The vTiger team has officially released two new patches for vTiger 5.4.
The security path is intended to address some vulnerabilities in vtiger and prevent the following types of attacks:
Local File Inclusion
Local File Deletion
SQL Injection
PHP Code Injection
Cross site scripting
Arbitrary File Upload
Authentication Bypass vulnerabilities(SOAP API’s)
If you haven’t modified vtiger source code you can download the patch and upload the files to your server. But if you have modified your vtiger or want to understand exactly what you are doing you can check this step by step diff file.
Besides the security update please apply the performance update that would improve your vtiger speed after the applying the security update. To download the performance patch click here. If you are looking for the diff file to apply this patch at code level you can click here
vTiger 5.4: Security and Performance Patch Release
CNTT
,
CRM
,
Open Source
Blogger Comment
Facebook Comment