Security Issue In Masonry Plugin

Home Forums Lite Version Security Issue In Masonry Plugin

Viewing 2 posts - 1 through 2 (of 2 total)
  • Author
  • #6048

    FYI: You are making calls directly to URL’s in the wp-admin directory from your plugin. This is considered by many to be a poor security practice and can cause problems on WordPress sites with some security configurations. For example, your plugin doesn’t work in my site because I have additional security on that directory.

    The specific call is to

    And results in a “Failed to load resource: the server responded with a status of 401 (Unauthorized)” error if there is security on that directory.

    Masonry Guy

    Hi JG,

    Thank you so much for pointing out this. I will check into this in details.

    Do you have any suggestion as a solution ? I can see that most of the plugin use this method and even wordpress has documented this for ajax call.


Viewing 2 posts - 1 through 2 (of 2 total)
  • The forum ‘Lite Version’ is closed to new topics and replies.