VestaCP to HestiaCP to perform Google Core Web Vitals

I was recommended to switch from VestaCP to HestiaCP to perform Google Core Web Vitals.

Do you approve these changes?

I upload my website to a shared host and the performance is better that the actual VPS.

I cannot share my website because I’ll get banned

Core web vitals should be the last thing to worry about if you are still using Vesta today :wink:

VestaCP LPE leads to RCE as root · Issue #2045 · serghey-rodin/vesta · GitHub (Hasn’t been Published so far)
https://cve.mitre.org/cgi-bin/cvename.c … 2021-28379 or VestaCP 0.9.8 - File Upload CSRF - Multiple webapps Exploit
VestaCP 0.9.8 - 'v_sftp_licence' Command Injection - Multiple webapps Exploit
VestaCP 0.9.8 - 'v_interface' Add IP Stored XSS - Multiple webapps Exploit
VestaCP 0.9.8-26 - 'backup' Information Disclosure - Multiple webapps Exploit
VestaCP 0.9.8-26 - 'LoginAs' Insufficient Session Validation - Multiple webapps Exploit

And a few more…

probably best to stay with shared hosting then :wink:

1 Like

Well, the change is done, and the performance is getting better! So thank you.
But the LCP is still high, any tips to improve this part?

moderators edit: please refrain from posting your domain here.

no. this isn’t related to hestia at all and nothing we are willing to cover.