News » Security

Security

News for security updates for web hosting industry

Softaculous Vulnerability – Upgrade Installation (cPanel) Privilege Escalation

January 17, 2014 October 12, 2014 / By / Security / Leave a Comment

Softaculous Vulnerability Softaculous is the leading auto installer script with over 300 applications that can be installed by one click. The software is being used by thousands of web hosting companies and works with various control panels such as cPanel, Plesk, DirectAdmin, InterWorx and H-Sphere. Vulnerability Description: It is possible for a malicious reseller to …

Softaculous Vulnerability – Upgrade Installation (cPanel) Privilege Escalation Read More »

HostBill Security Update – Patch v2014-01-03 released

January 7, 2014 October 12, 2014 / By / Security / Leave a Comment

HostBill Security Update HostBill is a complete client management, billing and support  system used by many web hosting companies. They have released a patch on January 06, 2014 to address few security vulnerabilities. The following issues were patched in the recent updates: [1] HostBill – Submit Ticket (Hidden Department) Input Validation Failure. With this vulnerability, …

HostBill Security Update – Patch v2014-01-03 released Read More »

Softaculous – Import (cPanel) Privilege Escalation Vulnerability

January 3, 2014 October 12, 2014 / By / Security / 1 Comment

Softaculous It is the leading auto installer with over 300 applications that can be installed by one click. The software is in use by thousands of web hosting companies and works with various control panels such as cPanel, Plesk, DirectAdmin, InterWorx and H-Sphere. Vulnerability Description: It is possible for a malicious user to exploit a …

Softaculous – Import (cPanel) Privilege Escalation Vulnerability Read More »

HostBill Security updates released

December 26, 2013 October 12, 2014 / By / Security / Leave a Comment

HostBill is a complete client management, support and billing software for web hosts. HostBill platform’s core components are designed to help you acquire customer, automate your services and ensure that invoices are paid on time. Recently they have released few security updates to address the following security issues: – Auto Upgrade (Admin) ACL Failure – …

HostBill Security updates released Read More »

WHMCS Security Update – Version v5.2.15 released

December 26, 2013 October 12, 2014 / By / Security / Leave a Comment

WHMCS Security Update An update for WHMCS was released to address a security vulnerability and it is recommended that you update as soon as possible. This release also fixed few maintenance issues. You are advised to upgrade to WHMCS v5.2.15 as soon as possible. If you are unsure about how to upgrade WHMCS, you can …

WHMCS Security Update – Version v5.2.15 released Read More »

cPanel – Getpkginfo (Root) Arbitrary File Access Vulnerability

December 24, 2013 October 12, 2014 / By / Security / Leave a Comment

cPanel has released new builds for all public update tiers. These updates provide targeted changes to address security concerns with the cPanel & WHM product. These builds are currently available to all customers via the standard update system. Product: cPanel Website: http://www.cpanel.net Vulnerable Version: All versions prior to the fixed builds below. Fixed Version: 11.40.1.7, …

cPanel – Getpkginfo (Root) Arbitrary File Access Vulnerability Read More »

Cloudlinux CageFS Security Update

December 24, 2013 October 12, 2014 / By / Security / Leave a Comment

CloudLinux is Linux operating system used by most of the shared hosting providers to provide secure environment. CloudLinux restricts the usage per user so that one user can’t overload your entire server. This is biggest advantage in the share hosting server. CloudLinux has released a security update for CloudLinux CageFS today. If you are using …

Cloudlinux CageFS Security Update Read More »