Issue Plesk Serven shows a red page

[wowthemes]

Server operating system version

Ubuntu 20.04.5 LTS

Plesk version and microupdate number

18.0.48

Hi,

My Plesk URL was working fine since a long time but don't know what happened suddenly. But when I open it in a guest/private browser then it works fine. I am afraid whether my server is under attack. For reference, I have attached the screenshot again.

 

[wowthemes]

It also says that WordPress 6.1.1 is vulnerable. Please check the screenshot. While I Google it and didn't find anything about WordPress vulnerability. I have 100+ WordPress installations on my server and it displays this issue with all the installations.

 

[GwenDragon]

That is a page of your Chrome/Edge/Chromium browser, it shows that your domain/site is on a Chromium blocklist for broken SSL/insecure/malware/fraudulent websites.

Please, set your server hostname to a real domain name, get a valid SSL certificate (f.ex. from Lets Encrypt) and will be fine.

 

[GwenDragon]

I do not get such warning on https://optimistic-thompson.45-63-62-178.plesk.page with Chromium 108.
Perhaps your browser blocklist is outdated. Open chrome://components/ and on all in list press "Check for Update".

 

[Maarten.]

You can fix the WP 6.1.1 SSRF issue using the WP Toolkit by disabling access to the xmlrpc.php:

https://support.plesk.com/hc/en-us/articles/9109180378770-CVE-2022-3590-WordPress-6-1-1-Unauth-Blind-SSRF-vulnerability

 

[Maarten.]

Like Peter said in a previous post, use a real domain name to avoid the red screen: server123.domain.com or whatever you prefer:

Changing Your Server’s Host Name

You specify your server’s host name during your very first login to Plesk. If you want to change the host name later,...

docs.plesk.com