Latest Updates
Mar
25
Welcome to HostPapa's Knowledgebase!
Posted by Sarah T on 25 March 2014 01:00 PM

By browsing through our extensive knowledgebase, you will find plenty of information to help you navigate your HostPapa account.

Here are some tips to get you started:

  • If you are looking for a specific topic, use the search box at the top
  • If you just feel like browsing, click on the language folders to the left
  • To change your default language, use the dropdown menu located at the top right of the page

Be sure to bookmark this site so that you can quickly find valuable information and tips whenever you need it!

-------------------------------------------------------

En parcourant notre vaste base de connaissances, vous y trouverez une pléthore d'informations qui faciliteront la navigation de votre compte HostPapa.

Voici quelques trucs et conseils pour débuter :

  • Si vous désirez effectuer des recherches sur un sujet particulier, utilisez l'outil de recherche qui vous est offert au haut de l'écran.
  • Si vous ne désirez que fureter, cliquez sur l'un des dossiers catégorisés par langue situés à gauche.
  • Pour modifier votre langue par défaut, utilisez le menu déroulant apparaissant dans le coin supérieur droit de la page.

Prenez soin de mettre en signet ce site afin de pouvoir aisément trouver des informations et conseils judicieux dès que le besoin s'en fera sentir!

-------------------------------------------------------

Wenn Sie einen Blick in unsere umfangreiche Knowledgebase werfen, finden Sie viele Informationen, die Ihnen mit Ihrem HostPapa-Konto weiterhelfen.

Hier sind einige Tipps zum Start:

  • Wenn Sie nach einem bestimmten Thema suchen, nutzen Sie die Suchbox oben auf der Seite.
  • Wenn Sie einfach nur ein wenig blätter wollen, klicken Sie auf die Ordner mit der Sprachauswahl links auf der Seite.
  • Um Ihre voreingestellte Sprache zu ändern, nutzen Sie das Dropdown-Menü oben rechts auf der Seite.

Speichern Sie diese Seite als Lesezeichen, sodass Sie wertvolle Informationen und Tipps schnell finden, wenn Sie diese benötigen.

-------------------------------------------------------

Consultando nuestra amplia base de conocimiento, encontrará mucha información para ayudarle a navegar por su cuenta de HostPapa.

Aquí tiene algunos consejos para que comience:

  • Si está buscando un tema específico, use el recuadro de búsqueda de la parte superior
  • Si tan solo quiere navegar, haga clic en las carpetas de idiomas de la izquierda
  • Para cambiar su página predeterminada, use el menú desplegable ubicado en la parte superior derecha de la página

¡Asegúrese de añadir a favoritos este sitio para que pueda encontrar rápidamente información y consejos valiosos cuando lo necesite!


Read more »



Mar
25
WHMCS Security Advisory TSR-2014-0002
Posted by Sarah T on 25 March 2014 12:55 PM

=======================================

WHMCS Security Advisory TSR-2014-0002 
http://blog.whmcs.com/?t=87326 

======================================= 
WHMCS has released new updates for all supported versions of WHMCS. These updates include changes that address security concerns within the WHMCS product. 

WHMCS has rated these updates as having a moderate to trivial security impact. 

Information on security ratings can be found at http://docs.whmcs.com/Security_Levels 

========= Releases =========

Please update your installation to one of the following versions: 
v5.3.6 
v5.2.17 

== Patches = 
Incremental patches can be downloaded by following the links below. 

These patch sets contain only the files that have changed between the previous release and this update. The previous release version that these patch sets are designed for is clearly indicated as the first and smaller number. 

5.3.5 --> 5.3.6 http://go.whmcs.com/378/v535_incremental_to_v536_patch 
MD5 Checksum: 42dd3cd44e1fc9308e9b7ecb0a3b956d 

5.2.16 --> 5.2.17 http://go.whmcs.com/374/v5216_incremental_to_v5217_patch 
MD5 Checksum: 542b2eb940066317d3190e2cf9986ee0 

Need a patch for an older version? Visit our downloads page: 
http://download.whmcs.com/ 

To apply a patch set release, download the files as indicated above. Then 
follow the upgrade instructions for a "Patch Set" which can be found at 
http://docs.whmcs.com/Upgrading#For_a_Patch_Set 


== Full Release = 
A full release distribution contains all the files of a WHMCS product installation. It can be used to both perform a new installation or update an existing one (regardless of previous version). 

