Back to Blog Posts

WHMCS Security Advisory TSR-2015-0001

By Andrew / June 2nd, 2015

WHMCS has released new updates for all supported versions of WHMCS. These updates include changes that address security concerns within the WHMCS product.

WHMCS has rated these updates as having a Trivial to Important security impact. Information on security ratings can be found at https://docs.whmcs.com/Security_Levels


Releases
Please update your installation to the latest version 5.3.14.


Patches
- What is a Patch?
Incremental patches can be downloaded by following the links below.

These patch sets contain only the files that have changed between the previous release and this update. The previous release version that these patch sets are designed for is clearly indicated as the first and smaller number.[INDENT]
[B]5.3.13 --> 5.3.14[/B] https://go.whmcs.com/522/v5313_incremental_to_v5314_patch
[I][SIZE=1]MD5 Checksum: 9e53077daebbd7027b5107fa35577648[/SIZE][/I]
[/INDENT]

Need a patch for an older version? Visit our downloads page: https://download.whmcs.com/

To apply a patch set release, download the files as indicated above. Then follow the upgrade instructions for a "Patch Set" which can be found at https://docs.whmcs.com/Upgrading#For_a_Patch_Set


Full Release
- What is a Full Release?
A full release distribution contains all the files of a WHMCS product installation. It can be used to both perform a new installation or update an existing one (regardless of previous version).[INDENT]
[B]5.3.14 Full Version[/B] - Download Now https://download.whmcs.com/
[I][SIZE=1]MD5 Checksum: 8b360c93523ad8675659eb92b29f46cf[/SIZE][/I]
[/INDENT]

To apply a full release, download the release from the URL above. Then follow the upgrade instructions for a "Full Release Version" which can be found at https://docs.whmcs.com/Upgrading#For_a_Full_Release_Version


Security Issue Information

The security changes in these releases address 9 issues, all of which were reported via the Security Bounty Program, or discovered internally by the WHMCS Development Team. The issues addressed are rated as having Trivial to Important security impacts.

Once sufficient time has passed to allow WHMCS customers to update their installed software, WHMCS will release additional information regarding the nature of the security issues.

Maintenance Issue Information

This release also provides resolution for a few of maintenance issues. For full details please refer to the changelog:[INDENT]
[B]V5.3.14[/B] - https://changelog.whmcs.com/WHMCS_V5.3
[/INDENT]

All published and supported versions of WHMCS prior to 5.3.14 are affected by one or more of these maintenance and security issues.

Liked this article? Share it