(The Hosting News) – Client management and billing platform WHMCS warned of a security vulnerability on Friday.
The issue pertains to a third party module called Boleto. “This can potentially be used to exploit a WHMCS installation,” warned WHMCS’s Matt via the company’s blog.
Users have an easy way to make sure they’re secure. Those currently relying on Boleto can download and apply a patch via WHMCS.com. Those who don’t use the module, meanwhile, can simply delete its existence altogether by removing a folder called “/modules/gateways/boleto/.”
WHMCS apologized for any inconvenience and emphasized that the error affects all versions of the popular payment platform.
WHMCS is particularly popular in the web hosting community, providing functionality that includes multiple currencies, tax support, estimates and more. The company itself recently joined forces with hosting control panel provider cPanel. To view the security advisory, visit: http://blog.whmcs.com/?t=60646