type:
constant
name:
ACCESS_CONTROL_ALLOW_ORIGIN
purpose:
Block requests from an incorrect location
default:
http://'.$_SERVER['HTTP_HOST']
category:
security

You may need to set this to something else, if you want to be able to Ajax requests to phpList.