Title: REST API SECURITY ISSUES
Last modified: June 28, 2017

---

# REST API SECURITY ISSUES

 *  [astrologeeks](https://wordpress.org/support/users/astrologeeks/)
 * (@astrologeeks)
 * [8 years, 11 months ago](https://wordpress.org/support/topic/rest-api-security-issues-2/)
 * I have wp bruiser, plus the extensions for contact form 7 and ip country block.
   
   Disabling the wordpress REST api causes both WP Bruiser and ContactForm7 to fail
   to work properly except from an admin account. REST API is a MAJOR SECURITY THREAT,
   does wp bruiser protect the rest api too?? What do we do about this security 
   hole?

The topic ‘REST API SECURITY ISSUES’ is closed to new replies.

 * ![](https://ps.w.org/goodbye-captcha/assets/icon-256x256.png?rev=1356325)
 * [WPBruiser {no- Captcha anti-Spam}](https://wordpress.org/plugins/goodbye-captcha/)
 * [Frequently Asked Questions](https://wordpress.org/plugins/goodbye-captcha/#faq)
 * [Support Threads](https://wordpress.org/support/plugin/goodbye-captcha/)
 * [Active Topics](https://wordpress.org/support/plugin/goodbye-captcha/active/)
 * [Unresolved Topics](https://wordpress.org/support/plugin/goodbye-captcha/unresolved/)
 * [Reviews](https://wordpress.org/support/plugin/goodbye-captcha/reviews/)

## Tags

 * [api](https://wordpress.org/support/topic-tag/api/)
 * [rest](https://wordpress.org/support/topic-tag/rest/)

 * 0 replies
 * 1 participant
 * Last reply from: [astrologeeks](https://wordpress.org/support/users/astrologeeks/)
 * Last activity: [8 years, 11 months ago](https://wordpress.org/support/topic/rest-api-security-issues-2/)
 * Status: not resolved