ?>
+                            <?php if (isset($setting['description'])): ?>
+                                <span class="description"><?php echo esc_html($setting['description']); ?></span>
+                            <?php endif; ?>
+                        </label><br />
+                    <?php endforeach; ?>
+                </fieldset>
+            </td>
+        </tr>
+        <!-- Decryption Type -->
+        <tr>
+            <th scope="row"><?php _e('Decryption type', 'cryptx'); ?></th>
+            <td>
+                <fieldset>
+                    <?php foreach ($decryptionType as $key => $setting): ?>
+                        <label for="java_<?php echo esc_attr($key); ?>">
+                            <input type="radio"
+                                   id="java_<?php echo esc_attr($key); ?>"
+                                   name="cryptX_var[java]"
+                                   value="<?php echo esc_attr($setting['value']); ?>"
+                                <?php checked($options['java'] ?? 1, $setting['value']); ?> />
+                            <?php echo $setting['label']; ?>
+                        </label><br />
+                    <?php endforeach; ?>
+                </fieldset>
+            </td>
+        </tr>
+        <!-- JavaScript Location -->
+        <tr>
+            <th scope="row"><?php _e('Javascript location', 'cryptx'); ?></th>
+            <td>
+                <fieldset>
+                    <?php foreach ($javascriptLocation as $key => $setting): ?>
+                        <label for="load_java_<?php echo esc_attr($key); ?>">
+                            <input type="radio"
+                                   id="load_java_<?php echo esc_attr($key); ?>"
+                                   name="cryptX_var[load_java]"
+                                   value="<?php echo esc_attr($setting['value']); ?>"
+                                <?php checked($options['load_java'] ?? 1, $setting['value']); ?> />
+                            <?php echo $setting['label']; ?>
+                        </label><br />
+                    <?php endforeach; ?>
+                </fieldset>
+            </td>
+        </tr>
+        <!-- Additional Options -->
+        <tr>
+            <th scope="row"><?php _e('Additional options', 'cryptx'); ?></th>
+            <td>
+                <fieldset>
+                    <label for="autolink">
+                        <input type="hidden" name="cryptX_var[autolink]" value="0" />
+                        <input type="checkbox"
+                               id="autolink"
+                               name="cryptX_var[autolink]"
+                               value="1"
+                            <?php checked($options['autolink'] ?? 0, 1); ?> />
+                        <?php _e('Automatically add a link to non-linked email addresses.', 'cryptx'); ?>
+                    </label><br />
+                    <label for="metaBox">
+                        <input type="hidden" name="cryptX_var[metaBox]" value="0" />
+                        <input type="checkbox"
+                               id="metaBox"
+                               name="cryptX_var[metaBox]"
+                               value="1"
+                            <?php checked($options['metaBox'] ?? 0, 1); ?> />
+                        <?php _e('Show the "Disable CryptX" checkbox in the post editor.', 'cryptx'); ?>
+                    </label><br />
+                    <label for="disable_rss">
+                        <input type="hidden" name="cryptX_var[disable_rss]" value="0" />
+                        <input type="checkbox"
+                               id="disable_rss"
+                               name="cryptX_var[disable_rss]"
+                               value="1"
+                            <?php checked($options['disable_rss'] ?? 1, 1); ?> />
+                        <?php _e('Disable CryptX in RSS feeds.', 'cryptx'); ?>
+                    </label>
+                </fieldset>
+            </td>
+        </tr>
+        <!-- Excluded Post IDs -->
+        <tr>
+            <th scope="row">
+                <label for="excludedIDs"><?php _e('Excluded posts/pages IDs', 'cryptx'); ?></label>
+            </th>
+            <td>
+                <input type="text"
+                       id="excludedIDs"
+                       name="cryptX_var[excludedIDs]"
+                       value="<?php echo esc_attr($options['excludedIDs'] ?? ''); ?>"
+                       class="regular-text" />
+                <p class="description">
+                    <?php _e('Comma-separated list of post/page IDs where CryptX should be disabled.', 'cryptx'); ?>
+                </p>
+            </td>
+        </tr>
+        <!-- Whitelist -->
+        <tr>
+            <th scope="row">
+                <label for="whiteList"><?php _e('Whitelist', 'cryptx'); ?></label>
+            </th>
+            <td>
+                <input type="text"
+                       id="whiteList"
+                       name="cryptX_var[whiteList]"
+                       value="<?php echo esc_attr($options['whiteList'] ?? 'jpeg,jpg,png,gif'); ?>"
+                       class="regular-text" />
+                <p class="description">
+                    <?php _e('Comma-separated list of file extensions that should not be encrypted when found in email addresses.', 'cryptx'); ?>
+                </p>
+            </td>
+        </tr>
+    </table>
+    <!-- Submit Button -->
+    <p class="submit">
+        <input type="submit"
+               name="cryptX_save_general_settings"
+               class="button-primary"
+               value="<?php _e('Save Changes', 'cryptx'); ?>" />
+        <input type="submit"
+               name="cryptX_var_reset"
+               class="button-secondary"
+               value="<?php _e('Reset to Defaults', 'cryptx'); ?>"
+               onclick="return confirm('<?php _e('Are you sure you want to reset all settings to defaults?', 'cryptx'); ?>');" />
+    </p>
+</div>
+<script>
+    // Auto-sync the dropdown with the hidden checkbox
+    document.addEventListener('DOMContentLoaded', function() {
+        const encryptionModeSelect = document.getElementById('encryption_mode');
+        const useSecureEncryption = document.getElementById('use_secure_encryption');
+        if (encryptionModeSelect && useSecureEncryption) {
+            // Set initial value
+            useSecureEncryption.value = (encryptionModeSelect.value === 'secure') ? '1' : '0';
+            // Update on change
+            encryptionModeSelect.addEventListener('change', function() {
+                useSecureEncryption.value = (this.value === 'secure') ? '1' : '0';
+            });
+        }
+    });
+</script>

cryptx/tags/4.0.0/templates/admin/tabs/howto.php

-                      r3323475
+                      r3339444
 ?>
+<h4><?php esc_html_e("How to use CryptX in your Template", 'cryptx'); ?></h4>
+<div class="cryptx-documentation">
+    <p>The <code>[cryptx]</code> shortcode allows you to protect email addresses from spam bots in your WordPress posts
+        and pages, even when CryptX is disabled globally for that content.</p>
+    <h3>Basic Usage</h3>
+    <pre><code>[cryptx][email protected][/cryptx]</code></pre>
+    <h3>Advanced Usage</h3>
+    <pre><code>[cryptx linktext="Contact Us" subject="Website Inquiry"][email protected][/cryptx]</code></pre>
+    <h4>Available Attributes</h4>
+    <table class="cryptx-attributes">
+        <thead>
+        <tr>
+            <th>Attribute</th>
+            <th>Description</th>
+            <th>Default</th>
+            <th>Example</th>
+        </tr>
+        </thead>
+        <tbody>
+        <tr>
+            <td><code>linktext</code></td>
+            <td>Custom text to display instead of the email address</td>
+            <td>Email address</td>
+            <td><code>linktext="Contact Us"</code></td>
+        </tr>
+        <tr>
+            <td><code>subject</code></td>
+            <td>Pre-defined subject line for the email</td>
+            <td>None</td>
+            <td><code>subject="Website Inquiry"</code></td>
+        </tr>
+        </tbody>
+    </table>
+    <h3>Examples</h3>
+    <h4>1. Basic Email Protection</h4>
+    <pre><code>[cryptx][email protected][/cryptx]</code></pre>
+    <p>Displays: A protected version of [email protected]</p>
+    <h4>2. Custom Link Text</h4>
+    <pre><code>[cryptx linktext="Send us an email"][email protected][/cryptx]</code></pre>
+    <p>Displays: "Send us an email" as a protected link</p>
+    <h4>3. With Subject Line</h4>
+    <pre><code>[cryptx subject="Product Inquiry"][email protected][/cryptx]</code></pre>
+    <p>Creates a link that opens the email client with a pre-filled subject line</p>
+    <h3>Best Practices</h3>
+    <ul>
+        <li>Use the shortcode when you need to protect individual email addresses in content where CryptX is disabled
+            globally
+        </li>
+        <li>Consider using custom link text for better user experience</li>
+        <li>Use meaningful subject lines when applicable</li>
+        <li>Don't nest shortcodes within the email address</li>
+    </ul>
+    <h3>Troubleshooting</h3>
+    <ul>
+        <li><strong>Email Not Protected:</strong> Ensure the shortcode syntax is correct with both opening and closing
+            tags
+        </li>
+        <li><strong>Link Not Working:</strong> Verify that JavaScript is enabled in the browser</li>
+        <li><strong>Strange Characters:</strong> Make sure the email address format is valid</li>
+    </ul>
+    <div class="cryptx-notes">
+        <h4>Important Notes</h4>
+        <ul>
+            <li>The shortcode works independently of global CryptX settings</li>
+            <li>JavaScript must be enabled in the visitor's browser</li>
+            <li>Email addresses are protected using JavaScript encryption</li>
+        </ul>
+    </div>
+    <div class="cryptx-version">
+        <p><strong>Available since:</strong> Version 2.7</p>
+    </div>
+</div>
+<h4><?php esc_html_e("How to use CryptX javascript function", 'cryptx'); ?></h4>
+<div class="cryptx-documentation">
+    <h2>JavaScript Email Protection Functions</h2>
+    <p>This section describes the JavaScript functions available for email protection in CryptX.</p>
+    <h3>generateDeCryptXHandler()</h3>
+    <p>A JavaScript function that generates an encrypted handler for email address protection.
+        This function creates a special URL format that encrypts email addresses to protect them
+        from spam bots while keeping them clickable for real users.</p>
+    <h4>Parameters</h4>
+    <ul>
+        <li><code>emailAddress</code> (string) - The email address to encrypt (e.g., "[email protected]")</li>
+    </ul>
+    <h4>Returns</h4>
+    <ul>
+        <li>(string) A JavaScript handler string in the format "javascript:DeCryptX('encrypted_string')"</li>
+    </ul>
+    <h4>Examples</h4>
+    <p>Basic usage in JavaScript:</p>
+    <pre><code class="language-javascript">const handler = generateDeCryptXHandler("[email protected]");
+<div class="cryptx-tab-content cryptx-howto-settings">
+    <table class="form-table">
+        <!-- Shortcode Usage Section -->
+        <tr>
+            <th colspan="2">
+                <h3 style="margin: 20px 0 10px 0; padding: 10px 0; border-bottom: 1px solid #ddd;">
+                    <?php esc_html_e("How to use CryptX Shortcode", 'cryptx'); ?>
+                </h3>
+            </th>
+        </tr>
+        <tr>
+            <th scope="row"><?php esc_html_e("Basic Usage", 'cryptx'); ?></th>
+            <td>
+                <p><?php esc_html_e("The [cryptx] shortcode allows you to protect email addresses from spam bots in your WordPress posts and pages, even when CryptX is disabled globally for that content.", 'cryptx'); ?></p>
+                <pre><code>[cryptx][email protected][/cryptx]</code></pre>
+                <p class="description"><?php esc_html_e("Displays: A protected version of [email protected]", 'cryptx'); ?></p>
+            </td>
+        </tr>
+        <tr>
+            <th scope="row"><?php esc_html_e("Advanced Usage", 'cryptx'); ?></th>
+            <td>
+                <pre><code>[cryptx linktext="Contact Us" subject="Website Inquiry"][email protected][/cryptx]</code></pre>
+                <p class="description"><?php esc_html_e("Creates a link with custom text and pre-filled subject line.", 'cryptx'); ?></p>
+            </td>
+        </tr>
+        <tr>
+            <th scope="row"><?php esc_html_e("Available Attributes", 'cryptx'); ?></th>
+            <td>
+                <table class="widefat striped">
+                    <thead>
+                    <tr>
+                        <th><?php esc_html_e("Attribute", 'cryptx'); ?></th>
+                        <th><?php esc_html_e("Description", 'cryptx'); ?></th>
+                        <th><?php esc_html_e("Default", 'cryptx'); ?></th>
+                        <th><?php esc_html_e("Example", 'cryptx'); ?></th>
+                    </tr>
+                    </thead>
+                    <tbody>
+                    <tr>
+                        <td><code>linktext</code></td>
+                        <td><?php esc_html_e("Custom text to display instead of the email address", 'cryptx'); ?></td>
+                        <td><?php esc_html_e("Email address", 'cryptx'); ?></td>
+                        <td><code>linktext="Contact Us"</code></td>
+                    </tr>
+                    <tr>
+                        <td><code>subject</code></td>
+                        <td><?php esc_html_e("Pre-defined subject line for the email", 'cryptx'); ?></td>
+                        <td><?php esc_html_e("None", 'cryptx'); ?></td>
+                        <td><code>subject="Website Inquiry"</code></td>
+                    </tr>
+                    </tbody>
+                </table>
+            </td>
+        </tr>
+        <!-- Examples Section -->
+        <tr>
+            <th colspan="2">
+                <h3 style="margin: 20px 0 10px 0; padding: 10px 0; border-bottom: 1px solid #ddd;">
+                    <?php esc_html_e("Examples", 'cryptx'); ?>
+                </h3>
+            </th>
+        </tr>
+        <tr>
+            <th scope="row"><?php esc_html_e("1. Basic Email Protection", 'cryptx'); ?></th>
+            <td>
+                <pre><code>[cryptx][email protected][/cryptx]</code></pre>
+                <p class="description"><?php esc_html_e("Displays: A protected version of [email protected]", 'cryptx'); ?></p>
+            </td>
+        </tr>
+        <tr>
+            <th scope="row"><?php esc_html_e("2. Custom Link Text", 'cryptx'); ?></th>
+            <td>
+                <pre><code>[cryptx linktext="Send us an email"][email protected][/cryptx]</code></pre>
+                <p class="description"><?php esc_html_e("Displays: \"Send us an email\" as a protected link", 'cryptx'); ?></p>
+            </td>
+        </tr>
+        <tr>
+            <th scope="row"><?php esc_html_e("3. With Subject Line", 'cryptx'); ?></th>
+            <td>
+                <pre><code>[cryptx subject="Product Inquiry"][email protected][/cryptx]</code></pre>
+                <p class="description"><?php esc_html_e("Creates a link that opens the email client with a pre-filled subject line", 'cryptx'); ?></p>
+            </td>
+        </tr>
+        <!-- Best Practices Section -->
+        <tr>
+            <th colspan="2">
+                <h3 style="margin: 20px 0 10px 0; padding: 10px 0; border-bottom: 1px solid #ddd;">
+                    <?php esc_html_e("Best Practices", 'cryptx'); ?>
+                </h3>
+            </th>
+        </tr>
+        <tr>
+            <th scope="row"><?php esc_html_e("Recommendations", 'cryptx'); ?></th>
+            <td>
+                <ul>
+                    <li><?php esc_html_e("Use the shortcode when you need to protect individual email addresses in content where CryptX is disabled globally", 'cryptx'); ?></li>
+                    <li><?php esc_html_e("Consider using custom link text for better user experience", 'cryptx'); ?></li>
+                    <li><?php esc_html_e("Use meaningful subject lines when applicable", 'cryptx'); ?></li>
+                    <li><?php esc_html_e("Don't nest shortcodes within the email address", 'cryptx'); ?></li>
+                </ul>
+            </td>
+        </tr>
+        <!-- JavaScript Functions Section -->
+        <tr>
+            <th colspan="2">
+                <h3 style="margin: 20px 0 10px 0; padding: 10px 0; border-bottom: 1px solid #ddd;">
+                    <?php esc_html_e("JavaScript Functions", 'cryptx'); ?>
+                </h3>
+            </th>
+        </tr>
+        <tr>
+            <th scope="row"><?php esc_html_e("generateDeCryptXHandler()", 'cryptx'); ?></th>
+            <td>
+                <p><?php esc_html_e("A JavaScript function that generates an encrypted handler for email address protection. This function creates a special URL format that encrypts email addresses to protect them from spam bots while keeping them clickable for real users.", 'cryptx'); ?></p>
+                <h4><?php esc_html_e("Parameters", 'cryptx'); ?></h4>
+                <ul>
+                    <li><code>emailAddress</code> (string) - <?php esc_html_e("The email address to encrypt (e.g., \"[email protected]\")", 'cryptx'); ?></li>
+                </ul>
+                <h4><?php esc_html_e("Returns", 'cryptx'); ?></h4>
+                <ul>
+                    <li><?php esc_html_e("(string) A JavaScript handler string in the format \"javascript:DeCryptX('encrypted_string')\"", 'cryptx'); ?></li>
+                </ul>
+                <h4><?php esc_html_e("Basic Usage", 'cryptx'); ?></h4>
+                <pre><code class="language-javascript">const handler = generateDeCryptXHandler("[email protected]");
 // Returns: javascript:DeCryptX('1A2B3C...')</code></pre>
     <p>Creating a protected link:</p>
     <pre><code class="language-javascript">const link = document.createElement('a');
+                <h4><?php esc_html_e("Creating a Protected Link", 'cryptx'); ?></h4>
+                <pre><code class="language-javascript">const link = document.createElement('a');
 link.href = generateDeCryptXHandler('[email protected]');
 link.textContent = "Contact Us";
 document.body.appendChild(link);</code></pre>
+    <p>Direct HTML usage:</p>
+    <pre><code class="language-html">&lt;a href="javascript:generateDeCryptXHandler('[email protected]')"&gt;Contact Us&lt;/a&gt;</code></pre>
+    <h4>Implementation with Error Handling</h4>
+    <pre><code class="language-javascript">function createSafeEmailLink(email, linkText) {
+                <h4><?php esc_html_e("Implementation with Error Handling", 'cryptx'); ?></h4>
+                <pre><code class="language-javascript">function createSafeEmailLink(email, linkText) {
     try {
         // Input validation
 …
+    }
 }</code></pre>
+    <h4>Important Notes</h4>
+    <h5>1. Dependencies</h5>
+    <ul>
+        <li>Requires generateHashFromString function</li>
+        <li>Requires DeCryptX function in the global scope</li>
+    </ul>
+    <h5>2. Browser Requirements</h5>
+    <ul>
+        <li>Works in all modern browsers</li>
+        <li>JavaScript must be enabled</li>
+    </ul>
+    <h5>3. Best Practices</h5>
+    <ul>
+        <li>Provide fallback for users with JavaScript disabled</li>
+        <li>Use meaningful link text instead of showing the email address</li>
+        <li>Add title or aria-label for accessibility</li>
+    </ul>
+    <h5>4. Security Considerations</h5>
+    <ul>
+        <li>Encryption is for spam prevention only</li>
+        <li>Not suitable for sensitive data transmission</li>
+        <li>Email address will be visible in browser's JavaScript console when decrypted</li>
+    </ul>
+    <h4>Troubleshooting</h4>
+    <h5>1. If links are not working:</h5>
+    <ul>
+        <li>Verify DeCryptX function is included</li>
+        <li>Check if JavaScript is enabled</li>
+        <li>Ensure email address format is valid</li>
+    </ul>
+    <h5>2. Different encryptions:</h5>
+    <ul>
+        <li>Normal behavior: same email generates different encrypted strings</li>
+        <li>Each encryption uses random values for security</li>
+    </ul>
+    <h5>3. Performance:</h5>
+    <ul>
+        <li>Lightweight function suitable for multiple uses</li>
+        <li>Safe for use in loops or event handlers</li>
+    </ul>
+    <div class="cryptx-related">
+        <h4>Related Functions</h4>
+        <ul>
+            <li><a href="#DeCryptX">DeCryptX()</a> - For the decryption function</li>
+            <li><a href="#generateHashFromString">generateHashFromString()</a> - For the internal encryption function
+            </li>
+        </ul>
+    </div>
+    <div class="cryptx-version">
+        <p><strong>Since:</strong> Version 3.5.0</p>
+    </div>
+            </td>
+        </tr>
+        <!-- Important Notes Section -->
+        <tr>
+            <th colspan="2">
+                <h3 style="margin: 20px 0 10px 0; padding: 10px 0; border-bottom: 1px solid #ddd;">
+                    <?php esc_html_e("Important Notes", 'cryptx'); ?>
+                </h3>
+            </th>
+        </tr>
+        <tr>
+            <th scope="row"><?php esc_html_e("Requirements", 'cryptx'); ?></th>
+            <td>
+                <ul>
+                    <li><?php esc_html_e("The shortcode works independently of global CryptX settings", 'cryptx'); ?></li>
+                    <li><?php esc_html_e("JavaScript must be enabled in the visitor's browser", 'cryptx'); ?></li>
+                    <li><?php esc_html_e("Email addresses are protected using JavaScript encryption", 'cryptx'); ?></li>
+                </ul>
+            </td>
+        </tr>
+        <tr>
+            <th scope="row"><?php esc_html_e("Browser Support", 'cryptx'); ?></th>
+            <td>
+                <ul>
+                    <li><?php esc_html_e("Works in all modern browsers", 'cryptx'); ?></li>
+                    <li><?php esc_html_e("Provide fallback for users with JavaScript disabled", 'cryptx'); ?></li>
+                </ul>
+            </td>
+        </tr>
+        <!-- Troubleshooting Section -->
+        <tr>
+            <th colspan="2">
+                <h3 style="margin: 20px 0 10px 0; padding: 10px 0; border-bottom: 1px solid #ddd;">
+                    <?php esc_html_e("Troubleshooting", 'cryptx'); ?>
+                </h3>
+            </th>
+        </tr>
+        <tr>
+            <th scope="row"><?php esc_html_e("Common Issues", 'cryptx'); ?></th>
+            <td>
+                <ul>
+                    <li><strong><?php esc_html_e("Email Not Protected:", 'cryptx'); ?></strong> <?php esc_html_e("Ensure the shortcode syntax is correct with both opening and closing tags", 'cryptx'); ?></li>
+                    <li><strong><?php esc_html_e("Link Not Working:", 'cryptx'); ?></strong> <?php esc_html_e("Verify that JavaScript is enabled in the browser", 'cryptx'); ?></li>
+                    <li><strong><?php esc_html_e("Strange Characters:", 'cryptx'); ?></strong> <?php esc_html_e("Make sure the email address format is valid", 'cryptx'); ?></li>
+                    <li><strong><?php esc_html_e("Different encryptions:", 'cryptx'); ?></strong> <?php esc_html_e("Normal behavior: same email generates different encrypted strings for security", 'cryptx'); ?></li>
+                </ul>
+            </td>
+        </tr>
+        <!-- Version Info -->
+        <tr>
+            <th scope="row"><?php esc_html_e("Version Information", 'cryptx'); ?></th>
+            <td>
+                <p><strong><?php esc_html_e("Shortcode available since:", 'cryptx'); ?></strong> <?php esc_html_e("Version 2.7", 'cryptx'); ?></p>
+                <p><strong><?php esc_html_e("JavaScript functions since:", 'cryptx'); ?></strong> <?php esc_html_e("Version 3.5.0", 'cryptx'); ?></p>
+            </td>
+        </tr>
+    </table>
 </div>
 <style>
+    .cryptx-documentation {
+        max-width: 900px;
+        margin: 20px auto;
+        font-family: -apple-system, BlinkMacSystemFont, "Segoe UI", Roboto, Oxygen-Sans, Ubuntu, Cantarell, "Helvetica Neue", sans-serif;
+        line-height: 1.6;
+    }
+    .cryptx-documentation h2 {
+        color: #23282d;
+        border-bottom: 1px solid #eee;
+        padding-bottom: 10px;
+    }
+    .cryptx-documentation h3,
+    .cryptx-documentation h4,
+    .cryptx-documentation h5 {
+        color: #23282d;
+        margin-top: 1.5em;
+    }
+    .cryptx-documentation code {
+    .cryptx-howto-settings pre {
+        background: #f4f4f4;
+        padding: 15px;
+        border-radius: 4px;
+        overflow-x: auto;
+        margin: 10px 0;
+    }
+    .cryptx-howto-settings code {
         background: #f4f4f4;
         padding: 2px 6px;
 …
+    }
+    .cryptx-documentation pre {
+        background: #f4f4f4;
+        padding: 15px;
+        border-radius: 4px;
+        overflow-x: auto;
+    }
+    .cryptx-documentation pre code {
+    .cryptx-howto-settings pre code {
         background: none;
         padding: 0;
+    }
     .cryptx-documentation ul {
+    .cryptx-howto-settings ul {
         margin-left: 20px;
+    }
     .cryptx-documentation li {
+    .cryptx-howto-settings li {
         margin-bottom: 8px;
+    }
+    .cryptx-related {
+        margin-top: 30px;
+        padding: 15px;
+        background: #f8f9fa;
+        border-radius: 4px;
+    }
+    .cryptx-version {
+    .cryptx-howto-settings h4 {
         margin-top: 20px;
+        color: #666;
+        font-style: italic;
+        margin-bottom: 10px;
+        color: #23282d;
+    }
+    .cryptx-howto-settings .widefat {
+        margin-top: 10px;
+    }
+    .cryptx-howto-settings .widefat th,
+    .cryptx-howto-settings .widefat td {
+        padding: 8px 10px;
+    }
 </style>

