WP Cron doesn’t save or in post body

Instead of manually removing the safety filters like this, you should simply set the correct user for these processes to be running as.

When you are logged in and running a process manually, you are logged in and thus you have your credentials being used, and your permissions being used. I’m betting you’re an administrator on the site. You have permission to post unfiltered_html, meaning that you can post iframes and objects and whatever you like.

When your cron job runs, it doesn’t have your credentials. So, it doesn’t get those same permissions. Thus, the safety filters get turned on, and things like iframes and such get blocked.

To fix it, you need to change your process not to disable the filters, but to run as you. So find your user ID number in the database, and just before your process to do the import runs, add this code:

wp_set_current_user( 123 );

Where “123” is whatever your user ID number is. Then the code will now be “you” and can do things just like you would do them. Those filters won’t take effect because the permissions are correct for the current user.

Note: This isn’t any safer, BTW. You’re still allowing some remote website to insert possibly dangerous things onto yours. So you’re trusting them not to screw you over here. Just bear that in mind. This method is just simpler than manually fiddling around with filters.

Related Posts:

  1. Experts opinions needed: How (in)secure is this approach?
  2. Issue with iframe in TinyMCE
  3. How can I add an image upload field directly to a custom write panel?
  4. How to store username and password to API in wordpress option DB?
  5. In Which Contexts are Plugins Responsible for Data Validation/Sanitization?
  6. Plugin API for easy admin list table generation, handling & exporting of MySQL tables?
  7. Export data as CSV in back end with proper HTTP headers
  8. Nonces can be reused multiple times? Bug / Security issue?
  9. API to trigger prompt on leaving page
  10. Show message on wordpress admin dashboard
  11. wp_schedule_event in a class
  12. WP Cron – Run Cron after evey 15 minutes at a specific time for the next three hours
  13. Log in from one wordpress website to another wordpress website
  14. How do you create a custom edit.php / edit pages page
  15. Using wp_cron with custom time interval and the register activation hook
  16. WordPress scheduled task is called but not executed
  17. Problem creating cron job wordpress
  18. Is it save to require plugin.php early to be able to use get_plugin_data() earlier?
  19. Filters ‘request’ and ‘parse_query’ not firing in sites.php nor link-manager.php
  20. URLs of plugin resources?
  21. Problems with removing admin bar
  22. Check if I am in the Admin Panel (wp-admin)?
  23. Embed WordPress Admin in an iframe
  24. Confusion on WP Nonce usage in my Plugin
  25. How to redirect to action on custom page within admin section
  26. Is there any way to check for user login and send him to login?
  27. Can I individually style items in the backend widget list?
  28. WordPress security issue to output data from user input from theme option form
  29. How to run a external JavaScript file on wp-admin if admin, and other if normal user?
  30. Where should I put “run once” plugin pages?
  31. Issue plugin commands in admin settings page
  32. Any problem in using native jquery ajax style instead of using admin-ajax.php?
  33. maintaing consistent layout wordpress dashboard
  34. Replacing Scripts in Admin Load_Scripts
  35. Programmatically modify an admin page UI of a WordPress site from my WordPress plugin
  36. Global State During an Admin Post
  37. Render content after post title in wp-admin
  38. Secure Pages Best Practice
  39. On cliking add new post redirect user to a custom page first
  40. Securing/Escaping Output of file content – reading via fread() in PHP
  41. Is it possible to restrict all admin pages except theme customisation and storefront using plugin?
  42. Password field is empty when using wp_signon();
  43. best way to make a WordPresss multisite that is secure but at the same time supporting my plugin development efforts
  44. Video Security just like facebook [closed]
  45. Using ReactJS in the WordPress admin for plugin development
  46. template_redirect or admin-ajax.php?
  47. Creating Admin Plugin – Content of a page is displayed at global scope as well
  48. How to load library scripts in admin from plugins in noConflict wrapper?
  49. Show error message after exception handled
  50. WordPress daily cron is executing more frequently than once a day
  51. Issue with contextual help overwriting existing content
  52. Is disabling test_form in wp_handle_upload a security concern?
  53. How to connect my wordpress plugin to a remote database securely?
  54. wp_nonce_field displaying twice
  55. Alternatives to DISALLOW_FILE_EDIT wp-config Constant? It Breaks Some Plugins
  56. WP Cron being triggered but not working as expected
  57. How do I link to a php file in my plugin directory?
  58. WordPress Admin Login Custom Logo
  59. How to create custom settings page for custom plugin
  60. How do I have now a duplicated user entry if this is not allowed (and I cannot replicate it)?
  61. add_submenu_page hooked function must explicitly check user capabilities – why?
  62. Filter for admin (back end) ‘reply to’ comment
  63. Will I get an error if I try unscheduling a WP Cron scheduled task that wasn’t scheduled?
  64. Looking for a better way to initiate cron job
  65. Redirect in WordPress plugin
  66. How to add custom view links to wp-admin/post.php?
  67. Is it possible to use WP-CLI in a plugin (or theme)?
  68. Secruity Questions on a timer
  69. jQuery UI tab does not work in the plugin page
  70. Using HTML links within translatable string
  71. Best practice for plugin: always detect admin-ajax call?
  72. Submit form to a different PHP file in the same plugin folder
  73. How to insert HTML/CSS/JS into my iframe plugin?
  74. How can I save a password securely as a settings field
  75. How to make a cronjob type plugin
  76. Remove Meta-boxes (Yoast SEO plugin) [duplicate]
  77. How to add text editor in plugin menu?
  78. Using password protection to load different page elements?
  79. Get cat parameter from admin-ajax
  80. check_admin_referer()
  81. How to make an admin plugin menu page go full screen?
  82. wp_schedule_single_event is set correctly but sometimes not fired
  83. Add New Button in Admin Panel
  84. Plugin with functions inside a class & how to trigger WP CRON
  85. Stop unauthorised file access
  86. Custom recurrence not working / Wp Cron event
  87. How and when would I implement some code which would take data from one part of the Db and put it in another?
  88. How to display properly exception or echo string after posting in plugin?
  89. Get (eventual) permalink from post within Edit Post in Admin panel
  90. What is more secure checking capabilities of user or checking role of user in WordPress plugin development
  91. Plugin dev: How to multiply instances of a plugin in the same metabox?
  92. How to add conent (text) to Add New pages form of admin in WordPress
  93. Post data in wp-admin to external database
  94. admin page passing $_POST variables to itself
  95. Can wp_schedule_single_event be used to run background proccess?
  96. modify buddpress adminbar only in admin pages
  97. Loading jQuery library from WordPress admin
  98. How to change the headline title for an admin page in a plugin?
  99. How do I display and edit other posts within the ‘Edit Post’ area of Wp-Admin Dashboard
  100. wp cron does not run when i am not logged in to wp admin

Leave a Comment