• Introducing WebPros Cloud - a fully managed infrastructure platform purpose-built to simplify the deployment of WebPros products !  WebPros Cloud enables you to easily deliver WebPros solutions — without the complexity of managing the infrastructure.
    Join the pilot program today!
  • Support for BIND DNS has been removed from Plesk for Windows due to security and maintenance risks.
    If a Plesk for Windows server is still using BIND, the upgrade to Plesk Obsidian 18.0.70 will be unavailable until the administrator switches the DNS server to Microsoft DNS.

Issue annoying WP Toolkit Site vulnerabilities found message WordPress Core All Versions - Unauthenticated Blind Server-Side Request Forgery vulnerability

C

cyberjam

New Pleskian
Server operating system version
ubuntu 22
Plesk version and microupdate number
Version 18.0.57 Update #5,
Good Afternoon,

Every day when a new Wordpress installation is performed through the WP Toolkit for one of our customers we receive an e-mail regarding the
WordPress Core All Versions - Unauthenticated Blind Server-Side Request Forgery vulnerability
It would be an improvement if instead of mailing this over and over the vulnerability would be mitigated automatically as this is going on
for months.



Best Regards,

CyberJ.
 
You must log in or register to reply here.

Similar threads

L
Resolved Vulnerability icon
Replies
6
Views
2K
Sebahat.hadzhi
Sebahat.hadzhi
R
Resolved WP Toolkit/Wordpress Toolkit - older version screenshot issue
Replies
4
Views
4K
rhall
R
P
Resolved WP Toolkit vulnerability alert might be a false positive? [Unauthenticated Blind SSRF]
Replies
5
Views
5K
Wiz
Wiz
A
Resolved WP Toolkit: Live site cloned, clones using plugins folder of original site
Replies
5
Views
3K
ArmReu
A
daedparrotsoftware
Operational Issues with WordPress Toolkit WP site UPDATE functions on Multiple Servers
Replies
13
Views
6K
greybeard
G
Back
Top