Security Advisory - all released ispCP Omega version

2 views

Skip to first unread message

Benedikt Heintel

unread,

Jul 25, 2010, 3:08:31 PM7/25/10

to ispcp-a...@googlegroups.com

Dear ispCP Community,

on Friday, 23. Jul. Laurent Declerq discovered a security hole in the
client/sql_auth.php file.
This hole allows a client to access other customer's databases without
knowing the password. All released ispCP Omega versions are affected.

We strongly recommend to fix this hole to protect your clients' data.

You will find a patch for against ispCP 1.0.5 attached to ticket #2410
(http://isp-control.net/ispcp/ticket/2410).

Sorry for any inconvenience caused.

Best Regards,
Benedikt Heintel

ispCP Project Manager

Reply all

Reply to author

Forward

0 new messages