Resultados 1 a 7 de 7
  1. #1
    Super Moderador
    Data de Ingresso
    Sep 2010
    Localização
    Procurando...
    Posts
    4,106

    Nova falha de segurança do WHMCS (12-03-2013)

    ai ai ai, nem vou falar mais nada ....

    WHMCS Security Advisory for 4.x, 5.x


    WHMCS has released new patches for the 4 and 5 series. These updates provide targeted changes to address security concerns with the WHMCS product. You are highly encouraged to update immediately.

    WHMCS has rated these updates as including critical and important security impacts. Information on security ratings is available at Security Levels - WHMCS Documentation.

    Releases
    The following versions of WHMCS address all known vulnerabilities:
    5.0.4
    5.1.4
    STABLE 5.2.1

    The latest public releases of WHMCS are available inside our members area at https://www.whmcs.com/members/clientarea.php

    Security Issue Information
    The resolved security issues were all identified by Vlad C. of NetSec Interactive Solutions <http://safeornot.net>. There is no reason to believe that these vulnerabilities are known to the public. As such, WHMCS will only release limited information regarding the vulnerabilities at this time.

    Once sufficient time has passed to allow WHMCS customers to update their installed software, WHMCS will release additional information regarding the nature of the security issues. These Targeted Security Releases and Patches address 6 vulnerabilities in WHMCS version 4.0, 4.1, 4.2, 4.3, 4.4, 4.5, 5.0, 5.1, and BETA 5.2. Additional, supplemental information is scheduled to be released April 9th, 2013.

    Mitigation

    WHMCS Version 4.x
    Download and apply the appropriate patch files to protect against these vulnerabilities.

    Patch files for affected versions of the 4.x series are located on the WHMCS site as itemized below.

    4.0 series: http://www.whmcs.com/download/170/12mar2013patchv40
    4.1 series: http://www.whmcs.com/download/174/12mar2013patchv41
    4.2 series: http://www.whmcs.com/download/178/12mar2013patchv42
    4.3 series: http://www.whmcs.com/download/182/12mar2013patchv43
    4.4 series: http://www.whmcs.com/download/186/12mar2013patchv44
    4.5 series: http://www.whmcs.com/download/190/12mar2013patchv45

    To apply the patch, simply download the appropriate patch file specific to the WHMCS version you are running, extract the contents, and upload the files from the /whmcs/ folder to your installation.

    No install or upgrade process is required.

    WHMCS Version 5.x

    Download and apply the appropriate full-version of WHMCS to protect against these vulnerabilities.

    Full-versions for the affected version of the 5.x series are located in the WHMCS members area download section, under your license details.

    v5.0.4
    v5.1.4
    v5.2.1 STABLE

    When updating from v5.2.0 BETA to v5.2.1 STABLE, you must perform an upgrade. The upgrade process is described here: Upgrading - WHMCS Documentation

    When updating from v5.0.3 or v5.1.3, the upgrade process is not required. To apply the full-version, simply download the appropriate file specific to the WHMCS version you are running, extract the contents, and upload the files from the /whmcs/ folder to your installation.


    *This Security Advisory is in the process of being emailed to all active license holders.*

    Date: Tuesday, March 12, 2013


    Posted by Matt on Tuesday, March 12th, 2013
    Siga-nos em nosso twitter: @wht_brasil

  2. #2
    Guru Junior
    Data de Ingresso
    Nov 2010
    Posts
    237
    Recebi agora pouco esse email, o site deles ta bem lento e dando erro 503. Nem consigo baixar a nova versão.


    Atualização 19:20: Consegui baixar agora.
    Última edição por alvaro; 12-03-2013 às 21:20.

  3. #3
    WHT-BR Top Member
    Data de Ingresso
    Nov 2010
    Posts
    1,608
    E lá vamos nósssssssssssssssssss

    Atualizei como patch e daqui uns 2 meses "quem sabe", atualizo p/ ultima versão hehehe
    oGigante.com*• Revenda de Hospedagem Cloud Linux + WHMCS Grátis
    VWhost.com.br • Revenda de Hospedagem Linux Cpanel + CloudFlare
    Zocka.com.br • Hospedagem de Sites Cpanel + Construtor de Sites

  4. #4
    Guru Junior
    Data de Ingresso
    Nov 2010
    Posts
    237
    Esse versão 5.2.1 é cheia de erros, em 2 dias já saiu outra (5.2.2). O pior é que eu achei de atualizar e agora é só problemas. Vou tentar a 5.2.2.

  5. #5
    Web Hosting Master
    Data de Ingresso
    Aug 2011
    Localização
    /home
    Posts
    896
    Irei atualizar quem sabe em 2 meses, como o chuva falou. Até lá, não devem ter mais problemas. hehe
    Ainda estou na 5.1.

  6. #6
    Guru Junior
    Data de Ingresso
    Nov 2010
    Posts
    237
    Eu também estava na 5.1, mas quando fui atualizar ainda não tinha o patch para ela. E fui logo passando para a ultima versão, estou com a 5.2.2 agora. Até o momento só encontrei 3 bugs.

  7. #7
    Aspirante a Evangelist
    Data de Ingresso
    Feb 2012
    Localização
    Lisboa, Portugal
    Posts
    403
    Que bugs foram?
    Sampling Line - Serviços e Internet, Lda.
    PTServidor - Alojamento Web, Domínios, Lojas, VPS, Radios, Dedicados, Housing/Colocation
    Blog PTServidor | Registrar Oficial FCCN|MS Partner|R1Soft

Tags para este Tópico

Permissões de Postagem

  • Você não pode iniciar novos tópicos
  • Você não pode enviar respostas
  • Você não pode enviar anexos
  • Você não pode editar suas mensagens
  •