Title: admin-ajax.php vulnerability
Last modified: August 24, 2016

---

# admin-ajax.php vulnerability

 *  [Raphael Myntra](https://wordpress.org/support/users/raphael-myntra/)
 * (@raphael-myntra)
 * [10 years, 12 months ago](https://wordpress.org/support/topic/admin-ajaxphp-vulnerability/)
 * Hi,
 * Great work on the plugin, but I’m facing an issue. The server team has blocked
   access to wp-admin folder for anyone outside the office. Hence the form does 
   not load when a appointment time is clicked. When requested to make an exception
   to this file, the team sent us the following link.
    [https://blog.sucuri.net/2014/09/slider-revolution-plugin-critical-vulnerability-being-exploited.html](https://blog.sucuri.net/2014/09/slider-revolution-plugin-critical-vulnerability-being-exploited.html)
   Does this vulnerability effect your plugin? If yes, please let me know how I 
   can work around this issue or if you could fix it at your end and push the update.
   If not, please let me know how and why your plugin does not create a vulnerability
   issue. Looking forward to hearing from you. I would really like to continue using
   this great plugin.
 * Thanks
 * [https://wordpress.org/plugins/appointments/](https://wordpress.org/plugins/appointments/)

Viewing 1 replies (of 1 total)

 *  [David](https://wordpress.org/support/users/ugotsta/)
 * (@ugotsta)
 * [10 years, 11 months ago](https://wordpress.org/support/topic/admin-ajaxphp-vulnerability/#post-6125310)
 * Hi [@raphael](https://wordpress.org/support/users/raphael/),
 * Thanks for using the plugin, hope you’re doing well today!
 * The plugin definitely doesn’t have that particular vulnerability, it doesn’t 
   use that slider or similar code. Is it possible you’ve got something else (another
   plugin or theme) that does and that’s creating issues for Appointments as well?
 * Hope to hear back from you on this. 🙂
 * Cheers,
    David

Viewing 1 replies (of 1 total)

The topic ‘admin-ajax.php vulnerability’ is closed to new replies.

 * ![](https://s.w.org/plugins/geopattern-icon/appointments_eaf36c.svg)
 * [Appointments](https://wordpress.org/plugins/appointments/)
 * [Frequently Asked Questions](https://wordpress.org/plugins/appointments/#faq)
 * [Support Threads](https://wordpress.org/support/plugin/appointments/)
 * [Active Topics](https://wordpress.org/support/plugin/appointments/active/)
 * [Unresolved Topics](https://wordpress.org/support/plugin/appointments/unresolved/)
 * [Reviews](https://wordpress.org/support/plugin/appointments/reviews/)

## Tags

 * [admin-ajax.php](https://wordpress.org/support/topic-tag/admin-ajax-php/)
 * [wp-admin](https://wordpress.org/support/topic-tag/wp-admin/)

 * 1 reply
 * 2 participants
 * Last reply from: [David](https://wordpress.org/support/users/ugotsta/)
 * Last activity: [10 years, 11 months ago](https://wordpress.org/support/topic/admin-ajaxphp-vulnerability/#post-6125310)
 * Status: not resolved