SupportPal Security Advisory - December 2022

  1. Portal Home
  2. Announcements
  3. SupportPal Security Advisory - December 2022

Today we're releasing patched versions of SupportPal to resolve an authentication issue that allowed to bypass email verification. The issue was reported privately and there is no evidence to suggest it is known publicly.

 

We strongly recommend updating your SupportPal installation immediately.

As per our end of life (EOL) policy, we are releasing patches for versions 3.x and 4.x:

  • If you are running any 3.x version, you should upgrade to at least 3.7.2.
  • If you are running any 4.x version, you should upgrade to 4.2.4.

 

Download either version at our downloads area (login required).

 

The 4.2.4 release also includes other maintenance fixes.

  Print

Comments

  Add Comment

Confirm Submission

Please enter the text from the image in the box provided; this helps us to prevent spam.