Descoberta falha de segurança no WHMCS
Pouco tempo depois de lançar a versão 5.0 do seu gerenciador financeiro para empresas de hospedagem de sites, a WHMCS.com divulgou uma correção para uma falha de segurança no seu sistema.
De acordo com a empresa a falha pode ocorrer em todas as versões à partir de 4.0, inclusive a nova versão 5.0 recém-lançada. Todos devem aplicar a correção para evitar problemas de invasão em seus gerenciadores.
Segue abaixo texto original do post em seu blog que contém os links para downloads da correção, de acordo com a versão do seu WHMCS.
A security issue has been discovered that we consider to be of a high severity, and as a result we have decided there is a need to release an immediate patch for it.
Although not related to the new release, it is unfortunate timing so soon after the release, but we take security very seriously and so if an issue becomes apparent to us, we will always issue a patch immediately for it as our track record with patches in recent years demonstrates.
Applying the patch is very simple. It’s just a single file to update. There are separate versions of the file for each release of WHMCS from V4.0 up to the very latest V5.0 release. The patch download consists of a single file which just needs to be unzipped, and then uploaded to the /includes/ folder replacing the existing file. Download links are as follows:
Version 4.0.x -> http://www.whmcs.com/members/dl.php?type=d&id=107
Version 4.1.x -> http://www.whmcs.com/members/dl.php?type=d&id=108
Version 4.2.x -> http://www.whmcs.com/members/dl.php?type=d&id=109
Version 4.3.x -> http://www.whmcs.com/members/dl.php?type=d&id=110
Version 4.4.x -> http://www.whmcs.com/members/dl.php?type=d&id=111
Version 4.5.x -> http://www.whmcs.com/members/dl.php?type=d&id=112
Version 5.0.x -> http://www.whmcs.com/members/dl.php?type=d&id=113If you have any questions or need any assistance applying the patch, please do not hesitate to contact us.
We apologize for the inconvenience.
* An email notification is going out to all active license holders
* All client area downloads have been updated to include this by defaultPosted by Matt on Thursday, December 1st, 2011
Mantenham o seu WHMCS atualizado e seguro!
apliquei a correção no meu whmcs. obrigado pelo alerta.