I have one newsletter that spans multiple website domains and would like to enable AJAX subscriptions on those websites.
I can do that by setting:
However, I would like to know:
- Does wildcarding pose a security risk?
- Alternatively, is there a way to list multiple domains instead of having to wildcard them? Traditionally CORS does not allow comma separate values unless phpList is doing something fancy.