1.7.46

Released on March 11, 2026

💅 Polish​

• One-click WordPress Staging #873
• Install script now supports optional --user-port= and --admin-port= flags.
• Added support for Webhooks on OpenAdmin > Notifications page.
• opencli port command now automatically opens the new user panel port on Firewall.
• opencli admin port shows current OpenAdmin port, opencli admin port NEW_PORT updates OpenAdmin port.
• commands opencli faq, opencli sentinel, opencli user-add and opencli admin now check for custom OpenAdmin port.
• Login Failure Daemon (LFD) is added as managable service from OpenAdmin > Services page.
• Added 30+ user-actions on OpenAdmin > Settings > Notifications page.
• Optimized WAF and HSTS toggle process on OpenAdmin > Domains page.
• Refactored opencli report command.
• Refactored opencli user-delete command.
• autoIndex is now enabled for OpenLitespeed on new installations.
• dev_mode is now automatically disables when running future updates.

🐛 Bug Fixes​

• Fixed bug enabling HSTS for a domain when custom SSL is set.
• Fixed error unknown directive \"secrequestbodyjsondepthlimit\"","line":40 starting Caddy webserver.
• Fixed bug on opencli port failing to update /etc/openpanel/nginx/vhosts/openpanel_proxy.conf file.
• Fixed bug with logrotate config on Ubuntu.
• Fixed bug on opencli user-resources command caused by Windows-like return characters in user's .env file.
• Fixed bug creating map for domains added on OpenLitespeed webserver.
• Fixed bug changing WAF status ( enable/disable ) from OpenAdmin > Security > WAF page.
• Fixed 500 error on /api/system/hosting/plan in OpenPanel.
• Removed 'undefined' text on bottom of OpenPAnel > Advanced > Server Info page.
• Fixed bug with incorrect docroot on WP Manager actions caused by lstrip('/var/www/html/').
• Fixed false-positive error on WP Manager > Security > Vulnerabilities where there are no vulnerabilities detected for a website.
• Disk usage notification is not properly saved in notifications.ini #877
• Fixed FOUC (flash of unprocessed content) on OpenAdmin > Domains > SSL and OpenPanel > Domains > SSL pages.
• Fixed bug on OpenAdmin > License with flash message missing when 'report' button is clicked.
• Fixed CORS error when using CF turnstile via captcha plugin
• Fixed an issue where deleting a domain would leave rotated domain logs on the server.
• Fixed a problem where deleting a user did not remove associated Coraza WAF rules and domain logs.
• Fixed bug that prevented terminating active sessions when suspending a user.
• Fixed a bug where custom SSL files were not removed when deleting a domain or user.
• Fixed an error in WP Manager → Clone when using MariaDB, caused by unsupported flags --column-statistics=0 and --set-gtid-purged=OFF.
• Fixed a bug in WP Manager that caused duplicate sites to be added each time a website was cloned.