vulnerability

Hi Community Plesk WordPress Toolkit is showing my sites are using BackupBuddy 8.7.5 under Plugins https://~/modules/wp-toolkit/index.php/index/plugins And has a Vulnerable tooltip warning which reads 'WordPress Backup Buddy plugin 8.5.8.0 - 8.7.4.1 - Unauthenticated Path Traversal / Arbitrary...

Dear Plesk team and Pleskians, For one staging website on my Plesk server (Plesk Obsidian) I am getting the following two reports from the WordPress Toolkit extension: website URL filtered WordPress License Manager for WooCommerce plugin <= 2.2.5 - Sensitive Information Disclosure...

Hello Pleskians and Plesk-Team! i saw a new exploit in PHP versions 7.4.x below 7.4.28, 8.0.x below 8.0.16, and 8.1.x below 8.1.3, As u can read here: NVD - CVE-2021-21708 or you do a quick google search on your own: "CVE-2021-21708" So as workaround for now we surely can update our...

Does Plesk store passwords in plaintext - anywhere? Perhaps the table accounts in the psa database? Going through, there are two passwords in plain text. I don't recognize the first of the two passwords; however, the second is one I entered.

Hello Pleskians! I hope somebody can point me into the right direction. As mentioned we got a server with plesk obsidian (latest micro update) on CentOS 7 with Postfix as mailserver. We setup SPF, DKIM and DMARC to get our e-mail deliverability up. But unfortunaly we keep getting blacklisted...

Hi everyone, As some of you might know, there was a new security vulnerability for server-side web applications discovered recently. It's called HTTPOXY -- we suggest you to visit https://httpoxy.org/ to learn more details about it in general. In response to this security vulnerability we've...

Hi, I Have a Cloudlinux and Plesk 12.5.30. My client wants to support Python. (May be perl support ?) This is not problem for me. To enable Python scripting engine go to Tools & Settings > Apache Web Server > check python. and Hosting Settings.Under Web Scripting and Statistics check the...