Vetasi web site vulnerable
-
Good day, I trust you are well,
Our client has sent the attached screenshot.Can I send the URL that is in the screenshot?
It looks like the /?s= is vulnerable to script injection.
How can we prevent this?WP.com: Unknown
Jetpack: Unknown
Correct account: UnknownThe blog I need help with is: (visible only to logged in users)
-
Is it possible to escape the search string, so that dangerous HTML code and tags can’t be injected?
-
Good day.
Any feedback?
Please rename the subject line to “Web site search field vulnerable“
Hope to hear from you soon.
-
Hi there,
Apologies, but we can’t help with your issue directly because we don’t host your site on our WordPress.com managed hosting.
To explain, we are a fully managed hosting provider and use a custom server environment that is optimized for WordPress, provides built-in security and performance improvements, as well as in-house support for your site questions.
Because of the way we’ve optimized our service, we also use a customized version of WordPress that is different (under the hood) from what you use at your current provider. As a result, we do not have access to your site and are not familiar with the source of your issue.
You definitely have the option to move your site to us so we can provide in-house help, but as it stands now, we cannot help since it is hosted elsewhere. The good news is that help is available here at the open-source WordPress forums: https://wordpress.org/support/forum/how-to-and-troubleshooting
The folks in that forum are more familiar with these kinds of issues and are in the best position to help. Thanks!
-
- The topic ‘Vetasi web site vulnerable’ is closed to new replies.
WordPress.com Forums 