-
Reducing Disk Load in High-Traffic PHP Applications: Switching from SQLite to Redis for Anti-Crawler Storage
Automated crawlers and scraping bots are a growing problem for modern websites. While search engine bots are useful, many other crawlers generate excessive traffic, scrape content, or overload servers. To help website owners control this type of traffic, we recently released the Anti-Crawler PHP Library by CleanTalk, an open-source tool designed to detect and limit
-
CVE-2023-4827 – File Manager Pro < 1.8 - Remote Code Execution via CSRF
During testing of the plugin, a CSRF vulnerability was discovered in action=rename, which can lead to denial of service and theft of the password from the database, thereby allowing an attacker to get inside the web application and gain a foothold in it. Replace any data in the database and do everything that an administrator…
-
CVE-2023-3664 – FileOrganizer <= 1.0.2 - Admin+ Arbitrary File Access
During a security assessment of the FileOrganizer plugin, a medium vulnerability was uncovered in versions up to and including 1.0.2. This vulnerability allows an attacker to manipulate the plugin’s root folder, potentially compromising the security of the entire system. The plugin does not restrict functionality on multisite instances, allowing site admins to gain full control…
-
CVE-2023-4238 – Prevent files / folders access < 2.5.2 - Remote Code Execution
A severe security loophole has come to light in the Prevent files / folders access plugin, triggering concerns over the safety of WordPress websites. This vulnerability, tracked as CVE-2023-4238, opens the door to remote code execution through file uploads. Our testing revealed a startling scenario: an attacker can potentially upload a PHP file to the…
-
Our client’s review: REVIEWINGLIFEEXPREIENCES.COM
We continue sharing our clients’ reviews and today’s one is kindly brought to you by our client from reviewinglifeexperiences.com on Trustpilot. CleanTalk Anti spam is amazing security plugin CleanTalk Anti spam is amazing and would not feel comfortable about the security of my website without it. It stops spam comments and CleanTalk stops brute force…