cryptx/tags/4.0.0/templates/admin/tabs/presentation.php

-                      r3323475
+                      r3339444
 <?php
 /**
+ * Template for the CryptX presentation settings tab
+ *
+ * @var array $css CSS settings
+ * @var array $linkTextOptions Link text display options
+ * @var int $selectedOption Currently selected link text option
+ * CryptX Presentation Settings Tab Template
+ * Variables extracted from PresentationSettingsTab:
+ * - $css: CSS settings array
+ * - $emailReplacements: Email replacement settings
+ * - $linkTextOptions: Link text configuration options
+ * - $selectedOption: Currently selected option value
  */
+defined('ABSPATH') || exit;
+if (!defined('ABSPATH')) {
+    exit;
+}
 ?>
     <h4><?php _e("Define CSS Options", 'cryptx'); ?></h4>
+<div class="cryptx-tab-content cryptx-presentation-settings">
     <table class="form-table">
+        <tr>
+            <th><label for="cryptX_var[css_id]"><?php _e("CSS ID", 'cryptx'); ?></label></th>
+        <!-- CSS Settings Section -->
+        <tr>
+            <th colspan="2">
+                <h3 style="margin: 20px 0 10px 0; padding: 10px 0; border-bottom: 1px solid #ddd;">
+                    <?php _e('CSS Settings', 'cryptx'); ?>
+                </h3>
+            </th>
+        </tr>
+        <tr>
+            <th scope="row"><?php _e("CSS-ID", 'cryptx'); ?></th>
             <td>
+                <input name="cryptX_var[css_id]"
+                       id="cryptX_var[css_id]"
+                       type="text"
+                       value="<?php echo esc_attr($css['id']); ?>"
+                       class="regular-text" />
+                <p class="description">
+                    <?php _e("Please be careful using this feature! IDs should be unique. You should prefer using a css class instead.", 'cryptx'); ?>
+                </p>
+                <input name="cryptX_var[css_id]" id="css_id" value="<?php echo esc_attr($css['id']); ?>" type="text" class="regular-text" />
+                <p class="description"><?php _e("Please be careful using this feature! IDs should be unique. You should prefer using a CSS class instead.", 'cryptx'); ?></p>
             </td>
         </tr>
         <tr>
             <th><label for="cryptX_var[css_class]"><?php _e("CSS Class", 'cryptx'); ?></label></th>
+            <th scope="row"><?php _e("CSS-Class", 'cryptx'); ?></th>
             <td>
+                <input name="cryptX_var[css_class]"
+                       id="cryptX_var[css_class]"
+                       type="text"
+                       value="<?php echo esc_attr($css['class']); ?>"
+                       class="regular-text" />
+                <input name="cryptX_var[css_class]" id="css_class" value="<?php echo esc_attr($css['class']); ?>" type="text" class="regular-text" />
+                <p class="description"><?php _e("Add custom CSS class to encrypted email links.", 'cryptx'); ?></p>
             </td>
         </tr>
+        <!-- Link Text Options Section -->
+        <tr>
+            <th colspan="2">
+                <h3 style="margin: 20px 0 10px 0; padding: 10px 0; border-bottom: 1px solid #ddd;">
+                    <?php _e('Link Text Options', 'cryptx'); ?>
+                </h3>
+            </th>
+        </tr>
+        <tr>
+            <th scope="row"><?php _e('Presentation Method', 'cryptx'); ?></th>
+            <td>
+                <fieldset>
+                    <!-- Option 0: Replacement Text -->
+                    <label>
+                        <input name="cryptX_var[opt_linktext]" type="radio" value="0" <?php checked($selectedOption, 0); ?> />
+                        <strong><?php _e("Show Email with text replacement", 'cryptx'); ?></strong>
+                    </label>
+                    <div style="margin-left: 25px; margin-top: 10px; margin-bottom: 20px;">
+                        <table class="form-table" style="margin: 0;">
+                            <?php foreach ($linkTextOptions['replacement']['fields'] as $field => $config): ?>
+                                <tr>
+                                    <th scope="row" style="padding-left: 0;"><?php echo $config['label']; ?></th>
+                                    <td style="padding-left: 10px;">
+                                        <input name="cryptX_var[<?php echo esc_attr($field); ?>]"
+                                               value="<?php echo esc_attr($config['value']); ?>"
+                                               type="text" class="regular-text" />
+                                    </td>
+                                </tr>
+                            <?php endforeach; ?>
+                        </table>
+                    </div>
+                    <!-- Option 1: Custom Text -->
+                    <label>
+                        <input name="cryptX_var[opt_linktext]" type="radio" value="1" <?php checked($selectedOption, 1); ?> />
+                        <strong><?php _e("Show custom text", 'cryptx'); ?></strong>
+                    </label>
+                    <div style="margin-left: 25px; margin-top: 10px; margin-bottom: 20px;">
+                        <table class="form-table" style="margin: 0;">
+                            <?php foreach ($linkTextOptions['customText']['fields'] as $field => $config): ?>
+                                <tr>
+                                    <th scope="row" style="padding-left: 0;"><?php echo $config['label']; ?></th>
+                                    <td style="padding-left: 10px;">
+                                        <input name="cryptX_var[<?php echo esc_attr($field); ?>]"
+                                               value="<?php echo esc_attr($config['value']); ?>"
+                                               type="text" class="regular-text" />
+                                    </td>
+                                </tr>
+                            <?php endforeach; ?>
+                        </table>
+                    </div>
+                    <!-- Option 2: External Image -->
+                    <label>
+                        <input name="cryptX_var[opt_linktext]" type="radio" value="2" <?php checked($selectedOption, 2); ?> />
+                        <strong><?php _e("Show external image", 'cryptx'); ?></strong>
+                    </label>
+                    <div style="margin-left: 25px; margin-top: 10px; margin-bottom: 20px;">
+                        <table class="form-table" style="margin: 0;">
+                            <?php foreach ($linkTextOptions['externalImage']['fields'] as $field => $config): ?>
+                                <tr>
+                                    <th scope="row" style="padding-left: 0;"><?php echo $config['label']; ?></th>
+                                    <td style="padding-left: 10px;">
+                                        <?php if ($field === 'alt_linkimage'): ?>
+                                            <input name="cryptX_var[<?php echo esc_attr($field); ?>]"
+                                                   value="<?php echo esc_attr($config['value']); ?>"
+                                                   type="url" class="regular-text"
+                                                   placeholder="https://example.com/image.png" />
+                                        <?php else: ?>
+                                            <input name="cryptX_var[<?php echo esc_attr($field); ?>]"
+                                                   value="<?php echo esc_attr($config['value']); ?>"
+                                                   type="text" class="regular-text" />
+                                        <?php endif; ?>
+                                    </td>
+                                </tr>
+                            <?php endforeach; ?>
+                        </table>
+                    </div>
+                    <!-- Option 3: Uploaded Image -->
+                    <label>
+                        <input name="cryptX_var[opt_linktext]" type="radio" value="3" <?php checked($selectedOption, 3); ?> />
+                        <strong><?php _e("Show uploaded image", 'cryptx'); ?></strong>
+                    </label>
+                    <div style="margin-left: 25px; margin-top: 10px; margin-bottom: 20px;">
+                        <table class="form-table" style="margin: 0;">
+                            <tr>
+                                <th scope="row" style="padding-left: 0;"><?php _e("Select Image", 'cryptx'); ?></th>
+                                <td style="padding-left: 10px;">
+                                    <input name="cryptX_var[alt_uploadedimage]" id="alt_uploadedimage"
+                                           value="<?php echo esc_attr($linkTextOptions['uploadedImage']['fields']['alt_uploadedimage']['value']); ?>"
+                                           type="hidden" />
+                                    <button type="button" class="button" id="upload_image_button">
+                                        <?php _e("Choose Image", 'cryptx'); ?>
+                                    </button>
+                                    <div id="image_preview" style="margin-top: 10px;"></div>
+                                </td>
+                            </tr>
+                            <tr>
+                                <th scope="row" style="padding-left: 0;">
+                                    <?php echo $linkTextOptions['uploadedImage']['fields']['alt_linkimage_title']['label']; ?>
+                                </th>
+                                <td style="padding-left: 10px;">
+                                    <input name="cryptX_var[alt_linkimage_title]"
+                                           value="<?php echo esc_attr($linkTextOptions['uploadedImage']['fields']['alt_linkimage_title']['value']); ?>"
+                                           type="text" class="regular-text" />
+                                </td>
+                            </tr>
+                        </table>
+                    </div>
+                    <!-- Option 4: Scrambled Text -->
+                    <label>
+                        <input name="cryptX_var[opt_linktext]" type="radio" value="4" <?php checked($selectedOption, 4); ?> />
+                        <strong><?php echo $linkTextOptions['scrambled']['label']; ?></strong>
+                    </label><br/><br/>
+                    <!-- Option 5: PNG Image -->
+                    <label>
+                        <input name="cryptX_var[opt_linktext]" type="radio" value="5" <?php checked($selectedOption, 5); ?> />
+                        <strong><?php echo $linkTextOptions['pngImage']['label']; ?></strong>
+                    </label>
+                    <div style="margin-left: 25px; margin-top: 10px; margin-bottom: 20px;">
+                        <table class="form-table" style="margin: 0;">
+                            <?php foreach ($linkTextOptions['pngImage']['fields'] as $field => $config): ?>
+                                <tr>
+                                    <th scope="row" style="padding-left: 0;"><?php echo $config['label']; ?></th>
+                                    <td style="padding-left: 10px;">
+                                        <?php if ($field === 'c2i_font'): ?>
+                                            <select name="cryptX_var[<?php echo esc_attr($field); ?>]">
+                                                <?php foreach ($config['options'] as $value => $label): ?>
+                                                    <option value="<?php echo esc_attr($value); ?>" <?php selected($config['value'], $value); ?>>
+                                                        <?php echo esc_html($label); ?>
+                                                    </option>
+                                                <?php endforeach; ?>
+                                            </select>
+                                        <?php elseif ($field === 'c2i_fontRGB'): ?>
+                                            <input name="cryptX_var[<?php echo esc_attr($field); ?>]"
+                                                   id="c2i_fontRGB"
+                                                   value="<?php echo esc_attr($config['value']); ?>"
+                                                   type="text" class="color-field" />
+                                        <?php elseif ($field === 'c2i_fontSize'): ?>
+                                            <input name="cryptX_var[<?php echo esc_attr($field); ?>]"
+                                                   value="<?php echo esc_attr($config['value']); ?>"
+                                                   type="number" min="8" max="72" />
+                                        <?php else: ?>
+                                            <input name="cryptX_var[<?php echo esc_attr($field); ?>]"
+                                                   value="<?php echo esc_attr($config['value']); ?>"
+                                                   type="text" class="regular-text" />
+                                        <?php endif; ?>
+                                    </td>
+                                </tr>
+                            <?php endforeach; ?>
+                        </table>
+                    </div>
+                </fieldset>
+            </td>
+        </tr>
     </table>
+    <h4><?php _e("Define Presentation Options", 'cryptx'); ?></h4>
+    <table class="form-table">
+        <tbody>
+        <!-- Character Replacement Option -->
+        <tr>
+            <td>
+                <input type="radio"
+                       name="cryptX_var[opt_linktext]"
+                       id="opt_linktext_0"
+                       value="<?php echo esc_attr($linkTextOptions['replacement']['value']); ?>"
+                    <?php checked($selectedOption, $linkTextOptions['replacement']['value']); ?> />
+            </td>
+            <th scope="row">
+                <?php foreach ($linkTextOptions['replacement']['fields'] as $key => $field): ?>
+                    <div class="cryptx-field-row">
+                        <label for="cryptX_var[<?php echo esc_attr($key); ?>]">
+                            <?php echo esc_html($field['label']); ?>
+                        </label>
+                        <input type="text"
+                               name="cryptX_var[<?php echo esc_attr($key); ?>]"
+                               id="cryptX_var[<?php echo esc_attr($key); ?>]"
+                               value="<?php echo esc_attr($field['value']); ?>"
+                               class="regular-text" />
+                    </div>
+                <?php endforeach; ?>
+            </th>
+        </tr>
+        <tr class="spacer"><td colspan="3"><hr></td></tr>
+        <!-- Custom Text Option -->
+        <tr>
+            <td>
+                <input type="radio"
+                       name="cryptX_var[opt_linktext]"
+                       id="opt_linktext_1"
+                       value="<?php echo esc_attr($linkTextOptions['customText']['value']); ?>"
+                    <?php checked($selectedOption, $linkTextOptions['customText']['value']); ?> />
+            </td>
+            <th>
+                <?php foreach ($linkTextOptions['customText']['fields'] as $key => $field): ?>
+                    <label for="cryptX_var[<?php echo esc_attr($key); ?>]">
+                        <?php echo esc_html($field['label']); ?>
+                    </label>
+                    <input type="text"
+                           name="cryptX_var[<?php echo esc_attr($key); ?>]"
+                           id="cryptX_var[<?php echo esc_attr($key); ?>]"
+                           value="<?php echo esc_attr($field['value']); ?>"
+                           class="regular-text" />
+                <?php endforeach; ?>
+            </th>
+        </tr>
+        <tr class="spacer"><td colspan="3"><hr></td></tr>
+        <!-- External Image Option -->
+        <tr>
+            <td>
+                <input type="radio"
+                       name="cryptX_var[opt_linktext]"
+                       id="opt_linktext_2"
+                       value="<?php echo esc_attr($linkTextOptions['externalImage']['value']); ?>"
+                    <?php checked($selectedOption, $linkTextOptions['externalImage']['value']); ?> />
+            </td>
+            <th>
+                <?php foreach ($linkTextOptions['externalImage']['fields'] as $key => $field): ?>
+                    <div class="cryptx-field-row">
+                        <label for="cryptX_var[<?php echo esc_attr($key); ?>]">
+                            <?php echo esc_html($field['label']); ?>
+                        </label>
+                        <input type="text"
+                               name="cryptX_var[<?php echo esc_attr($key); ?>]"
+                               id="cryptX_var[<?php echo esc_attr($key); ?>]"
+                               value="<?php echo esc_attr($field['value']); ?>"
+                               class="regular-text" />
+                    </div>
+                <?php endforeach; ?>
+            </th>
+        </tr>
+        <tr class="spacer"><td colspan="3"><hr></td></tr>
+        <!-- Uploaded Image Option -->
+        <tr>
+            <td>
+                <input type="radio"
+                       name="cryptX_var[opt_linktext]"
+                       id="opt_linktext_3"
+                       value="<?php echo esc_attr($linkTextOptions['uploadedImage']['value']); ?>"
+                    <?php checked($selectedOption, $linkTextOptions['uploadedImage']['value']); ?> />
+            </td>
+            <th>
+                <label for="upload_image_button"><?php _e("Select an uploaded image", 'cryptx'); ?></label>
+            </th>
+            <td>
+                <input id="upload_image_button" type="button" class="button" value="<?php esc_attr_e('Upload image'); ?>" />
+                <input id="remove_image_button" type="button" class="button button-link-delete hidden" value="<?php esc_attr_e('Delete image'); ?>" />
+                <span id="opt_linktext4_notice"><?php _e("You have to upload an image first before this option can be activated.", 'cryptx'); ?></span>
+                <input type="hidden"
+                       name="cryptX_var[alt_uploadedimage]"
+                       id="image_attachment_id"
+                       value="<?php echo esc_attr($linkTextOptions['uploadedImage']['fields']['alt_uploadedimage']['value']); ?>">
+                <div>
+                    <img id="image-preview" src="<?php echo esc_url(wp_get_attachment_url($linkTextOptions['uploadedImage']['fields']['alt_uploadedimage']['value'])); ?>">
+                </div>
+                <label for="cryptX_var[alt_linkimage_title]">
+                    <?php echo esc_html($linkTextOptions['uploadedImage']['fields']['alt_linkimage_title']['label']); ?>
+                </label>
+                <input type="text"
+                       name="cryptX_var[alt_linkimage_title]"
+                       value="<?php echo esc_attr($linkTextOptions['uploadedImage']['fields']['alt_linkimage_title']['value']); ?>"
+                       class="regular-text" />
+            </td>
+        </tr>
+        <tr class="spacer"><td colspan="3"><hr></td></tr>
+        <!-- Text Scrambling Option -->
+        <tr>
+            <td>
+                <input type="radio"
+                       name="cryptX_var[opt_linktext]"
+                       id="opt_linktext_4"
+                       value="<?php echo esc_attr($linkTextOptions['scrambled']['value']); ?>"
+                    <?php checked($selectedOption, $linkTextOptions['scrambled']['value']); ?> />
+            </td>
+            <th colspan="2">
+                <?php echo esc_html($linkTextOptions['scrambled']['label']); ?>
+                <small><?php _e("Try it and look at your site and check the html source!", 'cryptx'); ?></small>
+            </th>
+        </tr>
+        <tr class="spacer"><td colspan="3"><hr></td></tr>
+        <!-- PNG Image Conversion Option -->
+        <tr>
+            <td>
+                <input type="radio"
+                       name="cryptX_var[opt_linktext]"
+                       id="opt_linktext_5"
+                       value="<?php echo esc_attr($linkTextOptions['pngImage']['value']); ?>"
+                    <?php checked($selectedOption, $linkTextOptions['pngImage']['value']); ?> />
+            </td>
+            <th><?php echo esc_html($linkTextOptions['pngImage']['label']); ?></th>
+            <td>
+                <?php foreach ($linkTextOptions['pngImage']['fields'] as $key => $field): ?>
+                    <div class="cryptx-field-row">
+                        <label for="cryptX_var[<?php echo esc_attr($key); ?>]">
+                            <?php echo esc_html($field['label']); ?>
+                        </label>
+                        <?php if ($key === 'c2i_font'): ?>
+                            <select name="cryptX_var[<?php echo esc_attr($key); ?>]"
+                                    id="cryptX_var[<?php echo esc_attr($key); ?>]">
+                                <?php foreach ($field['options'] as $value => $label): ?>
+                                    <option value="<?php echo esc_attr($value); ?>"
+                                        <?php selected($field['value'], $value); ?>>
+                                        <?php echo esc_html($label); ?>
+                                    </option>
+                                <?php endforeach; ?>
+                            </select>
+                        <?php elseif ($key === 'c2i_fontSize'): ?>
+                            <input type="number"
+                                   name="cryptX_var[<?php echo esc_attr($key); ?>]"
+                                   id="cryptX_var[<?php echo esc_attr($key); ?>]"
+                                   value="<?php echo esc_attr($field['value']); ?>"
+                                   class="small-text" />
+                        <?php else: ?>
+                            <input type="text"
+                                   name="cryptX_var[<?php echo esc_attr($key); ?>]"
+                                   id="cryptX_var[<?php echo esc_attr($key); ?>]"
+                                   value="<?php echo esc_attr($field['value']); ?>"
+                                   class="color-field" />
+                        <?php endif; ?>
+                    </div>
+                <?php endforeach; ?>
+            </td>
+        </tr>
+        </tbody>
+    </table>
+<?php submit_button(__('Save Presentation Settings', 'cryptx'), 'primary', 'cryptX_save_presentation_settings'); ?>
+    <!-- Submit Button -->
+    <p class="submit">
+        <input type="submit"
+               name="cryptX_save_presentation_settings"
+               class="button-primary"
+               value="<?php _e('Save Changes', 'cryptx'); ?>" />
+        <input type="submit"
+               name="cryptX_var_reset"
+               class="button-secondary"
+               value="<?php _e('Reset to Defaults', 'cryptx'); ?>"
+               onclick="return confirm('<?php _e('Are you sure you want to reset all presentation settings to defaults?', 'cryptx'); ?>');" />
+    </p>
+</div>
+<script>
+    document.addEventListener('DOMContentLoaded', function() {
+        // Initialize WordPress Color Picker
+        if (typeof jQuery !== 'undefined' && jQuery.fn.wpColorPicker) {
+            jQuery('.color-field').wpColorPicker();
+        }
+        // Handle image upload functionality
+        const uploadButton = document.getElementById('upload_image_button');
+        const imageField = document.getElementById('alt_uploadedimage');
+        const imagePreview = document.getElementById('image_preview');
+        if (uploadButton && typeof wp !== 'undefined' && wp.media) {
+            let mediaUploader;
+            uploadButton.addEventListener('click', function(e) {
+                e.preventDefault();
+                if (mediaUploader) {
+                    mediaUploader.open();
+                    return;
+                }
+                mediaUploader = wp.media({
+                    title: '<?php _e("Choose Image", "cryptx"); ?>',
+                    button: {
+                        text: '<?php _e("Choose Image", "cryptx"); ?>'
+                    },
+                    multiple: false,
+                    library: {
+                        type: 'image'
+                    }
+                });
+                mediaUploader.on('select', function() {
+                    const attachment = mediaUploader.state().get('selection').first().toJSON();
+                    imageField.value = attachment.id;
+                    if (attachment.sizes && attachment.sizes.thumbnail) {
+                        imagePreview.innerHTML = '<img src="' + attachment.sizes.thumbnail.url + '" style="max-width: 150px; height: auto;" />';
+                    } else {
+                        imagePreview.innerHTML = '<img src="' + attachment.url + '" style="max-width: 150px; height: auto;" />';
+                    }
+                });
+                mediaUploader.open();
+            });
+            // Show current image if one is selected
+            if (imageField.value && imageField.value !== '0') {
+                wp.media.attachment(imageField.value).fetch().then(function(attachment) {
+                    if (attachment.attributes.sizes && attachment.attributes.sizes.thumbnail) {
+                        imagePreview.innerHTML = '<img src="' + attachment.attributes.sizes.thumbnail.url + '" style="max-width: 150px; height: auto;" />';
+                    } else {
+                        imagePreview.innerHTML = '<img src="' + attachment.attributes.url + '" style="max-width: 150px; height: auto;" />';
+                    }
+                });
+            }
+        }
+    });
+</script>

