Security Issue In Masonry Plugin

Home Forums Lite Version Security Issue In Masonry Plugin

This topic contains 1 reply, has 2 voices, and was last updated by  Masonry Guy 1 year, 3 months ago.

Viewing 2 posts - 1 through 2 (of 2 total)
  • Author
  • #6048 Reply


    FYI: You are making calls directly to URL’s in the wp-admin directory from your plugin. This is considered by many to be a poor security practice and can cause problems on WordPress sites with some security configurations. For example, your plugin doesn’t work in my site because I have additional security on that directory.

    The specific call is to

    And results in a “Failed to load resource: the server responded with a status of 401 (Unauthorized)” error if there is security on that directory.

    #6064 Reply

    Masonry Guy

    Hi JG,

    Thank you so much for pointing out this. I will check into this in details.

    Do you have any suggestion as a solution ? I can see that most of the plugin use this method and even wordpress has documented this for ajax call.


Viewing 2 posts - 1 through 2 (of 2 total)
Reply To: Security Issue In Masonry Plugin
Your information: