Skip to content

Instantly share code, notes, and snippets.

Embed
What would you like to do?
#block load-scripts|styles.php requests with long argument list
#CVE-2018-6389 impact mitigation
if ($request_uri ~* "^/+wp-admin/+load-(scripts|styles)\.php\?.{800,}$"){
return 403;
}
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment