WordPress security issue related to file manager plugin

Hi


I had installed two WordPress sites on same vultr server (Ubuntu + Nginx +Mariadb + php-fpm).


/var/www/html

/var/www/html2


Now problem is that file manager plugin installed on one WordPress site can read and edit files of another site.


Example: Plugin of WordPress at /var/www/html and edit files of /var/www/html2


Is there any way to restrict access of file manager plugin of one WordPress to installation_folder of that WordPress only?


Regards

Sign In or Register to comment.