[wp-trac] [WordPress Trac] #29240: Post preview button initiates over HTTP
WordPress Trac
noreply at wordpress.org
Sun Aug 17 00:06:24 UTC 2014
#29240: Post preview button initiates over HTTP
--------------------------+-----------------------------
Reporter: filco | Owner:
Type: defect (bug) | Status: new
Priority: normal | Milestone: Awaiting Review
Component: Security | Version: 3.9.2
Severity: normal | Keywords: HTTP, HTTPS
Focuses: |
--------------------------+-----------------------------
Despite an HTTPS website forcing encrypted traffic via HSTS, clicking the
preview button in a post initiates an HTTP session when opening a new
window for that session. This can be reproduced by installing a browser
plugin that blocks non-HTTPS traffic.
--
Ticket URL: <https://core.trac.wordpress.org/ticket/29240>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list