cryptx/trunk/classes/Admin/ChangelogSettingsTab.php

-                      r3323475
+                      r3339444
 use CryptX\Config;
-/**
- * Class ChangelogSettingsTab
- * Handles the changelog tab functionality in the CryptX plugin admin interface
- */
 class ChangelogSettingsTab
+{
 …
      */
     private Config $config;
+    /**
+     * Template path
+     */
+    private const TEMPLATE_PATH = CRYPTX_DIR_PATH . 'templates/admin/tabs/changelog.php';
     /**
 …
     public function render(): void
+    {
+        echo '<h4>' . esc_html__('Changelog', 'cryptx') . '</h4>';
+        $this->renderChangelogContent();
+        if ('changelog' !== $this->getActiveTab()) {
+            return;
+        }
+        $changelogs = $this->getChangelogData();
+        $this->renderTemplate(self::TEMPLATE_PATH, ['changelogs' => $changelogs]);
+    }
     /**
      * Parse and render changelog content from readme.txt
+     * Get changelog data
      */
     private function renderChangelogContent(): void
+    private function getChangelogData(): array
+    {
         $readmePath = CRYPTX_DIR_PATH . '/readme.txt';
         if (!file_exists($readmePath)) {
             return;
+            return [];
+        }
         $fileContents = file_get_contents($readmePath);
         if ($fileContents === false) {
             return;
+            return [];
+        }
+        $changelogs = $this->parseChangelog($fileContents);
+        foreach ($changelogs as $log) {
+            echo wp_kses_post("<dl>" . implode("", $log) . "</dl>");
+        return $this->parseChangelog($fileContents);
+    }
+    /**
+     * Render template with data
+     */
+    private function renderTemplate(string $path, array $data): void
+    {
+        if (!file_exists($path)) {
+            throw new \RuntimeException(sprintf('Template file not found: %s', $path));
+        }
+        extract($data);
+        include $path;
+    }
+    /**
+     * Get active tab
+     */
+    private function getActiveTab(): string
+    {
+        return sanitize_text_field($_GET['tab'] ?? 'general');
+    }
 …
         for ($i = 1; $i <= count($_sections); $i += 2) {
+            if (!isset($_sections[$i - 1]) || !isset($_sections[$i])) {
+                continue;
+            }
             $title = $_sections[$i - 1];
             $sections[str_replace(' ', '_', strtolower($title))] = [
 …
         for ($i = 1; $i <= count($_changelogs); $i += 2) {
+            if (!isset($_changelogs[$i - 1]) || !isset($_changelogs[$i])) {
+                continue;
+            }
             $version = $_changelogs[$i - 1];
             $content = ltrim($_changelogs[$i], "\n");
-            $content = str_replace("* ", "<li>", $content);
-            $content = str_replace("\n", " </li>\n", $content);
+            $changelogs[] = [
+                'version' => "<dt>" . esc_html($version) . "</dt>",
+                'content' => "<dd><ul>" . wp_kses_post($content) . "</ul></dd>"
+            ];
+            // Parse changelog items
+            $items = $this->parseChangelogItems($content);
+            if (!empty($items)) {
+                $changelogs[] = [
+                    'version' => $version,
+                    'items' => $items
+                ];
+            }
+        }
         return $changelogs;
+    }
+    /**
+     * Parse individual changelog items
+     *
+     * @param string $content
+     * @return array
+     */
+    private function parseChangelogItems(string $content): array
+    {
+        $lines = explode("\n", $content);
+        $items = [];
+        foreach ($lines as $line) {
+            $line = trim($line);
+            if (empty($line)) {
+                continue;
+            }
+            // Remove leading asterisk and clean up
+            if (strpos($line, '* ') === 0) {
+                $line = substr($line, 2);
+            }
+            if (!empty($line)) {
+                $items[] = trim($line);
+            }
+        }
+        return $items;
+    }
+}

cryptx/trunk/classes/Admin/GeneralSettingsTab.php

-                      r3323475
+                      r3339444
         'disable_rss' => 0,
         'java' => 1,
+        'load_java' => 1
+        'load_java' => 1,
+        'use_secure_encryption' => 0,
+        'encryption_mode' => 'legacy'
     ];
     public function __construct(Config $config) {
         $this->config = $config;
 …
         $settings = [
             'options' => $options, // Pass all options
+            'securitySettings' => [
+                'use_secure_encryption' => [
+                    'label' => __('Use Secure Encryption', 'cryptx'),
+                    'description' => __('Enable AES-256-GCM encryption for enhanced security (recommended for new installations)', 'cryptx'),
+                    'value' => $options['use_secure_encryption'] ?? 0
+                ],
+                'encryption_mode' => [
+                    'label' => __('Encryption Mode', 'cryptx'),
+                    'description' => __('Choose encryption method. Legacy mode maintains backward compatibility with existing encrypted emails.', 'cryptx'),
+                    'value' => $options['encryption_mode'] ?? 'legacy',
+                    'options' => [
+                        'legacy' => __('Legacy (Compatible)', 'cryptx'),
+                        'secure' => __('Secure (AES-256-GCM)', 'cryptx')
+                    ]
+                ]
+            ],
             'applyTo' => [
                 'the_content' => [
 …
                 'widget_text' => [
                     'label' => __('Widgets', 'cryptx'),
                     'description' => __('(works only on all widgets, not on a single widget!)', 'cryptx')
+                    'description' => __('(applies to all text and HTML widgets)', 'cryptx')
+                ]
             ],

cryptx/trunk/classes/Admin/PresentationSettingsTab.php

-                      r3323475
+                      r3339444
+    }
+    /**
+     * Renders the template for the active tab.
+     *
+     * The function checks if the 'presentation' tab is active. If not, it returns without further
+     * execution. When active, it retrieves configuration options, organizes them into a structured
+     * settings array, and renders the template with the specified settings.
+     *
+     * @return void
+     */
     public function render(): void {
         if ('presentation' !== $this->getActiveTab()) {
 …
+    }
+    /**
+     * Renders a template file by including it and extracting the provided data for use within the template scope.
+     *
+     * @param string $path The file path to the template to be rendered. Must be a valid, existing file.
+     * @param array $data An associative array of data to be extracted and made available to the template.
+     *
+     * @return void
+     *
+     * @throws \RuntimeException If the specified template file does not exist.
+     */
     private function renderTemplate(string $path, array $data): void {
         if (!file_exists($path)) {
 …
+    }
+    /**
+     * Retrieves the active tab from the request, defaulting to 'general' if not specified.
+     *
+     * @return string The sanitized active tab value from the request or 'general' if no tab is provided.
+     */
     private function getActiveTab(): string {
         return sanitize_text_field($_GET['tab'] ?? 'general');
+    }
+    /**
+     * Retrieves the available font options by scanning a directory for font files.
+     *
+     * @return array An associative array where the keys are the font file names and the values are the font names without the '.ttf' extension.
+     */
     private function getFontOptions(): array {
         $fonts = [];
 …
+    }
+    /**
+     * Retrieves a list of files in a specified directory that match the given file extensions.
+     *
+     * @param string $path The path to the directory to scan for files.
+     * @param array $extensions An array of file extensions to filter the files by.
+     *                          Only files matching these extensions will be included in the results.
+     *
+     * @return array An array of filenames from the specified directory that match the provided extensions.
+     *               If the directory does not exist, an empty array is returned.
+     */
     private function getFilesInDirectory(string $path, array $extensions): array {
         if (!is_dir($path)) {
 …
+    }
+    /**
+     * Saves and processes the settings for the application. Handles security checks,
+     * optional reset functionality, and updates sanitized settings to the configuration.
+     *
+     * @param array $data The input array containing settings data to be saved.
+     *                     The data is sanitized before being saved into the configuration.
+     *
+     * @return void This method does not return a value.
+     */
     public function saveSettings(array $data): void {
         if (!current_user_can('manage_options')) {
 …
         check_admin_referer('cryptX');
+        $sanitized = $this->sanitizeSettings($data);
+        // Handle reset button
         if (!empty($_POST['cryptX_var_reset'])) {
             $this->config->reset();
+            add_settings_error(
+                'cryptx_messages',
+                'settings_reset',
+                __('Presentation settings have been reset to defaults.', 'cryptx'),
+                'updated'
+            );
             return;
+        }
+        $sanitized = $this->sanitizeSettings($data);
         $this->config->update($sanitized);
 …
+    }
+    /**
+     * Sanitizes an array of settings data to ensure secure and valid formatting.
+     *
+     * @param array $data The input array containing settings data to be sanitized.
+     *                     Expected keys include CSS settings, text replacements, link text options,
+     *                     and font settings, each of which is sanitized according to its respective type.
+     *
+     * @return array The sanitized array with cleaned or validated values for all specified settings.
+     */
     private function sanitizeSettings(array $data): array {
         $sanitized = [];
 …
         $sanitized['css_class'] = sanitize_html_class($data['css_class'] ?? '');
         // Text replacements
         $sanitized['at'] = sanitize_text_field($data['at'] ?? ' [at] ');
         $sanitized['dot'] = sanitize_text_field($data['dot'] ?? ' [dot] ');
+        // Text replacements - preserve whitespace for 'at' and 'dot' fields
+        $sanitized['at'] = wp_kses_post($data['at'] ?? ' [at] ');
+        $sanitized['dot'] = wp_kses_post($data['dot'] ?? ' [dot] ');
         // Link text options
 …
         return $sanitized;
+    }
+}

cryptx/trunk/classes/Config.php

-                      r3323475
+                      r3339444
         'whiteList' => 'jpeg,jpg,png,gif',
         'disable_rss' => 1, // Disable CryptX in RSS feeds by default
+        'encryption_mode' => 'secure', // Changed to 'secure' by default
+        'encryption_password' => null,  // Will be auto-generated if null
+        'use_secure_encryption' => 1,   // Enable secure encryption by default
+    ];
+    // Define the actual widget filters that will be used when widget_text is enabled
+    private const WIDGET_FILTERS = [
+        'widget_text',                    // Legacy text widget (pre-4.9)
+        'widget_text_content',            // Modern text widget (4.9+)
+        'widget_custom_html_content'      // Custom HTML widget (4.8.1+)
     ];
 …
     public function getVersion(): ?string {
         return $this->options['version'];
+    }
+    /**
+     * Get the actual widget filters to be applied
+     *
+     * @return array
+     */
+    public function getWidgetFilters(): array {
+        return self::WIDGET_FILTERS;
+    }
 …
         // Convert checkbox values to integers
         foreach (['the_content', 'the_meta_key', 'the_excerpt', 'comment_text',
                      'widget_text', 'autolink', 'metaBox', 'disable_rss'] as $key) {
+                     'widget_text', 'autolink', 'metaBox', 'disable_rss', 'use_secure_encryption'] as $key) {
             if (isset($newOptions[$key])) {
                 $newOptions[$key] = (int)$newOptions[$key];
 …
         $this->save();
+    }
+    /**
+     * Retrieves the encryption mode configured in the options.
+     *
+     * @return string Returns the encryption mode as a string. Defaults to 'secure' if not set.
+     */
+    public function getEncryptionMode(): string
+    {
+        return $this->options['encryption_mode'] ?? 'secure';
+    }
+    /**
+     * Checks if secure encryption is enabled in the options.
+     *
+     * @return bool Returns true if secure encryption is enabled, false otherwise.
+     */
+    public function isSecureEncryptionEnabled(): bool
+    {
+        return (bool) ($this->options['use_secure_encryption'] ?? true);
+    }
+    /**
+     * Retrieves the encryption password configured in the options or generates a secure password if not set.
+     *
+     * @return string Returns the encryption password as a string.
+     */
+    public function getEncryptionPassword(): string
+    {
+        if (empty($this->options['encryption_password'])) {
+            // Generate a secure password based on WordPress keys
+            $this->options['encryption_password'] = hash('sha256',
+                (defined('AUTH_KEY') ? AUTH_KEY : '') .
+                (defined('SECURE_AUTH_KEY') ? SECURE_AUTH_KEY : '') .
+                get_site_url()
+            );
+            $this->save();
+        }
+        return $this->options['encryption_password'];
+    }
+}

