WP 3.7.1, FORCE_SSL_ADMIN, insecure 'mailchimpSF_main_css'

  • urcomm

    (@urcomm)


    12 years, 5 months ago

    We just moved a client from 3.6.1 to 3.7.1, with FORCE_SSL_ADMIN active, and the MailChimp plugin seems to request its ‘mailchimpSF_main_css’ insecurely now, over HTTP instead of via HTTPS. This was not the case before the upgrade.

    It is the ‘wp_enqueue_style’ call at line 108 of ‘mailchimp.php’ that seems to be the culprit here. We have a workaround active by making the following change;

    Old: “wp_enqueue_style(‘mailchimpSF_main_css’, home_url(‘?mcsf_action=main_css&ver=’.MCSF_VER));”

    New: “wp_enqueue_style(‘mailchimpSF_main_css’, ‘/?mcsf_action=main_css&ver=’.MCSF_VER);”

    A proper fix would be appreciated, though 🙂

    http://wordpress.org/plugins/mailchimp/

Viewing 1 replies (of 1 total)
  • mc_tak

    (@mc_tak)

    12 years, 5 months ago

    Hey urcomm,

    Thanks for writing in to the forum! I’ve gone ahead and passed along this post to our developers to investigate further. Thanks for the info + suggestion!

    -tk

Viewing 1 replies (of 1 total)

The topic ‘WP 3.7.1, FORCE_SSL_ADMIN, insecure 'mailchimpSF_main_css'’ is closed to new replies.