5.3.6 Full Version - Download Now http://download.whmcs.com/ 
MD5 Checksum: 4a136a87e2c360350daa2cf7d8b7a048 

To apply a full release, download the release from the URL above. Then follow the upgrade instructions for a "Full Release Version" which can be found at http://docs.whmcs.com/Upgrading#For_a_Full_Release_Version 


======================================== Security Issue Information ======================================== 


The security changes in these releases address 11 privately reported issues through our security bounty program, and 1 issue discovered internally by the WHMCS Development Team. The issues addressed are rated as having Moderate to Trivial security impact. 

Once sufficient time has passed to allow WHMCS customers to update their installed software, WHMCS will release additional information regarding the nature of the security issues. 

=========================== Maintenance Issue Information =========================== 

This release also provides resolution for a number of maintenance issues. For full details please refer to the change logs for each respective version: 

V5.3.6 - http://changelog.whmcs.com/WHMCS_V5.3 
V5.2.17 - http://changelog.whmcs.com/WHMCS_V5.2 

All published and supported versions of WHMCS prior to 5.3.6 are affected by one or more of these maintenance and security issues. 

=========================== 

WHMCS Limited www.whmcs.com 

- Members Area: https://www.whmcs.com/members/ 
- Support: http://www.whmcs.com/support/ 
- Documentation: http://docs.whmcs.com/ 
- Community Forums: http://forums.whmcs.com/ 


Read more »



Mar
22

HostPapa customers: To protect your website against vulnerabilities (a target for hackers), please ensure that you keep your WordPress and Joomla plugins up to date at all times. 

More info:

Updating your website tools

Tips on how to improve your website security

WordPress security

------------------------------------

RAPPEL IMPORTANT aux clients HostPapa : Veuillez maintenir vos plugiciels WordPress et Joomla à jour.

Clients HostPapa : Afin de protéger votre site web des vulnérabilités (une manne pour les pirates), veuillez vous assurer de maintenir vos plugiciels WordPress et Joomla à jour en tout temps.

Plus d’info :

Mise à jour de vos outils de site web

Conseils sur la façon d'améliorer votre sécurité web

Sécurité de WordPress

------------------------------------

RECORDATORIO IMPORTANTE para clientes de HostPapa: Por favor, tenga actualizados sus plugins de WordPress y Joomla.

Clientes de HostPapa: Para proteger su sitio web contra vulnerabilidades (ser objetivo para hackers), por favor, asegúrese de tener actualizados sus plugins de WordPress y Joomla en todo momento.

Más información:

Actualización de las herramientas de su sitio web

Mejore su seguridad con estos consejos

Seguridad de WordPress

------------------------------------

WICHTIGE ERINNERUNG für HostPapa-Kunden: Bitte halten Sie Ihre WordPress- und Joomla-Plug-ins aktuell.

HostPapa-Kunden: Um Ihre Website zu schützen und sie nicht zum Ziel von Hackern werden zu lassen, sorgen Sie bitte dafür, dass Ihre WordPress- und Joomla-Plug-ins jederzeit aktuell sind.

Weitere Informationen:

Aktualisieren der Werkzeuge für Ihre Webseite

ipps zum Verbessern der Sicherheit Ihrer Webseite


Read more »



Jan
22
WHMCS Security Advisory TSR-2014-0001
Posted by Sarah T on 22 January 2014 11:38 AM

========================================
WHMCS Security Advisory TSR-2014-0001
http://blog.whmcs.com/?t=84387
========================================

WHMCS has released a new update for all supported versions of WHMCS. These
updates contain changes that address security concerns within the WHMCS
product.

We recommend you update your WHMCS installation(s) as soon as possible.

WHMCS has rated this update as having an important security impact. Information
on security ratings can be found at http://docs.whmcs.com/Security_Levels

==========
Releases
==========

Please update your installation to the one of the following versions:

v5.2.16

== Patches ==

Incremental patches can be downloaded by following the provided links below.
These patch sets contain only the files that have changed between the previous
release and this update. The previous release version that these patch sets are
designed for is clearly indicated as the first and smaller number.

