Change shopper-prices.php to use REST API or ajax

  • daymobrew

    (@daymobrew)


    1 month ago

    I have hardened my WordPress installation by preventing the direct execution of .php files in the wp-content directory. This prevents hackers from running files that they might have been able to upload. Wordfence has a setting to provide the same functionality.

    A POST call is done to the /public/shopper-prices/shopper-prices.php file. This fails in my setup. (I did add an exception but that would be too complicated for many site owners).

    Could you change shopper-prices.php code to use admin-ajax or a REST API call? (I see that the plugin has a number of endpoints already).

    • This topic was modified 1 month ago by daymobrew.
  • You must be logged in to reply to this topic.