[wp-trac] [WordPress Trac] #29240: Post preview button initiates over HTTP

WordPress Trac noreply at wordpress.org
Sun Aug 17 00:06:24 UTC 2014


#29240: Post preview button initiates over HTTP
--------------------------+-----------------------------
 Reporter:  filco         |      Owner:
     Type:  defect (bug)  |     Status:  new
 Priority:  normal        |  Milestone:  Awaiting Review
Component:  Security      |    Version:  3.9.2
 Severity:  normal        |   Keywords:  HTTP, HTTPS
  Focuses:                |
--------------------------+-----------------------------
 Despite an HTTPS website forcing encrypted traffic via HSTS, clicking the
 preview button in a post initiates an HTTP session when opening a new
 window for that session. This can be reproduced by installing a browser
 plugin that blocks non-HTTPS traffic.

--
Ticket URL: <https://core.trac.wordpress.org/ticket/29240>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform


More information about the wp-trac mailing list