“Updates” window now displays Changelog links for plugins and themes. Also, some of the gloomier old names were changed to more positive ones for the sake of cheering people up a bit. Fixed inconsistencies found in the Plesk database before initializing Plesk. The GD library shipped with Plesk PHP packages now supports WebP. The extension is now compliant with the new Google customer account transfer procedure. Connection to the server might be interrupted the first time the Plesk Firewall rules are activated. Introduced PHP updates are the last ones for Debian 8 “Jessie”.See Plesk EOL Policy for details.

  • Improved UX, names, and descriptions of ModSecurity rule sets.
  • WordPress Toolkit now displays more details about the update process of WordPress core, plugins, and themes.
  • You want to look at the system from the viewpoint of an attacker, what could go wrong?
  • For customers, who use automatic scripts for subscriptions/customers creation the new “API 1038 error code” was added.

Plesk servers created via cloning now take less time to initialize. Added a banner promoting the Dynamic List view, a new and improved way of listing and managing domains in Plesk.

Vehicle Telematics Security; getting it right

A custom “Unsupported Browser” page is now shown if Plesk is opened in an outdated browser that is no longer supported. PHP-FPM for PHP versions 7.1 and 7.2 no longer occasionally hangs during its reload or restart. The names of new Plesk editions (for example, “Plesk WordPress Edition”) are now shown correctly in Plesk and on its login page.

OWASP Top 10 2017 Update Lessons

WordPress Toolkit no longer adds WP_AUTO_UPDATE_CORE constant to wp-config.php file during operations not initiated by the customer . Plesk UI notifications on ModSecurity rule set updates are no longer enabled by default. The Plesk administrator now explicitly turns on the notifications if necessary. Detection of PHP versions was improved for WordPress installations accessible via several different domains.

Plesk Obsidian 18.0.31 Update 3

Plesk resellers can now use the XML API “certificate” operator to generate, install, and remove SSL/TLS certificates. The “Server Error” screen has been updated to better match the Plesk Obsidian look and feel.

OWASP Risk Ranking Changes Reflect Transforming and Dynamic Nature of Security – Infosecurity Magazine

OWASP Risk Ranking Changes Reflect Transforming and Dynamic Nature of Security.

Posted: Mon, 25 Apr 2022 07:00:00 GMT [source]

As a side-effect, the procedure formerly known as Sync was renamed to Copy Data, so users should not be confused about what exactly is going on. By creating pull requests with the changes to our GitHub repositoryto share these https://remotemode.net/ descriptions with other Panel.Ini Editor users. New released versions of Panel.Ini Editor will include these approved descriptions. Remote Management functionality was improved and updated based on the user feedback.

Knative Service K8s and Spring Java

Users that purchased SSL/TLS certificates are now automatically redirected from Plesk Online Store back to the SSL It! Service plans now have the option to limit OWASP Top 10 2017 Update Lessons the number of backups allowed for each WordPress site. WordPress site management interface is now expanded by default after a site is installed or cloned.

  • Updated the list of extensions and components installed by default.
  • Full analysis summary with update forecast is now also available to users for making an educated decision about the update or for drilling down into issues found by the system.
  • The extension can now secure a domain alias with a certificate issued for the alias alone .
  • Plesk administrators can now specify the desired weekdays and time range when Plesk auto-updates are installed.
  • To get peace of mind by receiving this all-round protection, turn on the “Keep websites secured” option.