CVE-2020-0601

CVE-2020-0601 – Windows CryptoAPI Spoofing Vulnerability

January 16, 2020 / By / Security / Leave a Comment

CVE-2020-0601 – Windows CryptoAPI Spoofing Vulnerability A spoofing vulnerability exists in the way Windows CryptoAPI (Crypt32.dll) validates Elliptic Curve Cryptography (ECC) certificates. An attacker could exploit the vulnerability by using a spoofed code-signing certificate to sign a malicious executable, making it appear the file was from a trusted, legitimate source. The user would have no …

CVE-2020-0601 – Windows CryptoAPI Spoofing Vulnerability Read More »

WHMCS V7.4.2 maintenance update

December 16, 2019 / By / Web Hosting / Leave a Comment

WHMCS has released maintenance update for WHMCS V7.4 version. This maintenance release includes updates, bug fixes and usability improvements. Following is the release note for WHMCS V7.4.2: Updater Enhancements – New functionality has been added to the Automatic Update utility that will validate the version of ionCube Loader installed prior to allowing an update to …

WHMCS V7.4.2 maintenance update Read More »

WHMCS Kayako Loginshare Security Patch

December 9, 2019 / By / Security / Leave a Comment

WHMCS is the leading web hosting automation platform. Handling signups, provisioning, billing and support. They also provide loginshare module to integrate third party Helpdesk like Kayako. Recently they released a security patch for Kayako Loginshare module and it is highly recommended to apply this patch. Only Kayako loginshare users need to apply this patch. This …

WHMCS Kayako Loginshare Security Patch Read More »

vePortal Security Warning – Alternative for vePortal

June 25, 2019 / By / Security / Leave a Comment

vePortal Security Warning As recently BurstNET announced that they were closing the services as of July 25th 2014, there is little or no more chance for the active development for vePortal. It is highly recommended to find the alternative control panel in place of vePortal. There are many root level security vulnerabilities present in vePortal, …

vePortal Security Warning – Alternative for vePortal Read More »

WordPress 4.7.3 Security and Maintenance Release

March 9, 2017 / By / Security / Leave a Comment

WordPress 4.7.3 is now available. This is a security release for all previous versions and it is strongly encouraged you to update your sites immediately. All previous WordPress versions contain critical security issues. Upgrading to latest version is recommended. WordPress versions 4.7.2 and earlier are affected by six security issues: Cross-site scripting (XSS) via media …

WordPress 4.7.3 Security and Maintenance Release Read More »

Critical SQL Injection Vulnerability Found in NextGEN Gallery

March 2, 2017 / By / Security / Leave a Comment

NextGEN Gallery is one f widely used WordPress plugins. As per the statastics available in WordPress plugin directory, this plugin was downloaded more than 1+ million times. That means, this plugin should be used on large number of WordPress installation. Researcher found a critical SQL injection vulnerability in NextGEN Gallery plugin. This vulnerability allows an …

Critical SQL Injection Vulnerability Found in NextGEN Gallery Read More »

CloudLinux HardenedPHP updated

June 30, 2016 / By / Security / Leave a Comment

CloudLinux is widely used operating system by web hosts. It provides better server security as well as server stability. CloudLinux also provides multiple PHP version selection. This allows end users to select appropriate PHP version for their accounts. They are also providing security updates for PHP versions which were discontinued by PHP community. Recently they …

CloudLinux HardenedPHP updated Read More »