Title: insecure mixed content
Last modified: August 24, 2016

---

# insecure mixed content

 *  [wwidjaja](https://wordpress.org/support/users/wwidjaja/)
 * (@wwidjaja)
 * [11 years, 1 month ago](https://wordpress.org/support/topic/insecure-mixed-content/)
 * Hi there,
 * My website still has a lot of the mixed content warning:
    The page at ‘[https://weins.tokyo/&#8217](https://weins.tokyo/&#8217);
   was loaded over HTTPS, but requested an insecure image/script/plugin
 * Can you please help?
    Thanks in advance.
 * [https://wordpress.org/plugins/ssl-insecure-content-fixer/](https://wordpress.org/plugins/ssl-insecure-content-fixer/)

Viewing 2 replies - 1 through 2 (of 2 total)

 *  Plugin Author [webaware](https://wordpress.org/support/users/webaware/)
 * (@webaware)
 * [11 years, 1 month ago](https://wordpress.org/support/topic/insecure-mixed-content/#post-5962484)
 * G’day wwidjaja,
 * The problem is the language flags for the [qTranslate plugin](https://wordpress.org/plugins/qtranslate/).
   That plugin is using the constant `WP_CONTENT_URL` to locate the flag images;
   this can fail in several different ways, one of which is presenting the flags
   on an `https` connection.
 * The plugin does try to handle this by doing its own SSL detection, rather than
   using the WordPress function [is_ssl()](https://codex.wordpress.org/Function_Reference/is_ssl)
   which would be better. For some reason, that’s failing on your server, probably
   because your server isn’t setting `$_SERVER['HTTPS']` — but the WordPress function
   is working OK (probably detecting port 443) so everything else is working OK,
   just not the qTranslate plugin.
 * What the plugin should be doing instead is using the [plugins_url()](https://codex.wordpress.org/Function_Reference/plugins_url)
   function to get the URLs to the flag images, or perhaps [plugin_dir_url()](https://codex.wordpress.org/Function_Reference/plugin_dir_url)
   to get the base URL for the plugin. Either approach would cater to both `http`
   vs `https`, and installs where the plugins aren’t found in /wp-content/plugins.
 * You should let [@chineseleper](https://wordpress.org/support/users/chineseleper/)
   know about this in that plugin’s [support forum](https://wordpress.org/support/plugin/qtranslate),
   so that he can get a fix out.
 * cheers,
    Ross
 *  Thread Starter [wwidjaja](https://wordpress.org/support/users/wwidjaja/)
 * (@wwidjaja)
 * [11 years, 1 month ago](https://wordpress.org/support/topic/insecure-mixed-content/#post-5962629)
 * Thanks Ross, I will try to post what you said here on that forum

Viewing 2 replies - 1 through 2 (of 2 total)

The topic ‘insecure mixed content’ is closed to new replies.

 * ![](https://ps.w.org/ssl-insecure-content-fixer/assets/icon-256x256.png?rev=2590634)
 * [SSL Insecure Content Fixer](https://wordpress.org/plugins/ssl-insecure-content-fixer/)
 * [Frequently Asked Questions](https://wordpress.org/plugins/ssl-insecure-content-fixer/#faq)
 * [Support Threads](https://wordpress.org/support/plugin/ssl-insecure-content-fixer/)
 * [Active Topics](https://wordpress.org/support/plugin/ssl-insecure-content-fixer/active/)
 * [Unresolved Topics](https://wordpress.org/support/plugin/ssl-insecure-content-fixer/unresolved/)
 * [Reviews](https://wordpress.org/support/plugin/ssl-insecure-content-fixer/reviews/)

 * 2 replies
 * 2 participants
 * Last reply from: [wwidjaja](https://wordpress.org/support/users/wwidjaja/)
 * Last activity: [11 years, 1 month ago](https://wordpress.org/support/topic/insecure-mixed-content/#post-5962629)
 * Status: not resolved