Vulnerabilities Notification

Viewing 6 replies - 1 through 6 (of 6 total)
  • Plugin Support qtwrk

    (@qtwrk)

    yes, it’s different issue

    if you can not ugprade , then please put this rule at top of your .htaccess

    RewriteEngine On
    RewriteCond %{HTTP_COOKIE} litespeed_role [NC]
    RewriteRule ^ - [F,L]

    this will block the attack vector even without upgrade the plugin

    Thread Starter UmbrellaWeb

    (@umbrellaweb)

    @qtwrk many thanks for the super quick response.

    On another note, concerning that this i second (from what i can tell) vulnerabilitiy in the last year of the cache plugin never had this issue with other cache plugins we used in the past. hoping this is not going to be a regular occurence….

    Thread Starter UmbrellaWeb

    (@umbrellaweb)

    @qtwrk implemented the code that you gave which seems to work BUT still getting the notification popups even though we dismissed them. Happening on all the sites using the old version even after being dismissed…

    Thread Starter UmbrellaWeb

    (@umbrellaweb)

    any update on this please?

    Plugin Support qtwrk

    (@qtwrk)

    you still seeing the notification ?

    please create a ticket by mail to support at litespeedtech.com with reference link to this topic , we will investigate further.

    Thread Starter UmbrellaWeb

    (@umbrellaweb)

    ok. will send them an email and post update …

Viewing 6 replies - 1 through 6 (of 6 total)
  • You must be logged in to reply to this topic.