cryptx/trunk/classes/CryptX.php

-                      r3335910
+                      r3339444
+    {
         $this->settingsTabs = new CryptXSettingsTabs($this);
         $this->config = new Config( get_option('cryptX', []) );
+        $this->config = new Config(get_option('cryptX', []));
         self::$cryptXOptions = $this->loadCryptXOptionsWithDefaults();
+    }
 …
+    {
         $this->checkAndUpdateVersion();
+        $this->addUniversalWidgetFilters(); // Add this line
         $this->initializePluginFilters();
         $this->registerCoreHooks();
 …
      * @return void
      */
+    private function initializePluginFilters(): void
+    {
+        foreach (self::$cryptXOptions['filter'] as $filter) {
+            if (isset(self::$cryptXOptions[$filter]) && self::$cryptXOptions[$filter]) {
+                $this->addPluginFilters($filter);
+    public function initializePluginFilters(): void
+    {
+        if (empty($this->config)) {
+            return;
+        }
+        $activeFilters = $this->config->getActiveFilters();
+        foreach ($activeFilters as $filter) {
+            if ($filter === 'widget_text') {
+                $this->addWidgetFilters();
+            } else {
+                // Add autolink filters for non-widget filters if autolink is enabled
+                if ($this->config->isAutolinkEnabled()) {
+                    $this->addAutoLinkFilters($filter, 10);
+                }
+                $this->addOtherFilters($filter);
+            }
+        }
 …
+        }
         // Process content
+        // Process content (inline the encryptAndLinkContent logic)
         if (self::$cryptXOptions['autolink'] ?? false) {
             $content = $this->addLinkToEmailAddresses($content, true);
+        }
+        $processedContent = $this->encryptAndLinkContent($content, true);
+        $content = $this->findEmailAddressesInContent($content, true);
+        $processedContent = $this->replaceEmailInContent($content, true);
         // Reset options to defaults
 …
+    }
+    private function processAndEncryptEmails(EmailProcessingConfig $config): string
+    {
+        $content = $this->encryptMailtoLinks($config);
+        return $this->encryptPlainEmails($content, $config);
+    }
+    private function encryptMailtoLinks(EmailProcessingConfig $config): ?string
+    {
+        $content = $config->getContent();
+        if ($content === null) {
+            return null;
+        }
+        $postId = $config->getPostId() ?? $this->getCurrentPostId();
+        if (!$this->isIdExcluded($postId) || $config->isShortcode()) {
+            return preg_replace_callback(
+                self::MAILTO_PATTERN,
+                [$this, 'encryptEmailAddress'],
+                $content
+            );
+        }
+        return $content;
+    }
+    private function encryptPlainEmails(string $content, EmailProcessingConfig $config): string
+    {
+        $postId = $config->getPostId() ?? $this->getCurrentPostId();
+        if ((!$this->isIdExcluded($postId) || $config->isShortcode()) && !empty($content)) {
+            return preg_replace_callback(
+                self::EMAIL_PATTERN,
+                [$this, 'encodeEmailToLinkText'],
+                $content
+            );
+        }
+        return $content;
+    }
+    /**
+     * Retrieves the ID of the current post.
+     *
+     * @return int The current post ID if available, or -1 if no post object is present.
+     */
     private function getCurrentPostId(): int
+    {
 …
     /**
-     * Add plugin filters.
+     *
-     * This function adds the specified plugin filter if the 'autolink' key is present and its value is true in the global $cryptXOptions variable.
-     * It also adds the 'autolink' function as a filter to the $filterName if the global $shortcode_tags variable is not empty.
-     * Additionally, this function calls the addCommonFilters() and addOtherFilters() functions at specific points.
+     *
-     * @param string $filterName The name of the filter to add.
+     *
-     * @return void
-     */
-    private function addPluginFilters(string $filterName): void
+    {
-        global $shortcode_tags;
-        if (array_key_exists('autolink', self::$cryptXOptions) && self::$cryptXOptions['autolink']) {
-            $this->addAutoLinkFilters($filterName);
-            if (!empty($shortcode_tags)) {
-                $this->addAutoLinkFilters($filterName, 11);
+            }
+        }
-        $this->addOtherFilters($filterName);
+    }
-    /**
      * Adds common filters to a given filter name.
+     *
 …
     private function addOtherFilters(string $filterName): void
+    {
+        add_filter($filterName, [$this, 'findEmailAddressesInContent'], 12);
+        add_filter($filterName, [$this, 'replaceEmailInContent'], 13);
+        // Check if this is a widget filter
+        $widgetFilters = $this->config->getWidgetFilters();
+        $isWidgetFilter = in_array($filterName, $widgetFilters);
+        if ($isWidgetFilter) {
+            // Use higher priority for widget filters (after autolink at priority 10)
+            add_filter($filterName, [$this, 'findEmailAddressesInContent'], 15);
+            add_filter($filterName, [$this, 'replaceEmailInContent'], 16);
+        } else {
+            // Standard priorities for other filters
+            add_filter($filterName, [$this, 'findEmailAddressesInContent'], 12);
+            add_filter($filterName, [$this, 'replaceEmailInContent'], 13);
+        }
+    }
+    /**
+     * Adds and applies widget filters from the configuration.
+     *
+     * @return void
+     */
+    private function addWidgetFilters(): void
+    {
+        $widgetFilters = $this->config->getWidgetFilters();
+        foreach ($widgetFilters as $widgetFilter) {
+            $this->addAutoLinkFilters($widgetFilter, 10);
+            $this->addOtherFilters($widgetFilter);
+        }
+    }
 …
         global $post;
+        if (self::$cryptXOptions['disable_rss'] && $this->isRssFeed())  return $content;
+        if (self::$cryptXOptions['disable_rss'] && $this->isRssFeed()) return $content;
+        // Check if current filter is a widget filter
+        $widgetFilters = $this->config->getWidgetFilters();
+        $isWidgetContext = in_array(current_filter(), $widgetFilters);
         $postId = (is_object($post)) ? $post->ID : -1;
+        if ((!$this->isIdExcluded($postId) || $isShortcode) && !empty($content)) {
+        // For widgets, always process; for other content, check exclusion rules
+        if (($isWidgetContext || !$this->isIdExcluded($postId) || $isShortcode) && !empty($content)) {
             $content = $this->replaceEmailWithLinkText($content);
+        }
 …
         return $content;
+    }
     /**
 …
         global $post;
         if (self::$cryptXOptions['disable_rss'] && $this->isRssFeed())  return $content;
+        if (self::$cryptXOptions['disable_rss'] && $this->isRssFeed()) return $content;
         if ($content === null) {
 …
+        }
+        // Check if current filter is a widget filter
+        $widgetFilters = $this->config->getWidgetFilters();
+        $isWidgetContext = in_array(current_filter(), $widgetFilters);
         $postId = (is_object($post)) ? $post->ID : -1;
         $isIdExcluded = $this->isIdExcluded($postId);
-        // FIXED: Added 's' modifier to handle multiline HTML (like Elementor buttons)
         $mailtoRegex = '/<a\s+[^>]*href=(["\'])mailto:([^"\']+)\1[^>]*>(.*?)<\/a>/is';
+        if ((!$isIdExcluded || $shortcode !== null)) {
+            $content = preg_replace_callback($mailtoRegex, [$this, 'encryptEmailAddressNew'], $content);
+        // For widgets, always process since there's no specific post context
+        // For other content, check exclusion rules
+        if ($isWidgetContext || !$isIdExcluded || $shortcode) {
+            // $content = preg_replace_callback($mailtoRegex, [$this, 'encryptEmailAddressNew'], $content);
+            $content = preg_replace_callback($mailtoRegex, [$this, 'encryptEmailAddressSecure'], $content);
+        }
         return $content;
+    }
     /**
 …
         $return = $originalValue;
         // Apply JavaScript handler if enabled
         if (!empty(self::$cryptXOptions['java'])) {
 …
     /**
+     * Encrypts an email address found in the search results and modifies it to safeguard against email harvesting.
+     *
+     * @param array $searchResults Array containing search result data, where:
+     *                             - Index 0 contains the full match.
+     *                             - Index 2 contains the email address.
+     *                             - Index 3 contains the link text for the email.
+     * @return string The encrypted or modified email link.
+     * Encrypts an email address within the provided search results and generates a secure or obfuscated link.
+     * If secure encryption is enabled, the function uses secure encryption. Otherwise, it falls back to legacy methods
+     * or antispambot obfuscation if JavaScript is not enabled. Additional CSS attributes can be added if specified.
+     *
+     * @param array $searchResults The array containing match results:
+     *                              - Index 0: The full match value (original string),
+     *                              - Index 2: The email address to encrypt,
+     *                              - Index 3: The link text for the email link.
+     * @return string Returns the modified string where the email address is encrypted or obfuscated based on the configuration.
      */
     private function encryptEmailAddressNew(array $searchResults): string
 …
         // Apply JavaScript handler if enabled
         if (!empty(self::$cryptXOptions['java'])) {
+            $javaHandler = "javascript:DeCryptX('" . $this->generateHashFromString($emailAddress) . "')";
+            // Check if secure encryption is enabled and working
+            if ($this->config->isSecureEncryptionEnabled()) {
+                try {
+                    // Use secure encryption - encrypt the full mailto URL
+                    $password = $this->config->getEncryptionPassword();
+                    $mailtoUrl = 'mailto:' . $emailAddress;
+                    $encryptedEmail = SecureEncryption::encrypt($mailtoUrl, $password);
+                    $javaHandler = "javascript:secureDecryptAndNavigate('" .
+                        $this->escapeJavaScript($encryptedEmail) . "', '" .
+                        $this->escapeJavaScript($password) . "')";
+                } catch (\Exception $e) {
+                    // Fallback to legacy encryption if secure encryption fails
+                    error_log('CryptX Secure Encryption failed: ' . $e->getMessage());
+                    $encryptedEmail = $this->generateHashFromString($emailAddress);
+                    $javaHandler = "javascript:DeCryptX('" . $this->escapeJavaScript($encryptedEmail) . "')";
+                }
+            } else {
+                // Use legacy encryption
+                $encryptedEmail = $this->generateHashFromString($emailAddress);
+                $javaHandler = "javascript:DeCryptX('" . $this->escapeJavaScript($encryptedEmail) . "')";
+            }
             $return = str_replace('mailto:' . $emailAddress, $javaHandler, $originalValue);
         } else {
+            // Only apply antispambot if JavaScript is not enabled
+            $return = str_replace('mailto:' . $emailAddress, antispambot('mailto:' . $emailAddress), $return);
+            // Fallback to antispambot if JavaScript is not enabled
+            $return = str_replace('mailto:' . $emailAddress,
+                antispambot('mailto:' . $emailAddress), $return);
+        }
         // Add CSS attributes if specified
         if (!empty(self::$cryptXOptions['css_id'])) {
+            $return = preg_replace('/(<a\s+[^>]*)(>)/i', '$1 id="' . self::$cryptXOptions['css_id'] . '"$2', $return);
+            $return = preg_replace('/(<a\s+[^>]*)(>)/i',
+                '$1 id="' . self::$cryptXOptions['css_id'] . '"$2', $return);
+        }
         if (!empty(self::$cryptXOptions['css_class'])) {
+            $return = preg_replace('/(<a\s+[^>]*)(>)/i', '$1 class="' . self::$cryptXOptions['css_class'] . '"$2', $return);
+            $return = preg_replace('/(<a\s+[^>]*)(>)/i',
+                '$1 class="' . self::$cryptXOptions['css_class'] . '"$2', $return);
+        }
 …
+    {
         global $post;
+        // Check if current filter is a widget filter
+        $widgetFilters = $this->config->getWidgetFilters();
+        $isWidgetContext = in_array(current_filter(), $widgetFilters);
         $postID = is_object($post) ? $post->ID : -1;
+        if ($this->isIdExcluded($postID) && !$shortcode) {
+        // For widgets, always process; for other content, check exclusion rules
+        if (!$isWidgetContext && $this->isIdExcluded($postID) && !$shortcode) {
             return $content;
+        }
         $emailPattern = "[_a-zA-Z0-9-+]+(\.[_a-zA-Z0-9-+]+)*@[a-zA-Z0-9-]+(\.[a-zA-Z0-9-]+)*(\.[a-zA-Z]{2,})";
+        $emailPattern = "[_a-zA-Z0-9-+]+(\\.[_a-zA-Z0-9-+]+)*@[a-zA-Z0-9-]+(\\.[a-zA-Z0-9-]+)*(\\.[a-zA-Z]{2,})";
         $linkPattern = "<a href=\"mailto:\\2\">\\2</a>";
         $src = [
             "/([\s])($emailPattern)/si",
+            "/([\\s])($emailPattern)/si",
             "/(>)($emailPattern)(<)/si",
             "/(\()($emailPattern)(\))/si",
             "/(>)($emailPattern)([\s])/si",
             "/([\s])($emailPattern)(<)/si",
+            "/(\\()($emailPattern)(\\))/si",
+            "/(>)($emailPattern)([\\s])/si",
+            "/([\\s])($emailPattern)(<)/si",
             "/^($emailPattern)/si",
             "/(<a[^>]*>)<a[^>]*>/",
             "/(<\/A>)<\/A>/i"
+            "/(<\\/A>)<\\/A>/i"
         ];
         $tar = [
 …
+    }
+    /**
+     * Converts an associative array into an argument string.
+     *
+     * @param array $args An optional associative array where keys represent argument names and values represent argument values.
+     * @return string A formatted string of arguments where each key-value pair is encoded and concatenated.
+     */
     public function convertArrayToArgumentString(array $args = []): string
+    {
 …
      * Adds plugin action links to the WordPress plugin row
+     *
      * @param array  $links Existing plugin row links
      * @param string $file  Plugin file path
+     * @param array $links Existing plugin row links
+     * @param string $file Plugin file path
      * @return array Modified plugin row links
      */
 …
     /**
+     * Creates the settings link for the plugin
+     * Creates and returns a settings link for the options page.
+     *
+     * @return string The HTML link to the settings page.
      */
     private function create_settings_link(): string
 …
     /**
+     * Creates the donation link for the plugin
+     * Creates and returns a donation link in HTML format.
+     *
+     * @return string The HTML string for the donation link.
      */
     private function create_donation_link(): string
 …
         );
+    }
+    /**
+     * Adds a universal filter for all widget types by hooking into the widget display process.
+     *
+     * @return void
+     */
+    private function addUniversalWidgetFilters(): void
+    {
+        // Hook into the widget display process to catch all widget types
+        add_filter('widget_display_callback', [$this, 'processWidgetContent'], 10, 3);
+    }
+    /**
+     * Processes the widget content to detect and modify email addresses.
+     *
+     * @param array $instance The current widget instance settings.
+     * @param object $widget The widget object being processed.
+     * @param array $args Additional arguments passed by the widget function.
+     *
+     * @return array The modified widget instance with updated content.
+     */
+    public function processWidgetContent($instance, $widget, $args)
+    {
+        // Only process if widget_text option is enabled
+        if (!(self::$cryptXOptions['widget_text'] ?? false)) {
+            return $instance;
+        }
+        // Check if instance has text content (traditional text widgets)
+        if (isset($instance['text']) && stripos($instance['text'], '@') !== false) {
+            $instance['text'] = $this->addLinkToEmailAddresses($instance['text']);
+            $instance['text'] = $this->findEmailAddressesInContent($instance['text']);
+            $instance['text'] = $this->replaceEmailInContent($instance['text']);
+        }
+        // Check if instance has content field (block widgets)
+        if (isset($instance['content']) && stripos($instance['content'], '@') !== false) {
+            $instance['content'] = $this->addLinkToEmailAddresses($instance['content']);
+            $instance['content'] = $this->findEmailAddressesInContent($instance['content']);
+            $instance['content'] = $this->replaceEmailInContent($instance['content']);
+        }
+        return $instance;
+    }
+    /**
+     * Generates hash using secure or legacy encryption based on settings
+     *
+     * @param string $inputString
+     * @return string
+     */
+    private function generateSecureHashFromString(string $inputString): string
+    {
+        if ($this->config->isSecureEncryptionEnabled()) {
+            try {
+                $password = $this->config->getEncryptionPassword();
+                return SecureEncryption::encrypt($inputString, $password);
+            } catch (\Exception $e) {
+                error_log('CryptX Secure Encryption failed: ' . $e->getMessage());
+                // Fallback to legacy encryption
+                return $this->generateHashFromString($inputString);
+            }
+        }
+        return $this->generateHashFromString($inputString);
+    }
+    /**
+     * Enhanced email encryption with security validation
+     *
+     * @param array $searchResults
+     * @return string
+     */
+    private function encryptEmailAddressSecure(array $searchResults): string
+    {
+        $originalValue = $searchResults[0];  // Full match
+        $emailAddress = $searchResults[2];   // Email address
+        $linkText = $searchResults[3];       // Link text
+        if (strpos($emailAddress, '@') === self::NOT_FOUND) {
+            return $originalValue;
+        }
+        if (str_starts_with($emailAddress, self::SUBJECT_IDENTIFIER)) {
+            return $originalValue;
+        }
+        $return = $originalValue;
+        // Apply JavaScript handler if enabled
+        if (!empty(self::$cryptXOptions['java'])) {
+            $encryptionMode = $this->config->getEncryptionMode();
+            // Determine which encryption method to use
+            if ($encryptionMode === 'secure' &&
+                $this->config->isSecureEncryptionEnabled() &&
+                class_exists('CryptX\SecureEncryption')) {
+                // Use modern AES-256-GCM encryption
+                try {
+                    $password = $this->config->getEncryptionPassword();
+                    $mailtoUrl = 'mailto:' . $emailAddress;
+                    $encryptedEmail = SecureEncryption::encrypt($mailtoUrl, $password);
+                    $javaHandler = "javascript:secureDecryptAndNavigate('" .
+                        $this->escapeJavaScript($encryptedEmail) . "', '" .
+                        $this->escapeJavaScript($password) . "')";
+                } catch (\Exception $e) {
+                    // Fallback to legacy if secure encryption fails
+                    error_log('CryptX Secure Encryption failed, falling back to legacy: ' . $e->getMessage());
+                    $encryptedEmail = $this->generateHashFromString($emailAddress);
+                    $javaHandler = "javascript:DeCryptX('" . $this->escapeJavaScript($encryptedEmail) . "')";
+                }
+            } else {
+                // Use legacy encryption (original algorithm)
+                $encryptedEmail = $this->generateHashFromString($emailAddress);
+                $javaHandler = "javascript:DeCryptX('" . $this->escapeJavaScript($encryptedEmail) . "')";
+            }
+            $return = str_replace('mailto:' . $emailAddress, $javaHandler, $originalValue);
+        } else {
+            // Fallback to antispambot if JavaScript is not enabled
+            $return = str_replace('mailto:' . $emailAddress,
+                antispambot('mailto:' . $emailAddress), $return);
+        }
+        // Add CSS attributes if specified
+        if (!empty(self::$cryptXOptions['css_id'])) {
+            $return = preg_replace('/(<a\s+[^>]*)(>)/i',
+                '$1 id="' . self::$cryptXOptions['css_id'] . '"$2', $return);
+        }
+        if (!empty(self::$cryptXOptions['css_class'])) {
+            $return = preg_replace('/(<a\s+[^>]*)(>)/i',
+                '$1 class="' . self::$cryptXOptions['css_class'] . '"$2', $return);
+        }
+        return $return;
+    }
+    /**
+     * Escapes string for safe JavaScript usage
+     *
+     * @param string $string
+     * @return string
+     */
+    private function escapeJavaScript(string $string): string
+    {
+        return str_replace(
+            ['\\', "'", '"', "\n", "\r", "\t"],
+            ['\\\\', "\\'", '\\"', '\\n', '\\r', '\\t'],
+            $string
+        );
+    }
+    /**
+     * Secure URL validation
+     *
+     * @param string $url
+     * @return bool
+     */
+    private function isValidUrl(string $url): bool
+    {
+        return SecureEncryption::validateUrl($url);
+    }
+}

cryptx/trunk/classes/CryptXSettingsTabs.php

-                      r3323475
+                      r3339444
         );
+        // Enqueue WordPress color picker assets
         wp_enqueue_style('wp-color-picker');
+        // Enqueue JavaScript files
+        wp_enqueue_script(
+            'cryptx-admin-js',
+            CRYPTX_DIR_URL . 'js/cryptx-admin.min.js',
+            ['jquery', 'wp-color-picker'],
+            CRYPTX_VERSION,
+            true
+        );
+        wp_enqueue_script('wp-color-picker');
+        // Enqueue media uploader
         wp_enqueue_media();
+    }
 …
             $saveOptions = DataSanitizer::sanitize($_POST['cryptX_var']);
+            // Handle reset for any tab
             if (isset($_POST['cryptX_var_reset'])) {
+                $saveOptions = $this->cryptX->getCryptXOptionsDefaults();
+                $this->cryptX->getCryptXOptionsDefaults();
+                $this->cryptX->getConfig()->reset();
+                $this->displayResetMessage();
+                return;
+            }
 …
+        }
+    }
     /**
 …
             'cryptx_messages',
             'cryptx_message',
+            __('Settings saved.'),
+            __('Settings saved.', 'cryptx'),
+            'updated'
+        );
+    }
+    /**
+     * Display reset message
+     */
+    private function displayResetMessage(): void
+    {
+        add_settings_error(
+            'cryptx_messages',
+            'cryptx_reset',
+            __('Settings have been reset to defaults.', 'cryptx'),
             'updated'
         );
 …
             // Handle form submission if needed
             if (isset($_POST['cryptX_save_general_settings'])) {
                 if (!empty($_POST['cryptX_var'])) {
                     $generalTab->saveSettings($_POST['cryptX_var']);
+            if (isset($_POST['cryptX_save_general_settings']) || isset($_POST['cryptX_var_reset'])) {
+                if (!empty($_POST['cryptX_var']) || isset($_POST['cryptX_var_reset'])) {
+                    $generalTab->saveSettings($_POST['cryptX_var'] ?? []);
+                }
+            }
 …
             // Handle form submission if needed
             if (isset($_POST['cryptX_save_presentation_settings'])) {
                 if (!empty($_POST['cryptX_var'])) {
                     $presentationTab->saveSettings($_POST['cryptX_var']);
+            if (isset($_POST['cryptX_save_presentation_settings']) || isset($_POST['cryptX_var_reset'])) {
+                if (!empty($_POST['cryptX_var']) || isset($_POST['cryptX_var_reset'])) {
+                    $presentationTab->saveSettings($_POST['cryptX_var'] ?? []);
+                }
+            }
 …
+        }
+    }
-    /**
-     * Parse and render changelog content from readme.txt
-     */
-    private function renderChangelogContent(): void
+    {
-        $readmePath = CRYPTX_DIR_PATH . '/readme.txt';
-        if (!file_exists($readmePath)) {
-            return;
+        }
-        $fileContents = file_get_contents($readmePath);
-        if ($fileContents === false) {
-            return;
+        }
-        $changelogs = $this->parseChangelog($fileContents);
-        foreach ($changelogs as $log) {
-            echo wp_kses_post("<dl>" . implode("", $log) . "</dl>");
+        }
+    }
-    /**
-     * Parse changelog content from readme.txt
+     *
-     * @param string $content
-     * @return array
-     */
-    private function parseChangelog(string $content): array
+    {
-        $content = str_replace(["\r\n", "\r"], "\n", $content);
-        $content = trim($content);
-        // Split into sections
-        $sections = $this->parseSections($content);
-        if (!isset($sections['changelog'])) {
-            return [];
+        }
-        // Parse changelog entries
-        return $this->parseChangelogEntries($sections['changelog']['content']);
+    }
-    /**
-     * Parse sections from readme content
+     *
-     * @param string $content
-     * @return array
-     */
-    private function parseSections(string $content): array
+    {
-        $_sections = preg_split('/^[\s]*==[\s]*(.+?)[\s]*==/m', $content, -1, PREG_SPLIT_DELIM_CAPTURE | PREG_SPLIT_NO_EMPTY);
-        $sections = [];
-        for ($i = 1; $i <= count($_sections); $i += 2) {
-            $title = $_sections[$i - 1];
-            $sections[str_replace(' ', '_', strtolower($title))] = [
-                'title' => $title,
-                'content' => $_sections[$i]
-            ];
+        }
-        return $sections;
+    }
-    /**
-     * Parse changelog entries
+     *
-     * @param string $content
-     * @return array
-     */
-    private function parseChangelogEntries(string $content): array
+    {
-        $_changelogs = preg_split('/^[\s]*=[\s]*(.+?)[\s]*=/m', $content, -1, PREG_SPLIT_DELIM_CAPTURE | PREG_SPLIT_NO_EMPTY);
-        $changelogs = [];
-        for ($i = 1; $i <= count($_changelogs); $i += 2) {
-            $version = $_changelogs[$i - 1];
-            $content = ltrim($_changelogs[$i], "\n");
-            $content = str_replace("* ", "<li>", $content);
-            $content = str_replace("\n", " </li>\n", $content);
-            $changelogs[] = [
-                'version' => "<dt>" . esc_html($version) . "</dt>",
-                'content' => "<dd><ul>" . wp_kses_post($content) . "</ul></dd>"
-            ];
+        }
-        return $changelogs;
+    }
+}

cryptx/trunk/cryptx.php

-                      r3335910
+                      r3339444
 <?php
 /*
  * Plugin Name: CryptX
  * Plugin URI: http://weber-nrw.de/wordpress/cryptx/
  * Description: No more SPAM by spiders scanning you site for email addresses. With CryptX you can hide all your email addresses, with and without a mailto-link, by converting them using javascript or UNICODE.
  * Version: 3.5.2
+/**
+ * Plugin Name:       CryptX
+ * Plugin URI:        https://wordpress.org/plugins/cryptx/
+ * Description:       CryptX encrypts email addresses in your posts, pages, comments, and text widgets to protect them from spam bots while keeping them readable for your visitors.
+ * Version:           4.0.0
  * Requires at least: 6.7
+ * Author: Ralf Weber
+ * Author URI: http://weber-nrw.de/
+ * Tested up to:      6.8
+ * Requires PHP:      8.1
+ * Author:            Ralf Weber
+ * Author URI:        https://weber-nrw.de/
  * License:           GPL v2 or later
  * License URI:       https://www.gnu.org/licenses/gpl-2.0.html
+ * Text Domain: cryptx
+*/
+ * Text Domain:       cryptx
+ * Domain Path:       /languages
+ * Network:           false
+ * Update URI:        https://wordpress.org/plugins/cryptx/
+ *
+ * CryptX is free software: you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License as published by
+ * the Free Software Foundation, either version 2 of the License, or
+ * any later version.
+ *
+ * CryptX is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+ * GNU General Public License for more details.
+ *
+ * You should have received a copy of the GNU General Public License
+ * along with CryptX. If not, see https://www.gnu.org/licenses/gpl-2.0.html.
+ *
+ * @package CryptX
+ * @since   1.0.0
+ */
+//avoid direct calls to this file, because now WP core and framework has been used
+if ( ! function_exists( 'add_action' ) ) {
+    header( 'Status: 403 Forbidden' );
+    header( 'HTTP/1.1 403 Forbidden' );
+    exit();
+// Prevent direct access
+if (!defined('ABSPATH')) {
+    exit;
+}
+/** @const CryptX version */
+define( 'CRYPTX_VERSION', "3.5.2" );
+define( 'CRYPTX_BASENAME', plugin_basename( __FILE__ ) );
+define( 'CRYPTX_BASEFOLDER', plugin_basename( dirname( __FILE__ ) ) );
+define( 'CRYPTX_DIR_URL', rtrim( plugin_dir_url( __FILE__ ), "/" ) . "/" );
+define( 'CRYPTX_DIR_PATH', plugin_dir_path( __FILE__ ) );
+define( 'CRYPTX_FILENAME', str_replace( CRYPTX_BASEFOLDER . '/', '', plugin_basename( __FILE__ ) ) );
+// Plugin constants
+define('CRYPTX_VERSION', '4.0.0');
+define('CRYPTX_PLUGIN_FILE', __FILE__);
+define('CRYPTX_PLUGIN_BASENAME', plugin_basename(__FILE__));
+define('CRYPTX_BASENAME', plugin_basename(__FILE__)); // Add this missing constant
+define('CRYPTX_DIR_PATH', plugin_dir_path(__FILE__));
+define('CRYPTX_DIR_URL', plugin_dir_url(__FILE__));
+define('CRYPTX_BASEFOLDER', dirname(CRYPTX_PLUGIN_BASENAME));
+spl_autoload_register(function ($class_name) {
+    // Handle classes in the CryptX namespace
+    if (strpos($class_name, 'CryptX\\') === 0) {
+        // Convert namespace separators to directory separators
+        $file_path = str_replace('\\', DIRECTORY_SEPARATOR, $class_name);
+        $file_path = str_replace('CryptX' . DIRECTORY_SEPARATOR, '', $file_path);
+// Minimum requirements check
+if (version_compare(PHP_VERSION, '8.1.0', '<')) {
+    add_action('admin_notices', function() {
+        echo '<div class="notice notice-error"><p>';
+        printf(
+        /* translators: %1$s: Required PHP version, %2$s: Current PHP version */
+            __('CryptX requires PHP version %1$s or higher. You are running version %2$s. Please update PHP.', 'cryptx'),
+            '8.1.0',
+            PHP_VERSION
+        );
+        echo '</p></div>';
+    });
+    return;
+}
+        // Construct the full file path
+        $file = CRYPTX_DIR_PATH . 'classes' . DIRECTORY_SEPARATOR . $file_path . '.php';
+// WordPress version check
+global $wp_version;
+if (version_compare($wp_version, '6.7', '<')) {
+    add_action('admin_notices', function() {
+        echo '<div class="notice notice-error"><p>';
+        printf(
+        /* translators: %1$s: Required WordPress version, %2$s: Current WordPress version */
+            __('CryptX requires WordPress version %1$s or higher. You are running version %2$s. Please update WordPress.', 'cryptx'),
+            '5.0',
+            $GLOBALS['wp_version']
+        );
+        echo '</p></div>';
+    });
+    return;
+}
+        if (file_exists($file)) {
+            require_once $file;
+        }
+// Autoloader for plugin classes
+spl_autoload_register(function ($class) {
+    // Check if the class belongs to our namespace
+    if (strpos($class, 'CryptX\\') !== 0) {
+        return;
+    }
+    // Remove namespace prefix
+    $class = substr($class, 7);
+    // Convert namespace separators to directory separators
+    $class = str_replace('\\', DIRECTORY_SEPARATOR, $class);
+    // Build the full path
+    $file = CRYPTX_DIR_PATH . 'classes' . DIRECTORY_SEPARATOR . $class . '.php';
+    // Include the file if it exists
+    if (file_exists($file)) {
+        require_once $file;
+    }
 });
+// Initialize the plugin
+add_action('plugins_loaded', function() {
+    // Check if all required classes can be loaded
+    $requiredClasses = [
+        'CryptX\\CryptX',
+        'CryptX\\Config',
+        'CryptX\\CryptXSettingsTabs',
+        'CryptX\\SecureEncryption',
+        'CryptX\\Admin\\ChangelogSettingsTab',
+        'CryptX\\Admin\\GeneralSettingsTab',
+        'CryptX\\Admin\\PresentationSettingsTab',
+        'CryptX\\Util\\DataSanitizer',
+    ];
+//require_once( CRYPTX_DIR_PATH . 'classes/CryptX.php' );
+//require_once( CRYPTX_DIR_PATH . 'include/admin_option_page.php' );
+    $missingClasses = [];
+    foreach ($requiredClasses as $class) {
+        if (!class_exists($class)) {
+            $missingClasses[] = $class;
+        }
+    }
+$CryptX_instance = CryptX\CryptX::get_instance();
+$CryptX_instance->startCryptX();
+    if (!empty($missingClasses)) {
+        add_action('admin_notices', function() use ($missingClasses) {
+            echo '<div class="notice notice-error"><p>';
+            echo esc_html__('CryptX: Missing required classes: ', 'cryptx') . implode(', ', $missingClasses);
+            echo '</p></div>';
+        });
+        return;
+    }
+/**
+ * Encrypts the given content using the CryptX WordPress plugin.
+ *
+ * @param string|null $content The content to encrypt.
+ * @param array|null $args The optional arguments for the encryption. Default is an empty array.
+ *
+ * @return string The encrypted content wrapped in the '[cryptx]' shortcode.
+ */
+function encryptx( ?string $content, ?array $args = [] ): string {
+    $CryptX_instance = Cryptx\CryptX::get_instance();
+    return do_shortcode( '[cryptx'. $CryptX_instance->convertArrayToArgumentString( $args ).']' . $content . '[/cryptx]' );
+}
+    // Initialize the main plugin class
+    try {
+        $cryptx_instance = CryptX\CryptX::get_instance();
+        $cryptx_instance->startCryptX();
+    } catch (Exception $e) {
+        add_action('admin_notices', function() use ($e) {
+            echo '<div class="notice notice-error"><p>';
+            echo esc_html__('CryptX initialization failed: ', 'cryptx') . esc_html($e->getMessage());
+            echo '</p></div>';
+        });
+    }
+});
+// Remove the strict activation requirements - let the plugin handle fallbacks
+register_activation_hook(__FILE__, function() {
+    // Just flush rewrite rules
+    flush_rewrite_rules();
+});
+// Plugin deactivation hook
+register_deactivation_hook(__FILE__, function() {
+    // Clean up any transients or cached data
+    global $wpdb;
+    $wpdb->query("DELETE FROM {$wpdb->options} WHERE option_name LIKE '_transient_cryptx_%'");
+    $wpdb->query("DELETE FROM {$wpdb->options} WHERE option_name LIKE '_transient_timeout_cryptx_%'");
+});
+// Add plugin action links - updated to match the settings page slug
+add_filter('plugin_action_links_' . plugin_basename(__FILE__), function($links) {
+    $settings_link = '<a href="' . admin_url('options-general.php?page=cryptx') . '">' .
+        esc_html__('Settings', 'cryptx') . '</a>';
+    array_unshift($links, $settings_link);
+    return $links;
+});

