Website security is one of the most important aspects of running an online presence. A hacked website can lead to countless hours of debugging and repair, loss of income, to loss of credibility and lawsuits. With over 30,000 new small business website hacks a day and numerous corporation breaches, not a day goes by without a compromised site showing up in the news. Over the past decade, hackers have targeted the top three open-source Content Management Systems:
Archive for CMS
If we have learned one thing from the 2020 COVID-19 situation, access to online resources and training is vital to keep businesses going. Online education has exploded due to school closures, and the learn-from-home approach has become the current standard. The hosting industry has also thrived in this arena, for example, Alibaba Cloud deployed more than 100,000 new cloud servers in two hours and set a new record for rapid capacity expansion. At cPanel, our work is a hybrid …
Whether you want to sell your idea to your leadership or want a more solidified project proposal backed by proof, we are going to equip you with the tools you need to improve your success. We’ll walk you through step by step what to do before you plan your proposal. You want to find the best way to devise a plan that will support your idea with hard data and approvals will be a breeze. …
April continued to be a challenging time for the WordPress community, with many under stay-at-home recommendations. However, it was also an exciting month in which we created new ways to connect with and inspire each other! This month, amazing contributors moved more WordCamps online and shipped new releases for WordPress and Gutenberg. For the latest, […]
The web hosting industry has made significant changes in the past decade, and customer expectations have moved far beyond storage to a services-driven market. In 2020 there are about 2 billion websites online, and a new domain is registered every 2 seconds. The growth of the internet continues to reach new highs and new markets. In the hosting sector, growth can come in many forms. How does a hosting company increase revenue and continue to …
If you have an email address with your own domain name, you need to be able to access those emails on the go. According to Statista.com, there are approximately more than 100 million iPhone users in the United States. In the past, if you had an email account set up with a personalized domain name, you would be required to either log into Webmail to check your email or connect your email to a 3rd …
WordPress 5.4.1
WordPress 5.4.1 is now available! This security and maintenance release features 17 bug fixes in addition to 7 security fixes. Because this is a security release, it is recommended that you update your sites immediately. All versions since WordPress 3.7 have also been updated. WordPress 5.4.1 is a short-cycle security and maintenance release. The next […]
As you learned in our Intro to Server Security, securing your server is one of the most important things you need to do when you’re setting up and maintaining your cPanel server. We’re building on the knowledge presented in the introduction to provide more advanced tips for server security. In this article, you’ll learn more in-depth techniques and best practices for safeguarding your site, server, and account from hackers. We’ll cover security topics like: Managing Shell Access Recommended Security Settings …
Joomla 3.9.18 Release
Joomla 3.9.18 is now available. This is a bugfix release for the 3.x series of Joomla which addresses one bug.
Joomla 3.9.17 Release
Joomla 3.9.17 is now available. This is a security release for the 3.x series of Joomla which addresses three security vulnerabilities and contains over 40 bug fixes and improvements.
- Project: Joomla!
- SubProject: CMS
- Impact: Moderate
- Severity: Low
- Versions: 2.5.0 – 3.9.16
- Exploit type: Incorrect Access Control
- Reported Date: 2020-March-13
- Fixed Date: 2020-April-21
- CVE Number: CVE-2020-11889
Description
Incorrect ACL checks in the access level section of com_users allow the unauthorized deletion of usergroups.
Affected Installs
Joomla! CMS versions 2.5.0 – 3.9.16
Solution
Upgrade to version 3.9.17
Contact
The JSST at the Joomla! Security Centre.
- Project: Joomla!
- SubProject: CMS
- Impact: Moderate
- Severity: Low
- Versions: 2.5.0 – 3.9.16
- Exploit type: Incorrect Access Control
- Reported Date: 2020-February-27
- Fixed Date: 2020-April-21
- CVE Number: CVE-2020-11890
Description
Inproper input validations in the usergroup table class could lead to a broken ACL configuration.
Affected Installs
Joomla! CMS versions 2.5.0 – 3.9.16
Solution
Upgrade to version 3.9.17
Contact
The JSST at the Joomla! Security Centre.
- Project: Joomla!
- SubProject: CMS
- Impact: Low
- Severity: Low
- Versions: 3.8.8 – 3.9.16
- Exploit type: Incorrect Access Control
- Reported Date: 2020-March-13
- Fixed Date: 2020-April-21
- CVE Number: CVE-2020-11891
Description
Incorrect ACL checks in the access level section of com_users allow the unauthorized editing of usergroups.
Affected Installs
Joomla! CMS versions 3.8.8 – 3.9.16
Solution
Upgrade to version 3.9.17
Contact
The JSST at the Joomla! Security Centre.
