Uses HTTP API on HTTPS page, blocking CAPTCHA
-
Firefox and other browsers will block resources loaded over HTTP on pages that use HTTPS.
The plugin uses the HTTP CAPTCHA API regardless of whether the page is loaded over HTTP or HTTPS and it therefore fails to load the CAPTCHA on pages loaded over HTTPS on browsers that won’t tolerate ‘insecure elements’.
Any form page dealing with personally identifiable information ought to use HTTPS so this is problematic.
My suggested fix is here: https://github.com/wp-plugins/contact-form-with-captcha/pull/1/files
https://www.ads-software.com/plugins/contact-form-with-captcha/
Viewing 1 replies (of 1 total)
Viewing 1 replies (of 1 total)
- The topic ‘Uses HTTP API on HTTPS page, blocking CAPTCHA’ is closed to new replies.