cryptx/trunk/js/cryptx.js

-                      r3323475
+                      r3339444
+const UPPER_LIMIT = 8364;
+const DEFAULT_VALUE = 128;
+/**
+ * Decrypts an encrypted string using a specific encryption algorithm.
+ *
+ * @param {string} encryptedString - The encrypted string to be decrypted.
+ * @returns {string} The decrypted string.
+/**
+ * Secure CryptX Library - Fixed for backward compatibility
+ */
+// Configuration constants
+const CONFIG = {
+    ALLOWED_PROTOCOLS: ['http:', 'https:', 'mailto:'],
+    MAX_URL_LENGTH: 2048,
+    ENCRYPTION_KEY_SIZE: 32,
+    IV_SIZE: 16
+};
+/**
+ * Utility functions for secure operations
+ */
+class SecureUtils {
+    static getSecureRandomBytes(length) {
+        if (typeof crypto === 'undefined' || !crypto.getRandomValues) {
+            throw new Error('Secure random number generation not available');
+        }
+        return crypto.getRandomValues(new Uint8Array(length));
+    }
+    static arrayBufferToBase64(buffer) {
+        const bytes = new Uint8Array(buffer);
+        let binary = '';
+        for (let i = 0; i < bytes.byteLength; i++) {
+            binary += String.fromCharCode(bytes[i]);
+        }
+        return btoa(binary);
+    }
+    static base64ToArrayBuffer(base64) {
+        const binary = atob(base64);
+        const buffer = new ArrayBuffer(binary.length);
+        const bytes = new Uint8Array(buffer);
+        for (let i = 0; i < binary.length; i++) {
+            bytes[i] = binary.charCodeAt(i);
+        }
+        return buffer;
+    }
+    static validateUrl(url) {
+        if (typeof url !== 'string' || url.length === 0) {
+            return null;
+        }
+        if (url.length > CONFIG.MAX_URL_LENGTH) {
+            console.error('URL exceeds maximum length');
+            return null;
+        }
+        try {
+            const urlObj = new URL(url);
+            if (!CONFIG.ALLOWED_PROTOCOLS.includes(urlObj.protocol)) {
+                console.error('Protocol not allowed:', urlObj.protocol);
+                return null;
+            }
+            if (urlObj.protocol === 'mailto:') {
+                const emailRegex = /^[^\s@]+@[^\s@]+\.[^\s@]+$/;
+                if (!emailRegex.test(urlObj.pathname)) {
+                    console.error('Invalid email format in mailto URL');
+                    return null;
+                }
+            }
+            return url;
+        } catch (error) {
+            console.error('Invalid URL format:', error.message);
+            return null;
+        }
+    }
+    static escapeJavaScript(str) {
+        if (typeof str !== 'string') {
+            return '';
+        }
+        return str.replace(/\\/g, '\\\\')
+            .replace(/'/g, "\\'")
+            .replace(/"/g, '\\"')
+            .replace(/\n/g, '\\n')
+            .replace(/\r/g, '\\r')
+            .replace(/\t/g, '\\t');
+    }
+}
+/**
+ * Legacy encryption class - Fixed to match original PHP algorithm
+ */
+class LegacyEncryption {
+    /**
+     * Decrypts using the original CryptX algorithm (matches PHP version)
+     * @param {string} encryptedString
+     * @returns {string}
+     */
+    static originalDecrypt(encryptedString) {
+        if (typeof encryptedString !== 'string' || encryptedString.length === 0) {
+            throw new Error('Invalid encrypted string');
+        }
+        // Constants from original algorithm
+        const UPPER_LIMIT = 8364;
+        const DEFAULT_VALUE = 128;
+        let charCode = 0;
+        let decryptedString = "mailto:";
+        let encryptionKey = 0;
+        try {
+            for (let i = 0; i < encryptedString.length; i += 2) {
+                if (i + 1 >= encryptedString.length) {
+                    break;
+                }
+                // Get the salt (encryption key) from current position
+                encryptionKey = parseInt(encryptedString.charAt(i), 10);
+                // Handle invalid salt values
+                if (isNaN(encryptionKey)) {
+                    encryptionKey = 0;
+                }
+                // Get the character code from next position
+                charCode = encryptedString.charCodeAt(i + 1);
+                // Apply the same logic as original
+                if (charCode >= UPPER_LIMIT) {
+                    charCode = DEFAULT_VALUE;
+                }
+                // Decrypt by subtracting the salt
+                const decryptedCharCode = charCode - encryptionKey;
+                // Validate the result
+                if (decryptedCharCode < 0 || decryptedCharCode > 1114111) {
+                    throw new Error('Invalid character code during decryption');
+                }
+                decryptedString += String.fromCharCode(decryptedCharCode);
+            }
+            return decryptedString;
+        } catch (error) {
+            throw new Error('Original decryption failed: ' + error.message);
+        }
+    }
+    /**
+     * Encrypts using the original CryptX algorithm (matches PHP version)
+     * @param {string} inputString
+     * @returns {string}
+     */
+    static originalEncrypt(inputString) {
+        if (typeof inputString !== 'string' || inputString.length === 0) {
+            throw new Error('Invalid input string');
+        }
+        // Remove "mailto:" prefix if present for encryption
+        const cleanInput = inputString.replace(/^mailto:/, '');
+        let crypt = '';
+        // ASCII values blacklist (from PHP constant)
+        const ASCII_VALUES_BLACKLIST = ['32', '34', '39', '60', '62', '63', '92', '94', '96', '127'];
+        try {
+            for (let i = 0; i < cleanInput.length; i++) {
+                let salt, asciiValue;
+                let attempts = 0;
+                const maxAttempts = 20; // Prevent infinite loops
+                do {
+                    if (attempts >= maxAttempts) {
+                        // Fallback to a safe salt if we can't find a valid one
+                        salt = 1;
+                        asciiValue = cleanInput.charCodeAt(i) + salt;
+                        break;
+                    }
+                    // Generate random number between 0 and 3 (matching PHP rand(0,3))
+                    const randomValues = SecureUtils.getSecureRandomBytes(1);
+                    salt = randomValues[0] % 4;
+                    // Get ASCII value and add salt
+                    asciiValue = cleanInput.charCodeAt(i) + salt;
+                    // Check if value exceeds limit (matching PHP logic)
+                    if (asciiValue >= 8364) {
+                        asciiValue = 128;
+                    }
+                    attempts++;
+                } while (ASCII_VALUES_BLACKLIST.includes(asciiValue.toString()) && attempts < maxAttempts);
+                // Append salt and character to result
+                crypt += salt.toString() + String.fromCharCode(asciiValue);
+            }
+            return crypt;
+        } catch (error) {
+            throw new Error('Original encryption failed: ' + error.message);
+        }
+    }
+}
+/**
+ * Modern encryption class using Web Crypto API - PHP Compatible
+ */
+class SecureEncryption {
+    static async deriveKey(password, salt) {
+        const encoder = new TextEncoder();
+        const keyMaterial = await crypto.subtle.importKey(
+            'raw',
+            encoder.encode(password),
+            { name: 'PBKDF2' },
+            false,
+            ['deriveKey']
+        );
+        return crypto.subtle.deriveKey(
+            {
+                name: 'PBKDF2',
+                salt: salt,
+                iterations: 100000,
+                hash: 'SHA-256'
+            },
+            keyMaterial,
+            { name: 'AES-GCM', length: 256 },
+            false,
+            ['encrypt', 'decrypt']
+        );
+    }
+    static async encrypt(plaintext, password) {
+        if (typeof plaintext !== 'string' || typeof password !== 'string') {
+            throw new Error('Both plaintext and password must be strings');
+        }
+        const encoder = new TextEncoder();
+        const salt = SecureUtils.getSecureRandomBytes(16);
+        const iv = SecureUtils.getSecureRandomBytes(CONFIG.IV_SIZE);
+        const key = await this.deriveKey(password, salt);
+        const encrypted = await crypto.subtle.encrypt(
+            { name: 'AES-GCM', iv: iv },
+            key,
+            encoder.encode(plaintext)
+        );
+        // Match PHP format: salt(16) + iv(16) + encrypted_data + tag(16)
+        const encryptedArray = new Uint8Array(encrypted);
+        const encryptedData = encryptedArray.slice(0, -16); // Remove tag from encrypted data
+        const tag = encryptedArray.slice(-16); // Get the tag
+        const combined = new Uint8Array(salt.length + iv.length + encryptedData.length + tag.length);
+        combined.set(salt, 0);
+        combined.set(iv, salt.length);
+        combined.set(encryptedData, salt.length + iv.length);
+        combined.set(tag, salt.length + iv.length + encryptedData.length);
+        return SecureUtils.arrayBufferToBase64(combined.buffer);
+    }
+    static async decrypt(encryptedData, password) {
+        if (typeof encryptedData !== 'string' || typeof password !== 'string') {
+            throw new Error('Both encryptedData and password must be strings');
+        }
+        try {
+            const combined = SecureUtils.base64ToArrayBuffer(encryptedData);
+            const totalLength = combined.byteLength;
+            // PHP format: salt(16) + iv(16) + encrypted_data + tag(16)
+            const saltLength = 16;
+            const ivLength = 16;
+            const tagLength = 16;
+            const encryptedDataLength = totalLength - saltLength - ivLength - tagLength;
+            if (totalLength < saltLength + ivLength + tagLength) {
+                throw new Error('Encrypted data too short');
+            }
+            const salt = combined.slice(0, saltLength);
+            const iv = combined.slice(saltLength, saltLength + ivLength);
+            const encryptedDataOnly = combined.slice(saltLength + ivLength, saltLength + ivLength + encryptedDataLength);
+            const tag = combined.slice(-tagLength); // Last 16 bytes
+            const key = await this.deriveKey(password, new Uint8Array(salt));
+            // Reconstruct the encrypted data with tag for Web Crypto API
+            const encryptedWithTag = new Uint8Array(encryptedDataOnly.byteLength + tag.byteLength);
+            encryptedWithTag.set(new Uint8Array(encryptedDataOnly), 0);
+            encryptedWithTag.set(new Uint8Array(tag), encryptedDataOnly.byteLength);
+            const decrypted = await crypto.subtle.decrypt(
+                { name: 'AES-GCM', iv: new Uint8Array(iv) },
+                key,
+                encryptedWithTag
+            );
+            const decoder = new TextDecoder();
+            return decoder.decode(decrypted);
+        } catch (error) {
+            throw new Error('Decryption failed: ' + error.message);
+        }
+    }
+}
+/**
+ * Main CryptX functions with backward compatibility
+ */
+/**
+ * Securely decrypts and validates a URL before navigation
+ * @param {string} encryptedUrl
+ * @param {string} password
+ */
+async function secureDecryptAndNavigate(encryptedUrl, password = 'default_key') {
+    if (typeof encryptedUrl !== 'string' || encryptedUrl.length === 0) {
+        console.error('Invalid encrypted URL provided');
+        return;
+    }
+    try {
+        let decryptedUrl;
+        // Try modern decryption first, then fall back to original algorithm
+        try {
+            decryptedUrl = await SecureEncryption.decrypt(encryptedUrl, password);
+        } catch (modernError) {
+            console.warn('Modern decryption failed, trying original algorithm');
+            decryptedUrl = LegacyEncryption.originalDecrypt(encryptedUrl);
+        }
+        const validatedUrl = SecureUtils.validateUrl(decryptedUrl);
+        if (!validatedUrl) {
+            console.error('Invalid or unsafe URL detected');
+            return;
+        }
+        window.location.href = validatedUrl;
+    } catch (error) {
+        console.error('Error during URL decryption and navigation:', error.message);
+    }
+}
+/**
+ * Legacy function for backward compatibility - using original algorithm
+ * @param {string} encryptedString
+ * @returns {string|null}
  */
 function DeCryptString(encryptedString) {
+    let charCode = 0;
+    let decryptedString = "mailto:";
+    let encryptionKey = 0;
+    for (let i = 0; i < encryptedString.length; i += 2) {
+        encryptionKey = encryptedString.substr(i, 1);
+        charCode = encryptedString.charCodeAt(i + 1);
+        if (charCode >= UPPER_LIMIT) {
+            charCode = DEFAULT_VALUE;
+        }
+        decryptedString += String.fromCharCode(charCode - encryptionKey);
+    }
+    return decryptedString;
+}
+/**
+ * Redirects the current page to the decrypted URL.
+ *
+ * @param {string} encryptedUrl - The encrypted URL to be decrypted and redirected to.
+ * @return {void}
+ */
+function DeCryptX( encryptedUrl )
+{
+    location.href=DeCryptString( encryptedUrl );
+}
+/**
+ * Generates a hashed string from the input string using a custom algorithm.
+ * The method applies a randomized salt to the ASCII values of the characters
+ * in the input string while avoiding certain blacklisted ASCII values.
+ *
+ * @param {string} inputString - The input string to be hashed.
+ * @return {string} The generated hash string.
+    try {
+        return LegacyEncryption.originalDecrypt(encryptedString);
+    } catch (error) {
+        console.error('Legacy decryption failed:', error.message);
+        return null;
+    }
+}
+/**
+ * Legacy function for backward compatibility - secured
+ * @param {string} encryptedUrl
+ */
+function DeCryptX(encryptedUrl) {
+    const decryptedUrl = DeCryptString(encryptedUrl);
+    if (!decryptedUrl) {
+        console.error('Failed to decrypt URL');
+        return;
+    }
+    const validatedUrl = SecureUtils.validateUrl(decryptedUrl);
+    if (!validatedUrl) {
+        console.error('Invalid or unsafe URL detected');
+        return;
+    }
+    window.location.href = validatedUrl;
+}
+/**
+ * Generates encrypted email link with proper security
+ * @param {string} emailAddress
+ * @param {string} password
+ * @returns {Promise<string>}
+ */
+async function generateSecureEmailLink(emailAddress, password = 'default_key') {
+    if (typeof emailAddress !== 'string' || emailAddress.length === 0) {
+        throw new Error('Valid email address required');
+    }
+    const emailRegex = /^[^\s@]+@[^\s@]+\.[^\s@]+$/;
+    if (!emailRegex.test(emailAddress)) {
+        throw new Error('Invalid email format');
+    }
+    const mailtoUrl = `mailto:${emailAddress}`;
+    const encryptedData = await SecureEncryption.encrypt(mailtoUrl, password);
+    const escapedData = SecureUtils.escapeJavaScript(encryptedData);
+    return `javascript:secureDecryptAndNavigate('${escapedData}', '${SecureUtils.escapeJavaScript(password)}')`;
+}
+/**
+ * Legacy function for backward compatibility - using original algorithm
+ * @param {string} emailAddress
+ * @returns {string}
+ */
+function generateDeCryptXHandler(emailAddress) {
+    if (typeof emailAddress !== 'string' || emailAddress.length === 0) {
+        console.error('Valid email address required');
+        return 'javascript:void(0)';
+    }
+    try {
+        const encrypted = LegacyEncryption.originalEncrypt(emailAddress);
+        const escaped = SecureUtils.escapeJavaScript(encrypted);
+        return `javascript:DeCryptX('${escaped}')`;
+    } catch (error) {
+        console.error('Error generating handler:', error.message);
+        return 'javascript:void(0)';
+    }
+}
+/**
+ * Legacy function - matches original PHP generateHashFromString
+ * @param {string} inputString
+ * @returns {string}
  */
 function generateHashFromString(inputString) {
+    // Replace & with itself (this line seems redundant in the original PHP code)
+    inputString = inputString.replace("&", "&");
+    let crypt = '';
+    // ASCII values blacklist (taken from the PHP constant)
+    const ASCII_VALUES_BLACKLIST = ['32', '34', '39', '60', '62', '63', '92', '94', '96', '127'];
+    for (let i = 0; i < inputString.length; i++) {
+        let salt, asciiValue;
+        do {
+            // Generate random number between 0 and 3
+            salt = Math.floor(Math.random() * 4);
+            // Get ASCII value and add salt
+            asciiValue = inputString.charCodeAt(i) + salt;
+            // Check if value exceeds limit
+            if (8364 <= asciiValue) {
+                asciiValue = 128;
+            }
+        } while (ASCII_VALUES_BLACKLIST.includes(asciiValue.toString()));
+        // Append salt and character to result
+        crypt += salt + String.fromCharCode(asciiValue);
+    }
+    return crypt;
+}
+/**
+ * Generates a DeCryptX handler URL with a hashed email address.
+ *
+ * @param {string} emailAddress - The email address to be hashed and included in the handler URL.
+ * @return {string} A string representing the JavaScript DeCryptX handler with the hashed email address.
+ */
+function generateDeCryptXHandler(emailAddress) {
+    return `javascript:DeCryptX('${generateHashFromString(emailAddress)}')`;
+}
+    try {
+        return LegacyEncryption.originalEncrypt(inputString);
+    } catch (error) {
+        console.error('Error generating hash:', error.message);
+        return '';
+    }
+}
+// Export functions for module usage
+if (typeof module !== 'undefined' && module.exports) {
+    module.exports = {
+        secureDecryptAndNavigate,
+        generateSecureEmailLink,
+        DeCryptX,
+        DeCryptString,
+        generateDeCryptXHandler,
+        generateHashFromString,
+        SecureEncryption,
+        LegacyEncryption,
+        SecureUtils
+    };
+}

