• If you are still using CentOS 7.9, it's time to convert to Alma 8 with the free centos2alma tool by Plesk or Plesk Migrator. Please let us know your experiences or concerns in this thread:
    CentOS2Alma discussion
  • Please beaware of a breaking change in the REST API on the next Plesk release (18.0.62).
    Starting from Plesk Obsidian 18.0.62, requests to REST API containing the Content-Type header with a media-type directive other than “application/json” will result in the HTTP “415 Unsupported Media Type” client error response code. Read more here

Question vulnerability CVE-2021-21708 - PHP Code Execution

D

DanielJ

New Pleskian
Hello Pleskians and Plesk-Team!
i saw a new exploit in PHP versions 7.4.x below 7.4.28, 8.0.x below 8.0.16, and 8.1.x below 8.1.3,
As u can read here: NVD - CVE-2021-21708 or you do a quick google search on your own: "CVE-2021-21708"

So as workaround for now we surely can update our php-versions to 8.1.3 . But will there be a patch for this vulnerability?
 
You must log in or register to reply here.

Similar threads

A
Resolved Can't remove php handler from list - the PHP handler "plesk-php56-fastcgi" is not found
Replies
7
Views
2K
tfrank7
T
Back
Top