Uniqlo’s website transmitted customers’ credit card details to fraudsters for more than a week in May this year, following the addition of e-commerce skimming code. The injected JavaScript code was designed to silently ‘skim’ the completed checkout form and send a copy of the customer’s details to the fraudsters. Thousands more sites have also been […]
If you’ve been to any of our conferences before, chances are you’ve attended Game Night on the final night. WebPros Summit 2019 promises to be the biggest and best conference yet, and we would be remiss in not bringing in the best of the best for arguably the most fun evening event of the Summit. Introducing the reimagined, bigger and badder GAME NIGHT. 21st Century Digital Game As always, we’re bringing in some of the …
Netcraft has updated its browser extension to add protection against malicious JavaScript, including shopping site skimmers and web miners. Shopping site skimmers are malicious JavaScript programs that steal your payment card information when you checkout on a compromised online store, and send it back to a fraudster to use later. These attacks have affected a […]
Earlier this year, Let’s Encrypt announced the end of life (EOL) plan for their original API. Starting this November, they will no longer allow new account registrations through the original API. After the original API reaches EOL, new account registrations must use Let’s Encrypt’s new API. Because of this, cPanel is migrating its Let’s Encrypt plugin to use that new API instead of the old API. Why change now? If we do not update our plugin, we …
The upcoming WebPros Summit 2019 is almost upon us! In talking with different members of the community, a common theme pops up from those who want to attend. “How do I convince my boss/company/employer that we/I should attend the WebPros Summit?” Never fear, we have a solution for you! Take this handy pre-formatted letter and simply replace the text that goes in [these boxes]. There’s plenty of value to attending the Summit this year, and …
Inadequate checks in com_contact could allowed mail submission in disabled forms.
Joomla! CMS versions 1.6.2 – 3.9.10
Upgrade to version 3.9.11
The JSST at the Joomla! Security Centre.
You’ve probably heard that WordPress is open source software, and may know that it’s created and run by volunteers. WordPress enthusiasts share many examples of how WordPress changed people’s lives for the better. This monthly series shares some of those lesser-known, amazing stories. Meet Amanda Rush from Augusta, Georgia, USA. Amanda Rush is a WordPress […]
Summit /ˈsəmət/ (noun)- the highest level or degree attainable; the highest stage of development.This year the cPanel Conference is being transformed into the WebPros Summit. With the addition of cPanel to the WebPros family of companies, the natural progression for our annual conference was a combined conference. Partnering with the communities of Plesk, WHMCS, and SolusVM will increase the size and impact that an annual hosting conference has. Enter WebPros Summit 2019. With the power …
…in the great state of Texas, a software company offered unto its’ subjects a Feature Request Site where they could submit their feedback about the products it worked so diligently to create and support. This site was launched in October 2012 to great fanfare and fingers flew across keyboards from across all the lands as requests were submitted. Each person was allotted votes they could use to make their greatest wishes for cPanel known, …
This month has been characterized by exciting plans and big announcements – read on to find out what they are and what it all means for the future of the WordPress project. WordCamp Asia Announced The inaugural WordCamp Asia will be in Bangkok, Thailand, on February 21-23, 2020. This will be the first regional WordCamp […]
Today we announced a new partnership with our friends over at CloudLinux. Anyone who is gearing up to migrate from CentOS 6 to CentOS7 (and again from CentOS 7 to CentOS 8 in a few years) can now consider another option! cPanel & WHM Version 86: The last version to support CentOS 6 We are planning on carrying support for CentOS 6 until the next LTS version of cPanel & WHM, Version 86. Only one version …
Back in April, we released an experimental version of NGINX into the wild for cPanel users at large to test and play around with. The feedback we’ve received from you, the cPanel Community, has been great! For those of you that have been using the experimental version of NGINX, there have been several add-on features that have been requested we add to NGINX to make it more viable. While we’re still a long ways …
Hi. I’m Tabby. I joined the Community Team at cPanel in March 2019 as a Community Manager. I couldn’t be more excited about it if I tried, and I’ll tell you why; my entire career has led to this role. I’ve done so many weird and disparate things that from the outside, I’m sure when I tell folks that I was an award-winning music educator before I was a Community Manager, it makes no sense …
The Netcraft Anti-Phishing Extension is now available for Microsoft Edge. The Netcraft Anti-Phishing Extension provides phishing and XSS protection as well as informing you about the websites you visit. It was first made available for Internet Explorer in December 2004, followed by Firefox in 2005, Chrome in 2012 and Opera in 2013. Microsoft Edge is […]
You’ve probably heard that WordPress is open source software, and may know that it’s created and run by volunteers. WordPress enthusiasts share many examples of how WordPress changed people’s lives for the better. This monthly series shares some of those lesser-known, amazing stories. Meet Ugyen Dorji from Bhutan Ugyen lives in Bhutan, a landlocked country […]
With the release of cPanel & WHM version 82 to CURRENT this week, we are adding several new UAPI modules and functions. These new functions replace several previously-deprecated cPanel API 1 functions. For a complete list of API calls that we’ve added so far, read our Guide to Replacing cPanel API 1 functions with UAPI equivalents documentation. Our goal is to provide a more seamless experience for anyone who integrates with cPanel & WHM. What is an API, and who uses …
Inadequate filtering allows users authorised to create custom fields to manipulate the filtering options and inject an unvalidated option.
