New on LowEndTalk? Please Register and read our Community Rules.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
Whmcs security update 5.2.10 out
Awmusic12635
Member, Host Rep
Thanked by 1laaev
Comments
WHMCS needs an external security audit. Like srsly.
100% agreed
OMG, again?
Seemed to be reported on WHT earlier yesterday
Just receive a email but this email is suspicious, anyone can download hacked whmcs db and send a email for applying a patch.
WHMCS should show a secret code in email, for example: We enter a code 1234xyz in whmcs client area and If they send us a email then this code will be displayed in email.
WHMCS SPF Fail.
Received-SPF: fail (google.com: domain of [email protected] does not designate 88.191.188.27 as permitted sender)
Anyone can get a benefit of this, create a fake domain of whmcs and send a email to all whmcs users, most of users will immediately apply this encrypted patch and hacker will be notified with installation URL, DB, etc and even they can get a full db without visiting to their site.
200% agreed, they should hire someone to test the security
Just read this.
Any alternative of WHMCS? Blesta does not support many payment gateway and modules ;/
Ubersmith, ClientExec, BillManager (ISP Systems).
Not an update anymore, regular daily operation to release WHMCS versions on a daily basis
Did the latest update break WHMCS Admin emails (from cron jobs, support ticket opening etc) for anyone else?
Sighing, getting bored to get update again!
Its seem all working fine for us.