LowEndBox - Cheap VPS, Hosting and Dedicated Server Deals

WHMCS Won't Tell You About What The Vulnerability Is, But Will Say "Patch ASAP!"

WHMCS Security Release


WHMCS released new versions for both 8.5.x and 8.6.x to address unspecified security issues.

“All earlier versions of WHMCS are unaffected,” according to the blog post.  “The issue was reported privately and there is no evidence to suggest it is known publicly. We will not be releasing any further details about the issue at this time.”

Indeed, WHMCS is generally very secretive about their security issues.  A comment on that post notes that WHMCS has not issued a CVE since 2012.


No Comments

    Leave a Reply

    Some notes on commenting on LowEndBox:

    • Do not use LowEndBox for support issues. Go to your hosting provider and issue a ticket there. Coming here saying "my VPS is down, what do I do?!" will only have your comments removed.
    • Akismet is used for spam detection. Some comments may be held temporarily for manual approval.
    • Use <pre>...</pre> to quote the output from your terminal/console, or consider using a pastebin service.

    Your email address will not be published. Required fields are marked *