Facebook
TwitterBut you should also make sure that no website submits mail.
-
We value your experience with Plesk during 2024
Plesk strives to perform even better in 2025. To help us improve further, please answer a few questions about your experience with Plesk Obsidian 2024.
Please take this short survey:
https://pt-research.typeform.com/to/AmZvSXkx -
The Horde webmail has been deprecated. Its complete removal is scheduled for April 2025. For details and recommended actions, see the Feature and Deprecation Plan.
-
We’re working on enhancing the Monitoring feature in Plesk, and we could really use your expertise! If you’re open to sharing your experiences with server and website monitoring or providing feedback, we’d love to have a one-hour online meeting with you.
Have you checked all your websites for SMTP login data?
I am wondering whether the assessment that the ip address in question is your own server is correct, because normally such mail submissions would come from 127.0.0.1, not from the public IP address of the server. Are you sure your information is correct?
I am wondering whether the assessment that the ip address in question is your own server is correct, because normally such mail submissions would come from 127.0.0.1, not from the public IP address of the server. Are you sure your information is correct?
LuigiMdg
Basic Pleskian
I honestly had excluded this possibility, but this seems to be the cause..!
I don't know how, but they are exploiting the newsletter module..!
The problem is that I'm searching on Google but so far I haven't found much about it and the form is updated to the latest version.
Have you made sure that your form for signing up is using a captcha to prevent bots from registering?
LuigiMdg
Basic Pleskian
No, but I intend to include it both there and on the contact page.
I hope to get it done today, because the only vulnerabilities I've found are injection vulnerabilities via XSS, but they say they've solved it in 2.6.1, I have 2.7.1..
However I realize that we are going OT as it doesn't concern the Plesk panel, so I apologize and at the same time thank you for helping me reach a solution..!
