Title: Security risk with Quick Post Widget
Last modified: August 20, 2016

---

# Security risk with Quick Post Widget

 *  [Aubertin](https://wordpress.org/support/users/aubertin/)
 * (@aubertin)
 * [14 years, 2 months ago](https://wordpress.org/support/topic/security-risk-with-quick-post-widget/)
 * I am running a WP installation on a shared hosting account. I already have ZBBlock
   install to protect the site. However, I am concerned about people trying to insert
   malware through media upload, etc which is possible with Quick Post Widget.
 * I am thus wondering what setting to use to protect my site from potential attacks.
   Should I disable all or some of the following setting within Quick Post Widget?
 * Visual Editor
    Editor Plugin Media Upload
 * Should I also disable auto-embeds within WP to fully protect my site?
 * Looking forward to your input
 * [http://wordpress.org/extend/plugins/quick-post-widget/](http://wordpress.org/extend/plugins/quick-post-widget/)

Viewing 1 replies (of 1 total)

 *  Thread Starter [Aubertin](https://wordpress.org/support/users/aubertin/)
 * (@aubertin)
 * [14 years, 2 months ago](https://wordpress.org/support/topic/security-risk-with-quick-post-widget/#post-2622869)
 * I got the plugin to work but was still wondering if disabling media upload sufficient
   to prevent the insertion of malicious code through posts?

Viewing 1 replies (of 1 total)

The topic ‘Security risk with Quick Post Widget’ is closed to new replies.

 * ![](https://s.w.org/plugins/geopattern-icon/quick-post-widget.svg)
 * [Quick Post Widget](https://wordpress.org/plugins/quick-post-widget/)
 * [Frequently Asked Questions](https://wordpress.org/plugins/quick-post-widget/#faq)
 * [Support Threads](https://wordpress.org/support/plugin/quick-post-widget/)
 * [Active Topics](https://wordpress.org/support/plugin/quick-post-widget/active/)
 * [Unresolved Topics](https://wordpress.org/support/plugin/quick-post-widget/unresolved/)
 * [Reviews](https://wordpress.org/support/plugin/quick-post-widget/reviews/)

 * 1 reply
 * 1 participant
 * Last reply from: [Aubertin](https://wordpress.org/support/users/aubertin/)
 * Last activity: [14 years, 2 months ago](https://wordpress.org/support/topic/security-risk-with-quick-post-widget/#post-2622869)
 * Status: not resolved