Can attacker escalate its privileges if he has access a web Application running with www-data

I have deployed an opensource web Application named “opencart” it has simple password. My question is can attacker login my system and escalate privileges if he login web application and even know the password of mysql databa… Continue reading Can attacker escalate its privileges if he has access a web Application running with www-data

Referrer-Policy blocking addthis plugin wordpress

I Set this in my .htaccess

Header always set Referrer-Policy strict-origin-when-cross-origin

and i get this error

Failed to set referrer policy: The value ‘strict-origin-when-cross-origin’ is not one of ‘no-referrer’, ‘no-referrer-when-downgrade’, ‘origin’, ‘origin-when-cross-origin’, or ‘unsafe-url’. The referrer policy has been left unchanged.

so the quesiton i reckon is how do i add these external urls to pass through this security setting I cant find any info on allowing them to pass through

shows addthis.com ogp.me and facebook.com probably need to add other urls as i enable social sharing and such

http://ogp.me/ns# fb: http://ogp.me/ns/fb#“>

Continue reading Referrer-Policy blocking addthis plugin wordpress