cryptx/trunk/js/cryptx.min.js

r3323475	r3339444
1		const UPPER_LIMIT=8364,DEFAULT_VALUE=128;function DeCryptString(t){let r=0,e="mailto:",n=0;for(let o=0;o<t.length;o+=2)n=t.substr(o,1),r=t.charCodeAt(o+1),r>=8364&&(r=128),e+=String.fromCharCode(r-n);return e}function DeCryptX(t){location.href=DeCryptString(t)}function generateHashFromString(t){t=t.replace("&","&");let r="";const e=["32","34","39","60","62","63","92","94","96","127"];for(let n=0;n<t.length;n++){let o,a;do{o=Math.floor(4*Math.random()),a=t.charCodeAt(n)+o,8364<=a&&(a=128)}while(e.includes(a.toString()));r+=o+String.fromCharCode(a)}return r}function generateDeCryptXHandler(t){return`javascript:DeCryptX('${generateHashFromString(t)}')`}
	1	const CONFIG={ALLOWED_PROTOCOLS:["http:","https:","mailto:"],MAX_URL_LENGTH:2048,ENCRYPTION_KEY_SIZE:32,IV_SIZE:16};class SecureUtils{static getSecureRandomBytes(e){if("undefined"==typeof crypto\|\|!crypto.getRandomValues)throw new Error("Secure random number generation not available");return crypto.getRandomValues(new Uint8Array(e))}static arrayBufferToBase64(e){const r=new Uint8Array(e);let t="";for(let e=0;e<r.byteLength;e++)t+=String.fromCharCode(r[e]);return btoa(t)}static base64ToArrayBuffer(e){const r=atob(e),t=new ArrayBuffer(r.length),n=new Uint8Array(t);for(let e=0;e<r.length;e++)n[e]=r.charCodeAt(e);return t}static validateUrl(e){if("string"!=typeof e\|\|0===e.length)return null;if(e.length>CONFIG.MAX_URL_LENGTH)return console.error("URL exceeds maximum length"),null;try{const r=new URL(e);if(!CONFIG.ALLOWED_PROTOCOLS.includes(r.protocol))return console.error("Protocol not allowed:",r.protocol),null;if("mailto:"===r.protocol){if(!/^[^\s@]+@[^\s@]+\.[^\s@]+$/.test(r.pathname))return console.error("Invalid email format in mailto URL"),null}return e}catch(e){return console.error("Invalid URL format:",e.message),null}}static escapeJavaScript(e){return"string"!=typeof e?"":e.replace(/\\/g,"\\\\").replace(/'/g,"\\'").replace(/"/g,'\\"').replace(/\n/g,"\\n").replace(/\r/g,"\\r").replace(/\t/g,"\\t")}}class LegacyEncryption{static originalDecrypt(e){if("string"!=typeof e\|\|0===e.length)throw new Error("Invalid encrypted string");let r=0,t="mailto:",n=0;try{for(let a=0;a<e.length&&!(a+1>=e.length);a+=2){n=parseInt(e.charAt(a),10),isNaN(n)&&(n=0),r=e.charCodeAt(a+1),r>=8364&&(r=128);const o=r-n;if(o<0\|\|o>1114111)throw new Error("Invalid character code during decryption");t+=String.fromCharCode(o)}return t}catch(e){throw new Error("Original decryption failed: "+e.message)}}static originalEncrypt(e){if("string"!=typeof e\|\|0===e.length)throw new Error("Invalid input string");const r=e.replace(/^mailto:/,"");let t="";const n=["32","34","39","60","62","63","92","94","96","127"];try{for(let e=0;e<r.length;e++){let a,o,i=0;const c=20;do{if(i>=c){a=1,o=r.charCodeAt(e)+a;break}a=SecureUtils.getSecureRandomBytes(1)[0]%4,o=r.charCodeAt(e)+a,o>=8364&&(o=128),i++}while(n.includes(o.toString())&&i<c);t+=a.toString()+String.fromCharCode(o)}return t}catch(e){throw new Error("Original encryption failed: "+e.message)}}}class SecureEncryption{static async deriveKey(e,r){const t=new TextEncoder,n=await crypto.subtle.importKey("raw",t.encode(e),{name:"PBKDF2"},!1,["deriveKey"]);return crypto.subtle.deriveKey({name:"PBKDF2",salt:r,iterations:1e5,hash:"SHA-256"},n,{name:"AES-GCM",length:256},!1,["encrypt","decrypt"])}static async encrypt(e,r){if("string"!=typeof e\|\|"string"!=typeof r)throw new Error("Both plaintext and password must be strings");const t=new TextEncoder,n=SecureUtils.getSecureRandomBytes(16),a=SecureUtils.getSecureRandomBytes(CONFIG.IV_SIZE),o=await this.deriveKey(r,n),i=await crypto.subtle.encrypt({name:"AES-GCM",iv:a},o,t.encode(e)),c=new Uint8Array(i),s=c.slice(0,-16),l=c.slice(-16),y=new Uint8Array(n.length+a.length+s.length+l.length);return y.set(n,0),y.set(a,n.length),y.set(s,n.length+a.length),y.set(l,n.length+a.length+s.length),SecureUtils.arrayBufferToBase64(y.buffer)}static async decrypt(e,r){if("string"!=typeof e\|\|"string"!=typeof r)throw new Error("Both encryptedData and password must be strings");try{const t=SecureUtils.base64ToArrayBuffer(e),n=t.byteLength,a=16,o=16,i=16,c=n-a-o-i;if(n<a+o+i)throw new Error("Encrypted data too short");const s=t.slice(0,a),l=t.slice(a,a+o),y=t.slice(a+o,a+o+c),g=t.slice(-i),d=await this.deriveKey(r,new Uint8Array(s)),p=new Uint8Array(y.byteLength+g.byteLength);p.set(new Uint8Array(y),0),p.set(new Uint8Array(g),y.byteLength);const u=await crypto.subtle.decrypt({name:"AES-GCM",iv:new Uint8Array(l)},d,p);return(new TextDecoder).decode(u)}catch(e){throw new Error("Decryption failed: "+e.message)}}}async function secureDecryptAndNavigate(e,r="default_key"){if("string"==typeof e&&0!==e.length)try{let t;try{t=await SecureEncryption.decrypt(e,r)}catch(r){console.warn("Modern decryption failed, trying original algorithm"),t=LegacyEncryption.originalDecrypt(e)}const n=SecureUtils.validateUrl(t);if(!n)return void console.error("Invalid or unsafe URL detected");window.location.href=n}catch(e){console.error("Error during URL decryption and navigation:",e.message)}else console.error("Invalid encrypted URL provided")}function DeCryptString(e){try{return LegacyEncryption.originalDecrypt(e)}catch(e){return console.error("Legacy decryption failed:",e.message),null}}function DeCryptX(e){const r=DeCryptString(e);if(!r)return void console.error("Failed to decrypt URL");const t=SecureUtils.validateUrl(r);t?window.location.href=t:console.error("Invalid or unsafe URL detected")}async function generateSecureEmailLink(e,r="default_key"){if("string"!=typeof e\|\|0===e.length)throw new Error("Valid email address required");if(!/^[^\s@]+@[^\s@]+\.[^\s@]+$/.test(e))throw new Error("Invalid email format");const t=`mailto:${e}`,n=await SecureEncryption.encrypt(t,r);return`javascript:secureDecryptAndNavigate('${SecureUtils.escapeJavaScript(n)}', '${SecureUtils.escapeJavaScript(r)}')`}function generateDeCryptXHandler(e){if("string"!=typeof e\|\|0===e.length)return console.error("Valid email address required"),"javascript:void(0)";try{const r=LegacyEncryption.originalEncrypt(e);return`javascript:DeCryptX('${SecureUtils.escapeJavaScript(r)}')`}catch(e){return console.error("Error generating handler:",e.message),"javascript:void(0)"}}function generateHashFromString(e){try{return LegacyEncryption.originalEncrypt(e)}catch(e){return console.error("Error generating hash:",e.message),""}}"undefined"!=typeof module&&module.exports&&(module.exports={secureDecryptAndNavigate:secureDecryptAndNavigate,generateSecureEmailLink:generateSecureEmailLink,DeCryptX:DeCryptX,DeCryptString:DeCryptString,generateDeCryptXHandler:generateDeCryptXHandler,generateHashFromString:generateHashFromString,SecureEncryption:SecureEncryption,LegacyEncryption:LegacyEncryption,SecureUtils:SecureUtils});

cryptx/trunk/readme.txt

-                      r3335910
+                      r3339444
 Contributors: d3395
 Donate link: https://www.paypal.com/cgi-bin/webscr?cmd=_s-xclick&hosted_button_id=4026696
 Tags: antispam, email, mail, addresses
 Requires at least: 6.0
+Tags: antispam, email, mail, addresses, spam protection, email encryption, privacy
+Requires at least: 6.7
 Tested up to: 6.8
 Stable tag: 3.5.2
 Requires PHP: 8.0
+Stable tag: 4.0.0
+Requires PHP: 8.1
 License: GPLv2 or later
 License URI: https://www.gnu.org/licenses/gpl-2.0.html
 …
 No more SPAM by spiders scanning you site for email addresses. With CryptX you can hide all your email addresses, with and without a mailto-link, by converting them using javascript or UNICODE.
+CryptX protects your email addresses from spam bots while keeping them readable and functional for your visitors. The plugin automatically detects email addresses in your content and encrypts them using various methods including JavaScript encryption, Unicode conversion, and image replacement.
+**Key Features:**
+* **Automatic Email Detection** - Finds and encrypts email addresses in posts, pages, comments, and widgets
+* **Multiple Encryption Methods** - JavaScript, Unicode, image replacement, and custom text options
+* **Widget Support** - Works with text widgets and other widget content
+* **RSS Feed Control** - Option to disable encryption in RSS feeds
+* **Whitelist Support** - Exclude specific domains from encryption
+* **Per-Post Control** - Enable/disable encryption on individual posts and pages
+* **Shortcode Support** - Use `[cryptx][email protected][/cryptx]` for manual encryption
+* **Template Functions** - Developer-friendly functions for theme integration
 [Plugin Homepage](http://weber-nrw.de/wordpress/cryptx/ "Plugin Homepage")
 == Screenshots ==
+. Plugin settings
+. Template functions
+. Plugin settings - General configuration options
+. Email encryption methods and display options
+. Advanced settings and whitelist configuration
+== Installation ==
+. Upload the CryptX folder to the `/wp-content/plugins/` directory
+. Activate the plugin through the 'Plugins' menu in WordPress
+. Configure the plugin settings under Settings > CryptX
+. Your email addresses will now be automatically protected!
+== Frequently Asked Questions ==
+= How does CryptX protect my email addresses? =
+CryptX uses various methods to hide email addresses from spam bots while keeping them functional for visitors. Methods include JavaScript encryption, Unicode conversion, and replacing emails with images or custom text.
+= Will this affect my website's performance? =
+CryptX is designed to be lightweight and only loads JavaScript when needed. The performance impact is minimal.
+= Can I exclude certain email addresses from encryption? =
+Yes, you can use the whitelist feature to exclude specific domains or email addresses from encryption.
+= Does it work with contact forms? =
+CryptX primarily works with email addresses displayed in content. It doesn't interfere with contact forms or other form functionality.
+= Can I disable encryption on specific posts? =
+Yes, you can enable the meta box feature to control encryption on individual posts and pages.
+For more information, visit the [Plugin Homepage](http://weber-nrw.de/wordpress/cryptx/ "Plugin Homepage")
 == Changelog ==
+= 4.0.0 =
+* **Major Update**: Complete code refactoring and modernization
+* Improved PHP 8.1+ compatibility and performance
+* Enhanced plugin architecture with better separation of concerns
+* Improved widget filtering and universal widget support
+* Better error handling and debugging capabilities
+* Updated minimum requirements: WordPress 6.7+ and PHP 8.1+
+* Improved security and code quality
+* Enhanced admin interface and settings organization
+* Better handling of complex HTML structures and multiline content
 = 3.5.2 =
 * Fixed a bug where activating CryptX for the first time caused a PHP Fatal error
 …
 * Add Option to disable CryptX on single post/page
-== Installation ==
-. Upload "cryptX folder" to the `/wp-content/plugins/` directory
-. Activate the plugin through the 'Plugins' menu in WordPress
-. Edit the Options under the Options Page.
-. Look at your Blog and be happy.
 == Upgrade Notice ==
+Nothing special to do.
+== Frequently Asked Questions ==
+[Plugin Homepage](http://weber-nrw.de/wordpress/cryptx/ "Plugin Homepage")
+= 4.0.0 =
+Major update with improved PHP 8.1+ compatibility, enhanced performance, and modernized codebase. Please test on a staging site first. Minimum requirements: WordPress 6.7+ and PHP 8.1+.
+= 3.5.2 =
+Bug fixes for activation errors and Elementor compatibility issues.

cryptx/trunk/templates/admin/tabs/general.php

-                      r3323475
+                      r3339444
+<?php
+/**
+ * CryptX General Settings Tab Template
+ *
+ * @var array $options
+ * @var array $applyTo
+ * @var array $decryptionType
+ * @var array $javascriptLocation
+ * @var string $excludedIds
+ * @var bool $metaBox
+ * @var bool $autolink
+ * @var string $whiteList
+ */
+defined('ABSPATH') || exit;
+?>
+<h4><?php esc_html_e("General", 'cryptx'); ?></h4>
+<table class="form-table" role="presentation">
+    <!-- Apply CryptX Section -->
+    <tr>
+        <th scope="row"><?php _e("Apply CryptX to...", 'cryptx'); ?></th>
+        <td>
+            <?php foreach ($applyTo as $key => $setting): ?>
+                <label>
+                    <input type="checkbox"
+                           name="cryptX_var[<?php echo esc_attr($key); ?>]"
+                           value="1"
+                        <?php checked($options[$key] ?? 0, 1); ?> />
+                    <?php echo esc_html($setting['label']); ?>
+                    <?php if (isset($setting['description'])): ?>
+                        <small><?php echo esc_html($setting['description']); ?></small>
+                    <?php endif; ?>
+                </label><br/>
+            <?php endforeach; ?>
+        </td>
+    </tr>
+    <tr class="spacer">
+        <td colspan="2"><hr></td>
+    </tr>
+    <!-- RSS Feed Section -->
+    <tr>
+        <th scope="row" colspan="2">
+            <label>
+                <input name="cryptX_var[disable_rss]"
+                       type="checkbox"
+                       value="1"
+                    <?php checked($options['disable_rss'] ?? true, 1); ?> />
+                <?php esc_html_e("Disable CryptX in RSS feeds", 'cryptx'); ?>
+            </label>
+            <p class="description">
+                <?php esc_html_e("When enabled, email addresses in RSS feeds will not be encrypted.", 'cryptx'); ?>
+            </p>
+        </th>
+    </tr>
+    <tr class="spacer">
+        <td colspan="2"><hr></td>
+    </tr>
+    <!-- Excluded IDs Section -->
+    <tr>
+        <th scope="row"><?php esc_html_e("Excluded ID's...", 'cryptx'); ?></th>
+        <td>
+            <input name="cryptX_var[excludedIDs]"
+                   type="text"
+                   value="<?php echo esc_attr($excludedIds); ?>"
+                   class="regular-text" />
+            <p class="description">
+                <?php esc_html_e("Enter all Page/Post ID's to exclude from CryptX as comma separated list.", 'cryptx'); ?>
+            </p>
+            <label>
+                <input name="cryptX_var[metaBox]"
+                       type="checkbox"
+                       value="1"
+                    <?php checked($metaBox, 1); ?> />
+                <?php esc_html_e("Enable the CryptX Widget on editing a post or page.", 'cryptx'); ?>
+            </label>
+        </td>
+    </tr>
+    <tr class="spacer">
+        <td colspan="2"><hr></td>
+    </tr>
+    <!-- Decryption Type Section -->
+    <tr>
+        <th scope="row"><?php esc_html_e("Type of decryption", 'cryptx'); ?></th>
+        <td>
+            <?php foreach ($decryptionType as $type): ?>
+                <label>
+                    <input name="cryptX_var[java]"
+                           type="radio"
+                           value="<?php echo esc_attr($type['value']); ?>"
+                           <?php checked($options['java'], $type['value']); ?> />
+                    <?php echo esc_html($type['label']); ?>
+                </label><br />
+            <?php endforeach; ?>
+        </td>
+    </tr>
+    <tr class="spacer">
+        <td colspan="2"><hr></td>
+    </tr>
+    <!-- JavaScript Location Section -->
+    <tr>
+        <th scope="row"><?php esc_html_e("Where to load the needed javascript...", 'cryptx'); ?></th>
+        <td>
+            <?php foreach ($javascriptLocation as $location): ?>
+                <label>
+                    <input name="cryptX_var[load_java]"
+                           type="radio"
+                           value="<?php echo esc_attr($location['value']); ?>"
+                        <?php //checked(get_option('load_java'), $location['value']); ?>
+                        <?php checked($options['load_java'], $location['value']); ?> />
+                    <?php echo wp_kses($location['label'], ['b' => []]); ?>
+                </label><br />
+            <?php endforeach; ?>
+        </td>
+    </tr>
+    <tr class="spacer">
+        <td colspan="2"><hr></td>
+    </tr>
+    <!-- Autolink Section -->
+    <tr>
+        <th scope="row" colspan="2">
+            <label>
+                <input name="cryptX_var[autolink]"
+                       type="checkbox"
+                       value="1"
+                    <?php checked($autolink, 1); ?> />
+                <?php esc_html_e("Add mailto to all unlinked email addresses", 'cryptx'); ?>
+            </label>
+        </th>
+    </tr>
+    <tr class="spacer">
+        <td colspan="2"><hr></td>
+    </tr>
+    <!-- Whitelist Section -->
+    <tr>
+        <th scope="row"><?php esc_html_e("Whitelist of extensions", 'cryptx'); ?></th>
+        <td>
+            <input name="cryptX_var[whiteList]"
+                   type="text"
+                   value="<?php echo esc_attr($whiteList); ?>"
+                   class="regular-text" />
+            <p class="description">
+                <?php echo wp_kses(
+                    __("<strong>This is a workaround for the 'retina issue'.</strong><br/>You can provide a comma separated list of extensions like 'jpeg,jpg,png,gif' which will be ignored by CryptX.", 'cryptx'),
+                    ['strong' => [], 'br' => []]
+                ); ?>
+            </p>
+        </td>
+    </tr>
+    <tr class="spacer">
+        <td colspan="2"><hr></td>
+    </tr>
+    <!-- Reset Options Section -->
+    <tr>
+        <th scope="row" colspan="2" class="warning">
+            <label>
+                <input name="cryptX_var_reset"
+                       type="checkbox"
+                       value="1" />
+                <?php esc_html_e("Reset CryptX options to defaults. Use it carefully and at your own risk. All changes will be deleted!", 'cryptx'); ?>
+            </label>
+        </th>
+    </tr>
+</table>
+<input type="hidden" name="cryptX_save_general_settings" value="true">
+<?php submit_button(__('Save General Settings', 'cryptx'), 'primary', 'cryptX_save_general_settings'); ?>
+<?php if (!defined('ABSPATH')) exit; ?>
+<div class="cryptx-tab-content cryptx-general-settings">
+    <table class="form-table">
+        <!-- Security Settings Section -->
+        <tr>
+            <th colspan="2">
+                <h3 style="margin: 20px 0 10px 0; padding: 10px 0; border-bottom: 1px solid #ddd;">
+                    <?php _e('Encryption Mode', 'cryptx'); ?>
+                </h3>
+            </th>
+        </tr>
+        <tr>
+            <th scope="row"><?php echo $securitySettings['encryption_mode']['label']; ?></th>
+            <td>
+                <select name="cryptX_var[encryption_mode]" id="encryption_mode">
+                    <?php foreach ($securitySettings['encryption_mode']['options'] as $value => $label): ?>
+                        <option value="<?php echo esc_attr($value); ?>" <?php selected($securitySettings['encryption_mode']['value'], $value); ?>>
+                            <?php echo esc_html($label); ?>
+                        </option>
+                    <?php endforeach; ?>
+                </select>
+                <p class="description">
+                    <?php echo $securitySettings['encryption_mode']['description']; ?>
+                    <br/>
+                    <strong><?php _e('Legacy:', 'cryptx'); ?></strong> <?php _e('Uses the original CryptX encryption algorithm for backward compatibility.', 'cryptx'); ?><br/>
+                    <strong><?php _e('Secure:', 'cryptx'); ?></strong> <?php _e('Uses modern AES-256-GCM encryption with PBKDF2 key derivation for enhanced security.', 'cryptx'); ?>
+                </p>
+                <!-- Hidden checkbox that gets set based on the dropdown -->
+                <input type="hidden" name="cryptX_var[use_secure_encryption]" id="use_secure_encryption"
+                       value="<?php echo $securitySettings['use_secure_encryption']['value']; ?>" />
+            </td>
+        </tr>
+        <!-- Separator -->
+        <tr>
+            <th colspan="2">
+                <h3 style="margin: 20px 0 10px 0; padding: 10px 0; border-bottom: 1px solid #ddd;">
+                    <?php _e('General Settings', 'cryptx'); ?>
+                </h3>
+            </th>
+        </tr>
+        <!-- Apply CryptX to Section -->
+        <tr>
+            <th scope="row"><?php _e('Apply CryptX to', 'cryptx'); ?></th>
+            <td>
+                <fieldset>
+                    <?php foreach ($applyTo as $key => $setting): ?>
+                        <label for="<?php echo esc_attr($key); ?>">
+                            <input type="hidden" name="cryptX_var[<?php echo esc_attr($key); ?>]" value="0" />
+                            <input type="checkbox"
+                                   id="<?php echo esc_attr($key); ?>"
+                                   name="cryptX_var[<?php echo esc_attr($key); ?>]"
+                                   value="1"
+                                <?php checked($options[$key] ?? 0, 1); ?> />
+                            <?php echo esc_html($setting['label']); ?>
+                            <?php if (isset($setting['description'])): ?>
+                                <span class="description"><?php echo esc_html($setting['description']); ?></span>
+                            <?php endif; ?>
+                        </label><br />
+                    <?php endforeach; ?>
+                </fieldset>
+            </td>
+        </tr>
+        <!-- Decryption Type -->
+        <tr>
+            <th scope="row"><?php _e('Decryption type', 'cryptx'); ?></th>
+            <td>
+                <fieldset>
+                    <?php foreach ($decryptionType as $key => $setting): ?>
+                        <label for="java_<?php echo esc_attr($key); ?>">
+                            <input type="radio"
+                                   id="java_<?php echo esc_attr($key); ?>"
+                                   name="cryptX_var[java]"
+                                   value="<?php echo esc_attr($setting['value']); ?>"
+                                <?php checked($options['java'] ?? 1, $setting['value']); ?> />
+                            <?php echo $setting['label']; ?>
+                        </label><br />
+                    <?php endforeach; ?>
+                </fieldset>
+            </td>
+        </tr>
+        <!-- JavaScript Location -->
+        <tr>
+            <th scope="row"><?php _e('Javascript location', 'cryptx'); ?></th>
+            <td>
+                <fieldset>
+                    <?php foreach ($javascriptLocation as $key => $setting): ?>
+                        <label for="load_java_<?php echo esc_attr($key); ?>">
+                            <input type="radio"
+                                   id="load_java_<?php echo esc_attr($key); ?>"
+                                   name="cryptX_var[load_java]"
+                                   value="<?php echo esc_attr($setting['value']); ?>"
+                                <?php checked($options['load_java'] ?? 1, $setting['value']); ?> />
+                            <?php echo $setting['label']; ?>
+                        </label><br />
+                    <?php endforeach; ?>
+                </fieldset>
+            </td>
+        </tr>
+        <!-- Additional Options -->
+        <tr>
+            <th scope="row"><?php _e('Additional options', 'cryptx'); ?></th>
+            <td>
+                <fieldset>
+                    <label for="autolink">
+                        <input type="hidden" name="cryptX_var[autolink]" value="0" />
+                        <input type="checkbox"
+                               id="autolink"
+                               name="cryptX_var[autolink]"
+                               value="1"
+                            <?php checked($options['autolink'] ?? 0, 1); ?> />
+                        <?php _e('Automatically add a link to non-linked email addresses.', 'cryptx'); ?>
+                    </label><br />
+                    <label for="metaBox">
+                        <input type="hidden" name="cryptX_var[metaBox]" value="0" />
+                        <input type="checkbox"
+                               id="metaBox"
+                               name="cryptX_var[metaBox]"
+                               value="1"
+                            <?php checked($options['metaBox'] ?? 0, 1); ?> />
+                        <?php _e('Show the "Disable CryptX" checkbox in the post editor.', 'cryptx'); ?>
+                    </label><br />
+                    <label for="disable_rss">
+                        <input type="hidden" name="cryptX_var[disable_rss]" value="0" />
+                        <input type="checkbox"
+                               id="disable_rss"
+                               name="cryptX_var[disable_rss]"
+                               value="1"
+                            <?php checked($options['disable_rss'] ?? 1, 1); ?> />
+                        <?php _e('Disable CryptX in RSS feeds.', 'cryptx'); ?>
+                    </label>
+                </fieldset>
+            </td>
+        </tr>
+        <!-- Excluded Post IDs -->
+        <tr>
+            <th scope="row">
+                <label for="excludedIDs"><?php _e('Excluded posts/pages IDs', 'cryptx'); ?></label>
+            </th>
+            <td>
+                <input type="text"
+                       id="excludedIDs"
+                       name="cryptX_var[excludedIDs]"
+                       value="<?php echo esc_attr($options['excludedIDs'] ?? ''); ?>"
+                       class="regular-text" />
+                <p class="description">
+                    <?php _e('Comma-separated list of post/page IDs where CryptX should be disabled.', 'cryptx'); ?>
+                </p>
+            </td>
+        </tr>
+        <!-- Whitelist -->
+        <tr>
+            <th scope="row">
+                <label for="whiteList"><?php _e('Whitelist', 'cryptx'); ?></label>
+            </th>
+            <td>
+                <input type="text"
+                       id="whiteList"
+                       name="cryptX_var[whiteList]"
+                       value="<?php echo esc_attr($options['whiteList'] ?? 'jpeg,jpg,png,gif'); ?>"
+                       class="regular-text" />
+                <p class="description">
+                    <?php _e('Comma-separated list of file extensions that should not be encrypted when found in email addresses.', 'cryptx'); ?>
+                </p>
+            </td>
+        </tr>
+    </table>
+    <!-- Submit Button -->
+    <p class="submit">
+        <input type="submit"
+               name="cryptX_save_general_settings"
+               class="button-primary"
+               value="<?php _e('Save Changes', 'cryptx'); ?>" />
+        <input type="submit"
+               name="cryptX_var_reset"
+               class="button-secondary"
+               value="<?php _e('Reset to Defaults', 'cryptx'); ?>"
+               onclick="return confirm('<?php _e('Are you sure you want to reset all settings to defaults?', 'cryptx'); ?>');" />
+    </p>
+</div>
+<script>
+    // Auto-sync the dropdown with the hidden checkbox
+    document.addEventListener('DOMContentLoaded', function() {
+        const encryptionModeSelect = document.getElementById('encryption_mode');
+        const useSecureEncryption = document.getElementById('use_secure_encryption');
+        if (encryptionModeSelect && useSecureEncryption) {
+            // Set initial value
+            useSecureEncryption.value = (encryptionModeSelect.value === 'secure') ? '1' : '0';
+            // Update on change
+            encryptionModeSelect.addEventListener('change', function() {
+                useSecureEncryption.value = (this.value === 'secure') ? '1' : '0';
+            });
+        }
+    });
+</script>

cryptx/trunk/templates/admin/tabs/howto.php

-                      r3323475
+                      r3339444
 ?>
+<h4><?php esc_html_e("How to use CryptX in your Template", 'cryptx'); ?></h4>
+<div class="cryptx-documentation">
+    <p>The <code>[cryptx]</code> shortcode allows you to protect email addresses from spam bots in your WordPress posts
+        and pages, even when CryptX is disabled globally for that content.</p>
+    <h3>Basic Usage</h3>
+    <pre><code>[cryptx][email protected][/cryptx]</code></pre>
+    <h3>Advanced Usage</h3>
+    <pre><code>[cryptx linktext="Contact Us" subject="Website Inquiry"][email protected][/cryptx]</code></pre>
+    <h4>Available Attributes</h4>
+    <table class="cryptx-attributes">
+        <thead>
+        <tr>
+            <th>Attribute</th>
+            <th>Description</th>
+            <th>Default</th>
+            <th>Example</th>
+        </tr>
+        </thead>
+        <tbody>
+        <tr>
+            <td><code>linktext</code></td>
+            <td>Custom text to display instead of the email address</td>
+            <td>Email address</td>
+            <td><code>linktext="Contact Us"</code></td>
+        </tr>
+        <tr>
+            <td><code>subject</code></td>
+            <td>Pre-defined subject line for the email</td>
+            <td>None</td>
+            <td><code>subject="Website Inquiry"</code></td>
+        </tr>
+        </tbody>
+    </table>
+    <h3>Examples</h3>
+    <h4>1. Basic Email Protection</h4>
+    <pre><code>[cryptx][email protected][/cryptx]</code></pre>
+    <p>Displays: A protected version of [email protected]</p>
+    <h4>2. Custom Link Text</h4>
+    <pre><code>[cryptx linktext="Send us an email"][email protected][/cryptx]</code></pre>
+    <p>Displays: "Send us an email" as a protected link</p>
+    <h4>3. With Subject Line</h4>
+    <pre><code>[cryptx subject="Product Inquiry"][email protected][/cryptx]</code></pre>
+    <p>Creates a link that opens the email client with a pre-filled subject line</p>
+    <h3>Best Practices</h3>
+    <ul>
+        <li>Use the shortcode when you need to protect individual email addresses in content where CryptX is disabled
+            globally
+        </li>
+        <li>Consider using custom link text for better user experience</li>
+        <li>Use meaningful subject lines when applicable</li>
+        <li>Don't nest shortcodes within the email address</li>
+    </ul>
+    <h3>Troubleshooting</h3>
+    <ul>
+        <li><strong>Email Not Protected:</strong> Ensure the shortcode syntax is correct with both opening and closing
+            tags
+        </li>
+        <li><strong>Link Not Working:</strong> Verify that JavaScript is enabled in the browser</li>
+        <li><strong>Strange Characters:</strong> Make sure the email address format is valid</li>
+    </ul>
+    <div class="cryptx-notes">
+        <h4>Important Notes</h4>
+        <ul>
+            <li>The shortcode works independently of global CryptX settings</li>
+            <li>JavaScript must be enabled in the visitor's browser</li>
+            <li>Email addresses are protected using JavaScript encryption</li>
+        </ul>
+    </div>
+    <div class="cryptx-version">
+        <p><strong>Available since:</strong> Version 2.7</p>
+    </div>
+</div>
+<h4><?php esc_html_e("How to use CryptX javascript function", 'cryptx'); ?></h4>
+<div class="cryptx-documentation">
+    <h2>JavaScript Email Protection Functions</h2>
+    <p>This section describes the JavaScript functions available for email protection in CryptX.</p>
+    <h3>generateDeCryptXHandler()</h3>
+    <p>A JavaScript function that generates an encrypted handler for email address protection.
+        This function creates a special URL format that encrypts email addresses to protect them
+        from spam bots while keeping them clickable for real users.</p>
+    <h4>Parameters</h4>
+    <ul>
+        <li><code>emailAddress</code> (string) - The email address to encrypt (e.g., "[email protected]")</li>
+    </ul>
+    <h4>Returns</h4>
+    <ul>
+        <li>(string) A JavaScript handler string in the format "javascript:DeCryptX('encrypted_string')"</li>
+    </ul>
+    <h4>Examples</h4>
+    <p>Basic usage in JavaScript:</p>
+    <pre><code class="language-javascript">const handler = generateDeCryptXHandler("[email protected]");
+<div class="cryptx-tab-content cryptx-howto-settings">
+    <table class="form-table">
+        <!-- Shortcode Usage Section -->
+        <tr>
+            <th colspan="2">
+                <h3 style="margin: 20px 0 10px 0; padding: 10px 0; border-bottom: 1px solid #ddd;">
+                    <?php esc_html_e("How to use CryptX Shortcode", 'cryptx'); ?>
+                </h3>
+            </th>
+        </tr>
+        <tr>
+            <th scope="row"><?php esc_html_e("Basic Usage", 'cryptx'); ?></th>
+            <td>
+                <p><?php esc_html_e("The [cryptx] shortcode allows you to protect email addresses from spam bots in your WordPress posts and pages, even when CryptX is disabled globally for that content.", 'cryptx'); ?></p>
+                <pre><code>[cryptx][email protected][/cryptx]</code></pre>
+                <p class="description"><?php esc_html_e("Displays: A protected version of [email protected]", 'cryptx'); ?></p>
+            </td>
+        </tr>
+        <tr>
+            <th scope="row"><?php esc_html_e("Advanced Usage", 'cryptx'); ?></th>
+            <td>
+                <pre><code>[cryptx linktext="Contact Us" subject="Website Inquiry"][email protected][/cryptx]</code></pre>
+                <p class="description"><?php esc_html_e("Creates a link with custom text and pre-filled subject line.", 'cryptx'); ?></p>
+            </td>
+        </tr>
+        <tr>
+            <th scope="row"><?php esc_html_e("Available Attributes", 'cryptx'); ?></th>
+            <td>
+                <table class="widefat striped">
+                    <thead>
+                    <tr>
+                        <th><?php esc_html_e("Attribute", 'cryptx'); ?></th>
+                        <th><?php esc_html_e("Description", 'cryptx'); ?></th>
+                        <th><?php esc_html_e("Default", 'cryptx'); ?></th>
+                        <th><?php esc_html_e("Example", 'cryptx'); ?></th>
+                    </tr>
+                    </thead>
+                    <tbody>
+                    <tr>
+                        <td><code>linktext</code></td>
+                        <td><?php esc_html_e("Custom text to display instead of the email address", 'cryptx'); ?></td>
+                        <td><?php esc_html_e("Email address", 'cryptx'); ?></td>
+                        <td><code>linktext="Contact Us"</code></td>
+                    </tr>
+                    <tr>
+                        <td><code>subject</code></td>
+                        <td><?php esc_html_e("Pre-defined subject line for the email", 'cryptx'); ?></td>
+                        <td><?php esc_html_e("None", 'cryptx'); ?></td>
+                        <td><code>subject="Website Inquiry"</code></td>
+                    </tr>
+                    </tbody>
+                </table>
+            </td>
+        </tr>
+        <!-- Examples Section -->
+        <tr>
+            <th colspan="2">
+                <h3 style="margin: 20px 0 10px 0; padding: 10px 0; border-bottom: 1px solid #ddd;">
+                    <?php esc_html_e("Examples", 'cryptx'); ?>
+                </h3>
+            </th>
+        </tr>
+        <tr>
+            <th scope="row"><?php esc_html_e("1. Basic Email Protection", 'cryptx'); ?></th>
+            <td>
+                <pre><code>[cryptx][email protected][/cryptx]</code></pre>
+                <p class="description"><?php esc_html_e("Displays: A protected version of [email protected]", 'cryptx'); ?></p>
+            </td>
+        </tr>
+        <tr>
+            <th scope="row"><?php esc_html_e("2. Custom Link Text", 'cryptx'); ?></th>
+            <td>
+                <pre><code>[cryptx linktext="Send us an email"][email protected][/cryptx]</code></pre>
+                <p class="description"><?php esc_html_e("Displays: \"Send us an email\" as a protected link", 'cryptx'); ?></p>
+            </td>
+        </tr>
+        <tr>
+            <th scope="row"><?php esc_html_e("3. With Subject Line", 'cryptx'); ?></th>
+            <td>
+                <pre><code>[cryptx subject="Product Inquiry"][email protected][/cryptx]</code></pre>
+                <p class="description"><?php esc_html_e("Creates a link that opens the email client with a pre-filled subject line", 'cryptx'); ?></p>
+            </td>
+        </tr>
+        <!-- Best Practices Section -->
+        <tr>
+            <th colspan="2">
+                <h3 style="margin: 20px 0 10px 0; padding: 10px 0; border-bottom: 1px solid #ddd;">
+                    <?php esc_html_e("Best Practices", 'cryptx'); ?>
+                </h3>
+            </th>
+        </tr>
+        <tr>
+            <th scope="row"><?php esc_html_e("Recommendations", 'cryptx'); ?></th>
+            <td>
+                <ul>
+                    <li><?php esc_html_e("Use the shortcode when you need to protect individual email addresses in content where CryptX is disabled globally", 'cryptx'); ?></li>
+                    <li><?php esc_html_e("Consider using custom link text for better user experience", 'cryptx'); ?></li>
+                    <li><?php esc_html_e("Use meaningful subject lines when applicable", 'cryptx'); ?></li>
+                    <li><?php esc_html_e("Don't nest shortcodes within the email address", 'cryptx'); ?></li>
+                </ul>
+            </td>
+        </tr>
+        <!-- JavaScript Functions Section -->
+        <tr>
+            <th colspan="2">
+                <h3 style="margin: 20px 0 10px 0; padding: 10px 0; border-bottom: 1px solid #ddd;">
+                    <?php esc_html_e("JavaScript Functions", 'cryptx'); ?>
+                </h3>
+            </th>
+        </tr>
+        <tr>
+            <th scope="row"><?php esc_html_e("generateDeCryptXHandler()", 'cryptx'); ?></th>
+            <td>
+                <p><?php esc_html_e("A JavaScript function that generates an encrypted handler for email address protection. This function creates a special URL format that encrypts email addresses to protect them from spam bots while keeping them clickable for real users.", 'cryptx'); ?></p>
+                <h4><?php esc_html_e("Parameters", 'cryptx'); ?></h4>
+                <ul>
+                    <li><code>emailAddress</code> (string) - <?php esc_html_e("The email address to encrypt (e.g., \"[email protected]\")", 'cryptx'); ?></li>
+                </ul>
+                <h4><?php esc_html_e("Returns", 'cryptx'); ?></h4>
+                <ul>
+                    <li><?php esc_html_e("(string) A JavaScript handler string in the format \"javascript:DeCryptX('encrypted_string')\"", 'cryptx'); ?></li>
+                </ul>
+                <h4><?php esc_html_e("Basic Usage", 'cryptx'); ?></h4>
+                <pre><code class="language-javascript">const handler = generateDeCryptXHandler("[email protected]");
 // Returns: javascript:DeCryptX('1A2B3C...')</code></pre>
     <p>Creating a protected link:</p>
     <pre><code class="language-javascript">const link = document.createElement('a');
+                <h4><?php esc_html_e("Creating a Protected Link", 'cryptx'); ?></h4>
+                <pre><code class="language-javascript">const link = document.createElement('a');
 link.href = generateDeCryptXHandler('[email protected]');
 link.textContent = "Contact Us";
 document.body.appendChild(link);</code></pre>
+    <p>Direct HTML usage:</p>
+    <pre><code class="language-html">&lt;a href="javascript:generateDeCryptXHandler('[email protected]')"&gt;Contact Us&lt;/a&gt;</code></pre>
+    <h4>Implementation with Error Handling</h4>
+    <pre><code class="language-javascript">function createSafeEmailLink(email, linkText) {
+                <h4><?php esc_html_e("Implementation with Error Handling", 'cryptx'); ?></h4>
+                <pre><code class="language-javascript">function createSafeEmailLink(email, linkText) {
     try {
         // Input validation
 …
+    }
 }</code></pre>
+    <h4>Important Notes</h4>
+    <h5>1. Dependencies</h5>
+    <ul>
+        <li>Requires generateHashFromString function</li>
+        <li>Requires DeCryptX function in the global scope</li>
+    </ul>
+    <h5>2. Browser Requirements</h5>
+    <ul>
+        <li>Works in all modern browsers</li>
+        <li>JavaScript must be enabled</li>
+    </ul>
+    <h5>3. Best Practices</h5>
+    <ul>
+        <li>Provide fallback for users with JavaScript disabled</li>
+        <li>Use meaningful link text instead of showing the email address</li>
+        <li>Add title or aria-label for accessibility</li>
+    </ul>
+    <h5>4. Security Considerations</h5>
+    <ul>
+        <li>Encryption is for spam prevention only</li>
+        <li>Not suitable for sensitive data transmission</li>
+        <li>Email address will be visible in browser's JavaScript console when decrypted</li>
+    </ul>
+    <h4>Troubleshooting</h4>
+    <h5>1. If links are not working:</h5>
+    <ul>
+        <li>Verify DeCryptX function is included</li>
+        <li>Check if JavaScript is enabled</li>
+        <li>Ensure email address format is valid</li>
+    </ul>
+    <h5>2. Different encryptions:</h5>
+    <ul>
+        <li>Normal behavior: same email generates different encrypted strings</li>
+        <li>Each encryption uses random values for security</li>
+    </ul>
+    <h5>3. Performance:</h5>
+    <ul>
+        <li>Lightweight function suitable for multiple uses</li>
+        <li>Safe for use in loops or event handlers</li>
+    </ul>
+    <div class="cryptx-related">
+        <h4>Related Functions</h4>
+        <ul>
+            <li><a href="#DeCryptX">DeCryptX()</a> - For the decryption function</li>
+            <li><a href="#generateHashFromString">generateHashFromString()</a> - For the internal encryption function
+            </li>
+        </ul>
+    </div>
+    <div class="cryptx-version">
+        <p><strong>Since:</strong> Version 3.5.0</p>
+    </div>
+            </td>
+        </tr>
+        <!-- Important Notes Section -->
+        <tr>
+            <th colspan="2">
+                <h3 style="margin: 20px 0 10px 0; padding: 10px 0; border-bottom: 1px solid #ddd;">
+                    <?php esc_html_e("Important Notes", 'cryptx'); ?>
+                </h3>
+            </th>
+        </tr>
+        <tr>
+            <th scope="row"><?php esc_html_e("Requirements", 'cryptx'); ?></th>
+            <td>
+                <ul>
+                    <li><?php esc_html_e("The shortcode works independently of global CryptX settings", 'cryptx'); ?></li>
+                    <li><?php esc_html_e("JavaScript must be enabled in the visitor's browser", 'cryptx'); ?></li>
+                    <li><?php esc_html_e("Email addresses are protected using JavaScript encryption", 'cryptx'); ?></li>
+                </ul>
+            </td>
+        </tr>
+        <tr>
+            <th scope="row"><?php esc_html_e("Browser Support", 'cryptx'); ?></th>
+            <td>
+                <ul>
+                    <li><?php esc_html_e("Works in all modern browsers", 'cryptx'); ?></li>
+                    <li><?php esc_html_e("Provide fallback for users with JavaScript disabled", 'cryptx'); ?></li>
+                </ul>
+            </td>
+        </tr>
+        <!-- Troubleshooting Section -->
+        <tr>
+            <th colspan="2">
+                <h3 style="margin: 20px 0 10px 0; padding: 10px 0; border-bottom: 1px solid #ddd;">
+                    <?php esc_html_e("Troubleshooting", 'cryptx'); ?>
+                </h3>
+            </th>
+        </tr>
+        <tr>
+            <th scope="row"><?php esc_html_e("Common Issues", 'cryptx'); ?></th>
+            <td>
+                <ul>
+                    <li><strong><?php esc_html_e("Email Not Protected:", 'cryptx'); ?></strong> <?php esc_html_e("Ensure the shortcode syntax is correct with both opening and closing tags", 'cryptx'); ?></li>
+                    <li><strong><?php esc_html_e("Link Not Working:", 'cryptx'); ?></strong> <?php esc_html_e("Verify that JavaScript is enabled in the browser", 'cryptx'); ?></li>
+                    <li><strong><?php esc_html_e("Strange Characters:", 'cryptx'); ?></strong> <?php esc_html_e("Make sure the email address format is valid", 'cryptx'); ?></li>
+                    <li><strong><?php esc_html_e("Different encryptions:", 'cryptx'); ?></strong> <?php esc_html_e("Normal behavior: same email generates different encrypted strings for security", 'cryptx'); ?></li>
+                </ul>
+            </td>
+        </tr>
+        <!-- Version Info -->
+        <tr>
+            <th scope="row"><?php esc_html_e("Version Information", 'cryptx'); ?></th>
+            <td>
+                <p><strong><?php esc_html_e("Shortcode available since:", 'cryptx'); ?></strong> <?php esc_html_e("Version 2.7", 'cryptx'); ?></p>
+                <p><strong><?php esc_html_e("JavaScript functions since:", 'cryptx'); ?></strong> <?php esc_html_e("Version 3.5.0", 'cryptx'); ?></p>
+            </td>
+        </tr>
+    </table>
 </div>
 <style>
+    .cryptx-documentation {
+        max-width: 900px;
+        margin: 20px auto;
+        font-family: -apple-system, BlinkMacSystemFont, "Segoe UI", Roboto, Oxygen-Sans, Ubuntu, Cantarell, "Helvetica Neue", sans-serif;
+        line-height: 1.6;
+    }
+    .cryptx-documentation h2 {
+        color: #23282d;
+        border-bottom: 1px solid #eee;
+        padding-bottom: 10px;
+    }
+    .cryptx-documentation h3,
+    .cryptx-documentation h4,
+    .cryptx-documentation h5 {
+        color: #23282d;
+        margin-top: 1.5em;
+    }
+    .cryptx-documentation code {
+    .cryptx-howto-settings pre {
+        background: #f4f4f4;
+        padding: 15px;
+        border-radius: 4px;
+        overflow-x: auto;
+        margin: 10px 0;
+    }
+    .cryptx-howto-settings code {
         background: #f4f4f4;
         padding: 2px 6px;
 …
+    }
+    .cryptx-documentation pre {
+        background: #f4f4f4;
+        padding: 15px;
+        border-radius: 4px;
+        overflow-x: auto;
+    }
+    .cryptx-documentation pre code {
+    .cryptx-howto-settings pre code {
         background: none;
         padding: 0;
+    }
     .cryptx-documentation ul {
+    .cryptx-howto-settings ul {
         margin-left: 20px;
+    }
     .cryptx-documentation li {
+    .cryptx-howto-settings li {
         margin-bottom: 8px;
+    }
+    .cryptx-related {
+        margin-top: 30px;
+        padding: 15px;
+        background: #f8f9fa;
+        border-radius: 4px;
+    }
+    .cryptx-version {
+    .cryptx-howto-settings h4 {
         margin-top: 20px;
+        color: #666;
+        font-style: italic;
+        margin-bottom: 10px;
+        color: #23282d;
+    }
+    .cryptx-howto-settings .widefat {
+        margin-top: 10px;
+    }
+    .cryptx-howto-settings .widefat th,
+    .cryptx-howto-settings .widefat td {
+        padding: 8px 10px;
+    }
 </style>

