Hi guys, I am one of the many happy owners of this great theme.
Until yesterday I had only emails from my firewall regarding brute force attempts; I blocked the IPs from Cpanel and all good.
Yesterday I have received an email that concerns me a little bit: “July 13, 2020
11:24 am 22.214.171.124 (Netherlands) Blocked for Slider Revolution: Local File Inclusion”
I have read about some vulnerability of Slider Revolution but I am thinking that is all history by now.
Should I be worried about this? What is to be done except blocking the IP address?
I’m glad you like the theme.
You don’t need to worry.
Blocking the IP address from which the attack comes is a good enough solution.
Each of the plugins can be attacked. So it’s good to have a firewall enabled. Since the Slider Revolution is very popular, it is not uncommon for this to happen.
Please, update your theme and plugins to the latest versions (current theme version is 126.96.36.199 and Slider Revolution 6.2.10) https://prnt.sc/thewtd
Also, I didn’t see you are even using Slider Revolution somewhere, so if you don’t use it, simply deactivate it.
Thank you for your reply.
I don’t use the plugin Slider Revolution, it is indeed deactivated. That was the reason for my concern. Having the plugin deactivated and not in use and still having a Local File Inclusion attempt made me a little bit worried.
I don’t know how to manage this type of attack and if it would be successful I will go nuts. 🙂 on pills and stuff.
Thank you for your time and shared experience.
Hopefully, I will not have any reason to bother you again in the future, maybe just to meet and drink some beer one day.
Keep up with good work!