Securing your server is one of the most important things you need to do when you’re setting up your cPanel for the first time. There are multiple steps you should take to be proactive about protecting your server. Most people understand the need to protect their website from vulnerabilities, but don’t realize their hosting server needs protection, too. When hackers discover they can’t get directly into your website, they’ll try to break in through your cPanel …
Starting your own web hosting business is much simpler now that technology and customer reach is improving, but the model is still changing all the time. During the “Wild West” era of the internet 20+ years ago, users were confined to a small number of web hosting providers. At that time, hard drive/storage space was quite limited, ranging from 35KB to 2MB, depending on the provider. For shared hosting, the average storage space was just 153MB. In …
In the April edition of our “People of WordPress” series, you’ll find out how Mario Peshev went from self-taught developer to teaching basic digital literacy.
Looking for cool ideas for connecting with friends and family? We repurposed remote working tools! Read more about creating connections during the quarantine.
The month of March was both a tough and exciting time for the WordPress open-source project. With COVID-19 declared a pandemic, in-person events have had to adapt quickly – a challenge for any community. March culminated with the release of WordPress 5.4, an exhilarating milestone only made possible by dedicated contributors. For all the latest, […]
If you’re looking for an eCommerce Solution for your business, installing Magento using cPanel is much easier than you think. What is Magento? No, not the metal-manipulating Super Villain from the X-Men comics. Magento is one of the most popular open-source eCommerce platforms for businesses on the internet. Built on the Zend Framework and written in PHP, Magento is the “world’s leading platform for open commerce innovation.” Magento Partners include a diverse portfolio of small, medium, and large businesses across the …
You need a professional email address for your business, and here’s how to make that happen with cPanel webmail. Putting your best foot forward as both an individual and a business can start with something as simple as having a professional-looking email address. For a bit of context- think back to the email address you had in high school or college. How many of you had a favorite movie or band or sports team in …
WordPress 5.4 “Adderley”
Version 5.4 “Adderley” of WordPress is available for download or update in your WordPress dashboard. This version brings you more ways to make content come alive with your best images and helps make your vision real by putting blocks in the perfect place.
Joomla, one of the world’s most popular Content Management Systems (CMS), announced today its partnership with Report URI, the Application Security and Health Monitoring leader.
WordPress 5.4 RC5
The fifth release candidate for WordPress 5.4 is live! WordPress 5.4 is currently scheduled to land on March 31 2020, and we need your help to get there—if you haven’t tried 5.4 yet, now is the time! You can test the WordPress 5.4 release candidate in two ways: Try the WordPress Beta Tester plugin (choose the “bleeding edge nightlies” option) […]
As a customer and partner, you have multiple ways to receive our help and support at any time, from anywhere. You have the power in your hands to obtain the knowledge and expertise necessary for your business to continue successfully without interruption. cPanel & WHM is a robust assortment of tools with a variety of applications for their use. These tools are widely used and adopted, and there are a lot of resources available. That means …
cPanel employees are sharing their experiences working remotely to help everyone succeed while working from their homes. Below you’ll find some of our best tips for working remotely that the cPanel team has been passing back and forth.
WordPress 5.4 RC4
The fourth release candidate for WordPress 5.4 is live! WordPress 5.4 is currently scheduled to land on March 31 2020, and we need your help to get there—if you haven’t tried 5.4 yet, now is the time! You can test the WordPress 5.4 release candidate in two ways: Try the WordPress Beta Tester plugin (choose the “bleeding edge nightlies” option) […]
First, we want to assure you that we are here to support you and your business during this time of uncertainty. We are implementing our tested plans to keep operations up and running, and our goal remains to continue with uninterrupted operations and service to our Partners and customers. Adjusting to the current COVID-19 situation has been a task that everyone across the world has had to deal with. cPanel has been no different, and we …
WordPress 5.4 RC3
The third release candidate for WordPress 5.4 is now available! WordPress 5.4 is currently scheduled to be released on March 31 2020, and we need your help to get there—if you haven’t tried 5.4 yet, now is the time! There are two ways to test the WordPress 5.4 release candidate: Try the WordPress Beta Tester plugin (choose the “bleeding edge […]
WordPress 5.4 RC2
The second release candidate for WordPress 5.4 is now available! WordPress 5.4 is currently scheduled to be released on March 31 2020, and we need your help to get there—if you haven’t tried 5.4 yet, now is the time! There are two ways to test the WordPress 5.4 release candidate: Try the WordPress Beta Tester plugin (choose the “bleeding edge […]
Joomla 3.9.16 Release
Joomla 3.9.16 is now available. This is a security release for the 3.x series of Joomla which addresses six security vulnerabilities and contains over 20 bug fixes and improvements.