cryptx/trunk/templates/admin/tabs/presentation.php

-                      r3323475
+                      r3339444
 <?php
 /**
+ * Template for the CryptX presentation settings tab
+ *
+ * @var array $css CSS settings
+ * @var array $linkTextOptions Link text display options
+ * @var int $selectedOption Currently selected link text option
+ * CryptX Presentation Settings Tab Template
+ * Variables extracted from PresentationSettingsTab:
+ * - $css: CSS settings array
+ * - $emailReplacements: Email replacement settings
+ * - $linkTextOptions: Link text configuration options
+ * - $selectedOption: Currently selected option value
  */
+defined('ABSPATH') || exit;
+if (!defined('ABSPATH')) {
+    exit;
+}
 ?>
     <h4><?php _e("Define CSS Options", 'cryptx'); ?></h4>
+<div class="cryptx-tab-content cryptx-presentation-settings">
     <table class="form-table">
+        <tr>
+            <th><label for="cryptX_var[css_id]"><?php _e("CSS ID", 'cryptx'); ?></label></th>
+        <!-- CSS Settings Section -->
+        <tr>
+            <th colspan="2">
+                <h3 style="margin: 20px 0 10px 0; padding: 10px 0; border-bottom: 1px solid #ddd;">
+                    <?php _e('CSS Settings', 'cryptx'); ?>
+                </h3>
+            </th>
+        </tr>
+        <tr>
+            <th scope="row"><?php _e("CSS-ID", 'cryptx'); ?></th>
             <td>
+                <input name="cryptX_var[css_id]"
+                       id="cryptX_var[css_id]"
+                       type="text"
+                       value="<?php echo esc_attr($css['id']); ?>"
+                       class="regular-text" />
+                <p class="description">
+                    <?php _e("Please be careful using this feature! IDs should be unique. You should prefer using a css class instead.", 'cryptx'); ?>
+                </p>
+                <input name="cryptX_var[css_id]" id="css_id" value="<?php echo esc_attr($css['id']); ?>" type="text" class="regular-text" />
+                <p class="description"><?php _e("Please be careful using this feature! IDs should be unique. You should prefer using a CSS class instead.", 'cryptx'); ?></p>
             </td>
         </tr>
         <tr>
             <th><label for="cryptX_var[css_class]"><?php _e("CSS Class", 'cryptx'); ?></label></th>
+            <th scope="row"><?php _e("CSS-Class", 'cryptx'); ?></th>
             <td>
+                <input name="cryptX_var[css_class]"
+                       id="cryptX_var[css_class]"
+                       type="text"
+                       value="<?php echo esc_attr($css['class']); ?>"
+                       class="regular-text" />
+                <input name="cryptX_var[css_class]" id="css_class" value="<?php echo esc_attr($css['class']); ?>" type="text" class="regular-text" />
+                <p class="description"><?php _e("Add custom CSS class to encrypted email links.", 'cryptx'); ?></p>
             </td>
         </tr>
+        <!-- Link Text Options Section -->
+        <tr>
+            <th colspan="2">
+                <h3 style="margin: 20px 0 10px 0; padding: 10px 0; border-bottom: 1px solid #ddd;">
+                    <?php _e('Link Text Options', 'cryptx'); ?>
+                </h3>
+            </th>
+        </tr>
+        <tr>
+            <th scope="row"><?php _e('Presentation Method', 'cryptx'); ?></th>
+            <td>
+                <fieldset>
+                    <!-- Option 0: Replacement Text -->
+                    <label>
+                        <input name="cryptX_var[opt_linktext]" type="radio" value="0" <?php checked($selectedOption, 0); ?> />
+                        <strong><?php _e("Show Email with text replacement", 'cryptx'); ?></strong>
+                    </label>
+                    <div style="margin-left: 25px; margin-top: 10px; margin-bottom: 20px;">
+                        <table class="form-table" style="margin: 0;">
+                            <?php foreach ($linkTextOptions['replacement']['fields'] as $field => $config): ?>
+                                <tr>
+                                    <th scope="row" style="padding-left: 0;"><?php echo $config['label']; ?></th>
+                                    <td style="padding-left: 10px;">
+                                        <input name="cryptX_var[<?php echo esc_attr($field); ?>]"
+                                               value="<?php echo esc_attr($config['value']); ?>"
+                                               type="text" class="regular-text" />
+                                    </td>
+                                </tr>
+                            <?php endforeach; ?>
+                        </table>
+                    </div>
+                    <!-- Option 1: Custom Text -->
+                    <label>
+                        <input name="cryptX_var[opt_linktext]" type="radio" value="1" <?php checked($selectedOption, 1); ?> />
+                        <strong><?php _e("Show custom text", 'cryptx'); ?></strong>
+                    </label>
+                    <div style="margin-left: 25px; margin-top: 10px; margin-bottom: 20px;">
+                        <table class="form-table" style="margin: 0;">
+                            <?php foreach ($linkTextOptions['customText']['fields'] as $field => $config): ?>
+                                <tr>
+                                    <th scope="row" style="padding-left: 0;"><?php echo $config['label']; ?></th>
+                                    <td style="padding-left: 10px;">
+                                        <input name="cryptX_var[<?php echo esc_attr($field); ?>]"
+                                               value="<?php echo esc_attr($config['value']); ?>"
+                                               type="text" class="regular-text" />
+                                    </td>
+                                </tr>
+                            <?php endforeach; ?>
+                        </table>
+                    </div>
+                    <!-- Option 2: External Image -->
+                    <label>
+                        <input name="cryptX_var[opt_linktext]" type="radio" value="2" <?php checked($selectedOption, 2); ?> />
+                        <strong><?php _e("Show external image", 'cryptx'); ?></strong>
+                    </label>
+                    <div style="margin-left: 25px; margin-top: 10px; margin-bottom: 20px;">
+                        <table class="form-table" style="margin: 0;">
+                            <?php foreach ($linkTextOptions['externalImage']['fields'] as $field => $config): ?>
+                                <tr>
+                                    <th scope="row" style="padding-left: 0;"><?php echo $config['label']; ?></th>
+                                    <td style="padding-left: 10px;">
+                                        <?php if ($field === 'alt_linkimage'): ?>
+                                            <input name="cryptX_var[<?php echo esc_attr($field); ?>]"
+                                                   value="<?php echo esc_attr($config['value']); ?>"
+                                                   type="url" class="regular-text"
+                                                   placeholder="https://example.com/image.png" />
+                                        <?php else: ?>
+                                            <input name="cryptX_var[<?php echo esc_attr($field); ?>]"
+                                                   value="<?php echo esc_attr($config['value']); ?>"
+                                                   type="text" class="regular-text" />
+                                        <?php endif; ?>
+                                    </td>
+                                </tr>
+                            <?php endforeach; ?>
+                        </table>
+                    </div>
+                    <!-- Option 3: Uploaded Image -->
+                    <label>
+                        <input name="cryptX_var[opt_linktext]" type="radio" value="3" <?php checked($selectedOption, 3); ?> />
+                        <strong><?php _e("Show uploaded image", 'cryptx'); ?></strong>
+                    </label>
+                    <div style="margin-left: 25px; margin-top: 10px; margin-bottom: 20px;">
+                        <table class="form-table" style="margin: 0;">
+                            <tr>
+                                <th scope="row" style="padding-left: 0;"><?php _e("Select Image", 'cryptx'); ?></th>
+                                <td style="padding-left: 10px;">
+                                    <input name="cryptX_var[alt_uploadedimage]" id="alt_uploadedimage"
+                                           value="<?php echo esc_attr($linkTextOptions['uploadedImage']['fields']['alt_uploadedimage']['value']); ?>"
+                                           type="hidden" />
+                                    <button type="button" class="button" id="upload_image_button">
+                                        <?php _e("Choose Image", 'cryptx'); ?>
+                                    </button>
+                                    <div id="image_preview" style="margin-top: 10px;"></div>
+                                </td>
+                            </tr>
+                            <tr>
+                                <th scope="row" style="padding-left: 0;">
+                                    <?php echo $linkTextOptions['uploadedImage']['fields']['alt_linkimage_title']['label']; ?>
+                                </th>
+                                <td style="padding-left: 10px;">
+                                    <input name="cryptX_var[alt_linkimage_title]"
+                                           value="<?php echo esc_attr($linkTextOptions['uploadedImage']['fields']['alt_linkimage_title']['value']); ?>"
+                                           type="text" class="regular-text" />
+                                </td>
+                            </tr>
+                        </table>
+                    </div>
+                    <!-- Option 4: Scrambled Text -->
+                    <label>
+                        <input name="cryptX_var[opt_linktext]" type="radio" value="4" <?php checked($selectedOption, 4); ?> />
+                        <strong><?php echo $linkTextOptions['scrambled']['label']; ?></strong>
+                    </label><br/><br/>
+                    <!-- Option 5: PNG Image -->
+                    <label>
+                        <input name="cryptX_var[opt_linktext]" type="radio" value="5" <?php checked($selectedOption, 5); ?> />
+                        <strong><?php echo $linkTextOptions['pngImage']['label']; ?></strong>
+                    </label>
+                    <div style="margin-left: 25px; margin-top: 10px; margin-bottom: 20px;">
+                        <table class="form-table" style="margin: 0;">
+                            <?php foreach ($linkTextOptions['pngImage']['fields'] as $field => $config): ?>
+                                <tr>
+                                    <th scope="row" style="padding-left: 0;"><?php echo $config['label']; ?></th>
+                                    <td style="padding-left: 10px;">
+                                        <?php if ($field === 'c2i_font'): ?>
+                                            <select name="cryptX_var[<?php echo esc_attr($field); ?>]">
+                                                <?php foreach ($config['options'] as $value => $label): ?>
+                                                    <option value="<?php echo esc_attr($value); ?>" <?php selected($config['value'], $value); ?>>
+                                                        <?php echo esc_html($label); ?>
+                                                    </option>
+                                                <?php endforeach; ?>
+                                            </select>
+                                        <?php elseif ($field === 'c2i_fontRGB'): ?>
+                                            <input name="cryptX_var[<?php echo esc_attr($field); ?>]"
+                                                   id="c2i_fontRGB"
+                                                   value="<?php echo esc_attr($config['value']); ?>"
+                                                   type="text" class="color-field" />
+                                        <?php elseif ($field === 'c2i_fontSize'): ?>
+                                            <input name="cryptX_var[<?php echo esc_attr($field); ?>]"
+                                                   value="<?php echo esc_attr($config['value']); ?>"
+                                                   type="number" min="8" max="72" />
+                                        <?php else: ?>
+                                            <input name="cryptX_var[<?php echo esc_attr($field); ?>]"
+                                                   value="<?php echo esc_attr($config['value']); ?>"
+                                                   type="text" class="regular-text" />
+                                        <?php endif; ?>
+                                    </td>
+                                </tr>
+                            <?php endforeach; ?>
+                        </table>
+                    </div>
+                </fieldset>
+            </td>
+        </tr>
     </table>
+    <h4><?php _e("Define Presentation Options", 'cryptx'); ?></h4>
+    <table class="form-table">
+        <tbody>
+        <!-- Character Replacement Option -->
+        <tr>
+            <td>
+                <input type="radio"
+                       name="cryptX_var[opt_linktext]"
+                       id="opt_linktext_0"
+                       value="<?php echo esc_attr($linkTextOptions['replacement']['value']); ?>"
+                    <?php checked($selectedOption, $linkTextOptions['replacement']['value']); ?> />
+            </td>
+            <th scope="row">
+                <?php foreach ($linkTextOptions['replacement']['fields'] as $key => $field): ?>
+                    <div class="cryptx-field-row">
+                        <label for="cryptX_var[<?php echo esc_attr($key); ?>]">
+                            <?php echo esc_html($field['label']); ?>
+                        </label>
+                        <input type="text"
+                               name="cryptX_var[<?php echo esc_attr($key); ?>]"
+                               id="cryptX_var[<?php echo esc_attr($key); ?>]"
+                               value="<?php echo esc_attr($field['value']); ?>"
+                               class="regular-text" />
+                    </div>
+                <?php endforeach; ?>
+            </th>
+        </tr>
+        <tr class="spacer"><td colspan="3"><hr></td></tr>
+        <!-- Custom Text Option -->
+        <tr>
+            <td>
+                <input type="radio"
+                       name="cryptX_var[opt_linktext]"
+                       id="opt_linktext_1"
+                       value="<?php echo esc_attr($linkTextOptions['customText']['value']); ?>"
+                    <?php checked($selectedOption, $linkTextOptions['customText']['value']); ?> />
+            </td>
+            <th>
+                <?php foreach ($linkTextOptions['customText']['fields'] as $key => $field): ?>
+                    <label for="cryptX_var[<?php echo esc_attr($key); ?>]">
+                        <?php echo esc_html($field['label']); ?>
+                    </label>
+                    <input type="text"
+                           name="cryptX_var[<?php echo esc_attr($key); ?>]"
+                           id="cryptX_var[<?php echo esc_attr($key); ?>]"
+                           value="<?php echo esc_attr($field['value']); ?>"
+                           class="regular-text" />
+                <?php endforeach; ?>
+            </th>
+        </tr>
+        <tr class="spacer"><td colspan="3"><hr></td></tr>
+        <!-- External Image Option -->
+        <tr>
+            <td>
+                <input type="radio"
+                       name="cryptX_var[opt_linktext]"
+                       id="opt_linktext_2"
+                       value="<?php echo esc_attr($linkTextOptions['externalImage']['value']); ?>"
+                    <?php checked($selectedOption, $linkTextOptions['externalImage']['value']); ?> />
+            </td>
+            <th>
+                <?php foreach ($linkTextOptions['externalImage']['fields'] as $key => $field): ?>
+                    <div class="cryptx-field-row">
+                        <label for="cryptX_var[<?php echo esc_attr($key); ?>]">
+                            <?php echo esc_html($field['label']); ?>
+                        </label>
+                        <input type="text"
+                               name="cryptX_var[<?php echo esc_attr($key); ?>]"
+                               id="cryptX_var[<?php echo esc_attr($key); ?>]"
+                               value="<?php echo esc_attr($field['value']); ?>"
+                               class="regular-text" />
+                    </div>
+                <?php endforeach; ?>
+            </th>
+        </tr>
+        <tr class="spacer"><td colspan="3"><hr></td></tr>
+        <!-- Uploaded Image Option -->
+        <tr>
+            <td>
+                <input type="radio"
+                       name="cryptX_var[opt_linktext]"
+                       id="opt_linktext_3"
+                       value="<?php echo esc_attr($linkTextOptions['uploadedImage']['value']); ?>"
+                    <?php checked($selectedOption, $linkTextOptions['uploadedImage']['value']); ?> />
+            </td>
+            <th>
+                <label for="upload_image_button"><?php _e("Select an uploaded image", 'cryptx'); ?></label>
+            </th>
+            <td>
+                <input id="upload_image_button" type="button" class="button" value="<?php esc_attr_e('Upload image'); ?>" />
+                <input id="remove_image_button" type="button" class="button button-link-delete hidden" value="<?php esc_attr_e('Delete image'); ?>" />
+                <span id="opt_linktext4_notice"><?php _e("You have to upload an image first before this option can be activated.", 'cryptx'); ?></span>
+                <input type="hidden"
+                       name="cryptX_var[alt_uploadedimage]"
+                       id="image_attachment_id"
+                       value="<?php echo esc_attr($linkTextOptions['uploadedImage']['fields']['alt_uploadedimage']['value']); ?>">
+                <div>
+                    <img id="image-preview" src="<?php echo esc_url(wp_get_attachment_url($linkTextOptions['uploadedImage']['fields']['alt_uploadedimage']['value'])); ?>">
+                </div>
+                <label for="cryptX_var[alt_linkimage_title]">
+                    <?php echo esc_html($linkTextOptions['uploadedImage']['fields']['alt_linkimage_title']['label']); ?>
+                </label>
+                <input type="text"
+                       name="cryptX_var[alt_linkimage_title]"
+                       value="<?php echo esc_attr($linkTextOptions['uploadedImage']['fields']['alt_linkimage_title']['value']); ?>"
+                       class="regular-text" />
+            </td>
+        </tr>
+        <tr class="spacer"><td colspan="3"><hr></td></tr>
+        <!-- Text Scrambling Option -->
+        <tr>
+            <td>
+                <input type="radio"
+                       name="cryptX_var[opt_linktext]"
+                       id="opt_linktext_4"
+                       value="<?php echo esc_attr($linkTextOptions['scrambled']['value']); ?>"
+                    <?php checked($selectedOption, $linkTextOptions['scrambled']['value']); ?> />
+            </td>
+            <th colspan="2">
+                <?php echo esc_html($linkTextOptions['scrambled']['label']); ?>
+                <small><?php _e("Try it and look at your site and check the html source!", 'cryptx'); ?></small>
+            </th>
+        </tr>
+        <tr class="spacer"><td colspan="3"><hr></td></tr>
+        <!-- PNG Image Conversion Option -->
+        <tr>
+            <td>
+                <input type="radio"
+                       name="cryptX_var[opt_linktext]"
+                       id="opt_linktext_5"
+                       value="<?php echo esc_attr($linkTextOptions['pngImage']['value']); ?>"
+                    <?php checked($selectedOption, $linkTextOptions['pngImage']['value']); ?> />
+            </td>
+            <th><?php echo esc_html($linkTextOptions['pngImage']['label']); ?></th>
+            <td>
+                <?php foreach ($linkTextOptions['pngImage']['fields'] as $key => $field): ?>
+                    <div class="cryptx-field-row">
+                        <label for="cryptX_var[<?php echo esc_attr($key); ?>]">
+                            <?php echo esc_html($field['label']); ?>
+                        </label>
+                        <?php if ($key === 'c2i_font'): ?>
+                            <select name="cryptX_var[<?php echo esc_attr($key); ?>]"
+                                    id="cryptX_var[<?php echo esc_attr($key); ?>]">
+                                <?php foreach ($field['options'] as $value => $label): ?>
+                                    <option value="<?php echo esc_attr($value); ?>"
+                                        <?php selected($field['value'], $value); ?>>
+                                        <?php echo esc_html($label); ?>
+                                    </option>
+                                <?php endforeach; ?>
+                            </select>
+                        <?php elseif ($key === 'c2i_fontSize'): ?>
+                            <input type="number"
+                                   name="cryptX_var[<?php echo esc_attr($key); ?>]"
+                                   id="cryptX_var[<?php echo esc_attr($key); ?>]"
+                                   value="<?php echo esc_attr($field['value']); ?>"
+                                   class="small-text" />
+                        <?php else: ?>
+                            <input type="text"
+                                   name="cryptX_var[<?php echo esc_attr($key); ?>]"
+                                   id="cryptX_var[<?php echo esc_attr($key); ?>]"
+                                   value="<?php echo esc_attr($field['value']); ?>"
+                                   class="color-field" />
+                        <?php endif; ?>
+                    </div>
+                <?php endforeach; ?>
+            </td>
+        </tr>
+        </tbody>
+    </table>
+<?php submit_button(__('Save Presentation Settings', 'cryptx'), 'primary', 'cryptX_save_presentation_settings'); ?>
+    <!-- Submit Button -->
+    <p class="submit">
+        <input type="submit"
+               name="cryptX_save_presentation_settings"
+               class="button-primary"
+               value="<?php _e('Save Changes', 'cryptx'); ?>" />
+        <input type="submit"
+               name="cryptX_var_reset"
+               class="button-secondary"
+               value="<?php _e('Reset to Defaults', 'cryptx'); ?>"
+               onclick="return confirm('<?php _e('Are you sure you want to reset all presentation settings to defaults?', 'cryptx'); ?>');" />
+    </p>
+</div>
+<script>
+    document.addEventListener('DOMContentLoaded', function() {
+        // Initialize WordPress Color Picker
+        if (typeof jQuery !== 'undefined' && jQuery.fn.wpColorPicker) {
+            jQuery('.color-field').wpColorPicker();
+        }
+        // Handle image upload functionality
+        const uploadButton = document.getElementById('upload_image_button');
+        const imageField = document.getElementById('alt_uploadedimage');
+        const imagePreview = document.getElementById('image_preview');
+        if (uploadButton && typeof wp !== 'undefined' && wp.media) {
+            let mediaUploader;
+            uploadButton.addEventListener('click', function(e) {
+                e.preventDefault();
+                if (mediaUploader) {
+                    mediaUploader.open();
+                    return;
+                }
+                mediaUploader = wp.media({
+                    title: '<?php _e("Choose Image", "cryptx"); ?>',
+                    button: {
+                        text: '<?php _e("Choose Image", "cryptx"); ?>'
+                    },
+                    multiple: false,
+                    library: {
+                        type: 'image'
+                    }
+                });
+                mediaUploader.on('select', function() {
+                    const attachment = mediaUploader.state().get('selection').first().toJSON();
+                    imageField.value = attachment.id;
+                    if (attachment.sizes && attachment.sizes.thumbnail) {
+                        imagePreview.innerHTML = '<img src="' + attachment.sizes.thumbnail.url + '" style="max-width: 150px; height: auto;" />';
+                    } else {
+                        imagePreview.innerHTML = '<img src="' + attachment.url + '" style="max-width: 150px; height: auto;" />';
+                    }
+                });
+                mediaUploader.open();
+            });
+            // Show current image if one is selected
+            if (imageField.value && imageField.value !== '0') {
+                wp.media.attachment(imageField.value).fetch().then(function(attachment) {
+                    if (attachment.attributes.sizes && attachment.attributes.sizes.thumbnail) {
+                        imagePreview.innerHTML = '<img src="' + attachment.attributes.sizes.thumbnail.url + '" style="max-width: 150px; height: auto;" />';
+                    } else {
+                        imagePreview.innerHTML = '<img src="' + attachment.attributes.url + '" style="max-width: 150px; height: auto;" />';
+                    }
+                });
+            }
+        }
+    });
+</script>

Plugin Directory

Context Navigation

Legend:

cryptx/tags/4.0.0/classes/Admin/ChangelogSettingsTab.php

cryptx/tags/4.0.0/classes/Admin/GeneralSettingsTab.php

cryptx/tags/4.0.0/classes/Admin/PresentationSettingsTab.php

cryptx/tags/4.0.0/classes/Config.php

cryptx/tags/4.0.0/classes/CryptX.php

cryptx/tags/4.0.0/classes/CryptXSettingsTabs.php

cryptx/tags/4.0.0/cryptx.php

cryptx/tags/4.0.0/js/cryptx.js

cryptx/tags/4.0.0/js/cryptx.min.js

cryptx/tags/4.0.0/readme.txt

cryptx/tags/4.0.0/templates/admin/tabs/general.php

cryptx/tags/4.0.0/templates/admin/tabs/howto.php

cryptx/tags/4.0.0/templates/admin/tabs/presentation.php

cryptx/trunk/classes/Admin/ChangelogSettingsTab.php

cryptx/trunk/classes/Admin/GeneralSettingsTab.php

cryptx/trunk/classes/Admin/PresentationSettingsTab.php

cryptx/trunk/classes/Config.php

cryptx/trunk/classes/CryptX.php

cryptx/trunk/classes/CryptXSettingsTabs.php

cryptx/trunk/cryptx.php

cryptx/trunk/js/cryptx.js

cryptx/trunk/js/cryptx.min.js

cryptx/trunk/readme.txt

cryptx/trunk/templates/admin/tabs/general.php

cryptx/trunk/templates/admin/tabs/howto.php

cryptx/trunk/templates/admin/tabs/presentation.php

Download in other formats: