ISPConfig 3.1.10 Released – Security and bugfix update

What’s new in ISPConfig 3.1.10

This update fixes several XSS vulnerabilities that were found in ISPConfig. A valid ISPConfig login is required to exploit the XSS vulnerabilities. The release includes other bugfixes and some minor improvements as well. See changelog link below for details.

Download

The software can be downloaded here:

http://www.ispconfig.org/downloads/ISPConfig-3.1.10.tar.gz

Changelog

https://git.ispconfig.org/ispconfig/ispconfig3/issues?assignee_id=&author_id=&label_name=&milestone_title=3.1.10&scope=all&sort=id_desc&state=closed

Known Issues

Please take a look at the bug tracker:

https://git.ispconfig.org/ispconfig/ispconfig3/issues

BUG Reporting

Please report bugs to the ISPConfig bug tracking system:

https://git.ispconfig.org/ispconfig/ispconfig3/issues

Supported Linux Distributions

– Debian Etch (4.0) – Stretch (9.0) and Debian testing
– Ubuntu 7.10 – 17.10
– OpenSuSE 11 – 13.2
– CentOS 5.2 – 7
– Fedora 9 – 15

Installation

The installation instructions for ISPConfig can be found here:

http://www.ispconfig.org/ispconfig-3/documentation/

Update

To update existing ISPConfig 3 installations, run these commands in the shell:

cd /tmp
wget http://www.ispconfig.org/downloads/ISPConfig-3.1.10.tar.gz
tar xvfz ISPConfig-3.1.10.tar.gz
cd ispconfig3_install/install
php -q update.php