Joomla! CMS versions 3.9.7 – 3.9.8
Upgrade to version 3.9.9
The JSST at the Joomla! Security Centre.
Late last week, we announced a new licensing and pricing structure for cPanel. This change was the result of several months of conversations and modeling to ensure we understood as many use cases for cPanel & WHM hosting as possible. In the days following our announcement, we have heard from many of our Partners, both online and on the phone, and the feedback has been clear. Our analysis of use cases was incomplete, …
June has certainly been a busy month in the WordPress community — aside from holding the largest WordPress event ever, the project has hit a number of significant milestones and published some big announcements this past month. A Wrap for WordCamp Europe 2019 WordCamp Europe 2019 took place on June 20-22. It was the largest […]
Today, we announced a new pricing and licensing structure to our Partners, Distributors, and our cPanel Store customers. Our pricing and licensing will now be standardized for all of our customers, be billed monthly, and include multiple Tiers. When cPanel defined its original pricing structure, some twenty plus years ago, servers were not as powerful as they are today. Thanks to constant innovation in the hardware sector and optimization in our software, we can now run hundreds …
Researching another piece I’ve been writing, I realized that I was grossly unfamiliar with a portion of the cPanel & WHM product. For a bit of background, I’ve been using cPanel & WHM for about nine years now, mostly from the end user and system administrator perspectives. Admittedly, I am not a developer, nor do I pretend to be one. Between you and me, I have immense respect for developers and the dark arts magic that …
WordPress 5.2.2 is now available! This maintenance release fixes 13 bugs and adds a little bit of polish to the Site Health feature that made its debut in 5.2. For more info, browse the full list of changes on Trac or check out the Version 5.2.2 documentation page. WordPress 5.2.2 is a short-cycle maintenance release. The next […]
The post Acronis and ZNetLive join forces to offer new security solution appeared first on Plesk.
The update server URL of com_joomlaupdate can be manipulated by non Super-Admin users.
Joomla! CMS versions 3.8.13 through 3.9.6
Upgrade to version 3.9.7
The JSST at the Joomla! Security Centre.
The subform fieldtype does not sufficiently filter or validate input of subfields, this leads to XSS attack vectors.
Joomla! CMS versions 3.6.0 through 3.9.6
Upgrade to version 3.9.7
The JSST at the Joomla! Security Centre.
The CSV export of com_actionslogs is vulnerable to CSV injection.
Joomla! CMS versions 3.9.0 through 3.9.6
Upgrade to version 3.9.7
The JSST at the Joomla! Security Centre.
According to Statista, over 3 billion people across the world are expected to have some form of social media account by 2021. That’s 1/3 of the population of the entire planet. While social media use in the business world has been around for the better part of a decade, it has recently become an integral part of growing communities and building brand recognition. Companies use social media as customer outreach, to announce a new …
Exim is the mail server software cPanel & WHM servers use. Last week an exploit for Exim was identified, and today a patch for the exploit was released. This exploit allowed for both local and remote root-level privilege escalation. That means that you won’t need to be able to access the server as a user to exploit the server, as is the case with most security vulnerabilities that are found. How to Protect Yourself The best …
This month saw the 16th anniversary since the launch of the first release of WordPress. A significant milestone to be sure and one that speaks to the strength and stability of the project as a whole. In this anniversary month, we saw a new major release of WordPress, some exciting new development work, and a […]
It is with great affection that I get to share news of an addition to the WebPros family. Starting today, WHMCS joins us as part of this exciting and growing group of companies that power the hosting industry. Years ago, cPanel and WHMCS began a partnership to improve integration and support between the companies, and the software we build. As a result, cPanel and WHMCS have enjoyed an incredible working relationship for nearly 7 years. So close, in …
53 queries. 9.75 mb Memory usage. 0.689 seconds.