Today we're releasing patches for SupportPal and the WHMCS integration to resolve several persistent XSS vulnerabilities. We strongly recommend updating your installation immediately.
As we currently do not have a formal end of life (EOL) policy, out of courtesy we are releasing patched versions of all actively used versions of SupportPal. We plan to announce an EOL policy in the coming weeks, so would recommend planning to upgrade to a more recent version of SupportPal soon if you are currently on an older version.
Once sufficient time has passed to allow customers to patch their installations, we will provide additional information regarding the nature of the vulnerabilities.
To upgrade, re-download the correct release at our downloads area
(login required) matching your installed version and then followhttps://docs.supportpal.com/current/Upgrade+Guide#MinorVersions
WHMCS Integration Release
To upgrade, download the release at our downloads area
(login required) and then followhttps://docs.supportpal.com/current/WHMCS+Integration#UpgradeGuide