I noticed that if I harden wp-includes, the editor on Posts and Pages edit pages being disabled. The text area just shows white blank space, and I can’t change between tab ‘Visual’ and ‘Text’. That problem goes away if I revert the hardening.
I inspected the page through web inspector’s console when the issue’s occurring. There are errors below:
Failed to load resource: the server responded with a status of 403 (Forbidden) http://my-site.com/wp-includes/js/tinymce/wp-tinymce.php?c=1&ver=4203-20150730
Uncaught ReferenceError: tinymce is not defined post-new.php:2379 (on create new post page)
Uncaught ReferenceError: tinymce is not defined post.php:2400 (on edit post page).
I checked the .htaccess on /wp-includes/ is like below:
<FilesMatch "\.(?i:php)$"> <IfModule !mod_authz_core.c> Order allow,deny Deny from all </IfModule> <IfModule mod_authz_core.c> Require all denied </IfModule> </FilesMatch> <Files wp-tinymce.php> Allow from all </Files> <Files ms-files.php> Allow from all </Files>
I see the wp-tinymce.php already set as allow from all, but it still returns 403 forbidden and causing the editors not working.
Any solutions for that?
- The topic ‘Editor (TinyMCE) disabled after hardening wp-includes’ is closed to new replies.