The following incremental patches are available for direct download:

5.2.15 --> 5.2.16 
http://go.whmcs.com/298/v5215_incremental_to_v5216_patch
MD5 Checksum: 706e352796e91c4f27a40470c83125b8

To apply a patch set release, download the files as indicated above. Then follow
the upgrade instructions for a "Patch Set" which can be found at
http://docs.whmcs.com/Upgrading#For_a_Patch_Set

== Full Release ==

A full release distribution contains all the files of a WHMCS product
installation. It can be used to perform a new install or update an existing
installation (regardless of previous version).

5.2.16 - Downloadable from the WHMCS Members Area https://www.whmcs.com/members
MD5 Checksum: fe2a804ade2bfd69d4107ff8aa1b718b


To apply a full release, download the files as indicated above. Then follow the
upgrade instructions for a "Full Release Version" which can be found
at http://docs.whmcs.com/Upgrading#For_a_Full_Release_Version

=========================================
  Important Maintenance Issue Information
=========================================

This Advisory provides resolution for the following important maintenance
issues:

  Case #2557 - 2Checkout Gateway: Update to currency variable
  Case #2623 - Fix calculations of promotions when more than 50% off
  Case #2739 - Add TLD Specific Fields required for .CN domain registrations
  Case #2874 - Authorize.net Echeck: Fix capture function behaving incorrectly
  Case #3019 - Refine internal criteria for bulk domain lookup
  Case #3030 - Resolve SQL error in Income by Product Report
  Case #3086 - Nominet Registrar: Update to Contact Registration Logic for Individuals
  Case #3116 - Required Custom Fields not validating correctly when using API
  Case #3360 - Resolved issue where one time promotions could be treated as recurring
  Case #3360 - Disable Recur For input box when Recurring is disabled
  Case #3361 - Fix time limited recurring promotions calculating incorrectly
  Case #3388 - Fix Invalid Token Error when applying credit in Original and Portal Client Templates
  Case #3414 - Payflow Pro: Update to store PayFlow Reference in PayFlow Mode
  Case #3617 - Do not CC password reset emails to sub-accounts
  Case #3740 - ProtX VSP Form: Pass correct callback values to debug log
  Case #3801 - Resolved PDF Quotes missing clients name/address
  Case #3802 - Make a quantity of zero remove item from the cart
  Case #3809 - Regular Expression Custom Field Validation failing on single quotes
  Case #3811 - Resolve Invalid Token error when deleting recurring calendar entry
  Case #3814 - Improvements to IPv6 detection and validation logic
  Case #3862 - NameCheap Registrar: Fix incorrect function name call
  Case #3864 - Authorize.net Echeck: Fix storage of bank account details
  Case #3893 - Enom SSL Module: Fix Province is Required Error Message

=========================================
  Security Issue Information
=========================================

This Advisory provides resolution for several security issues, all of which were
either reported privately via the Security Bounty Program or found internally by
the WHMCS Development team as part of the regular on-going internal security
audits.

There is no reason to believe that any of these vulnerabilities are known to the
public. As such, WHMCS will only release limited information about the
vulnerabilities at this time.

Once sufficient time has passed, WHMCS will release additional information about
the nature of the security issues.

  Case #3637 - Improve Access Controls in Project Management Addon
  Case #3782 - Improve Access Controls in Tickets
  Case #3783 - Improve Access Controls in Invoices
  Case #3784 - Resolve Admin Area SQL Injection Vulnerability
  Case #3839 - Resolve Potential XSS Vulnerability
  Case #3841 - Resolve Potential XSS Vulnerability
  Case #3842 - Resolve Potential XSS Vulnerability
  Case #3843 - Resolve Potential XSS Vulnerability
  Case #3846 - Improve Access Controls in Tickets
  Case #3922 - PayPal Express Checkout Improve Validation
  Case #3931 - Potential header injection via whois lookups
  Case #3932 - Improve sanitization for whois query

All supported versions of WHMCS are affected by one or more of these maintenance
and security issues.

For information regarding our Long Term Support Policy, read our documentation
here:
http://docs.whmcs.com/Long_Term_Support

=========================================

WHMCS Limited
www.whmcs.com

- Members Area: https://www.whmcs.com/members/
- Support: http://www.whmcs.com/support/
- Documentation: http://docs.whmcs.com/
- Community Forums: http://forums.whmcs.com/


Read more »



Dec
27
WHMCS Security Advisory TSR-2013-010
Posted by Janis P on 27 December 2013 08:42 PM

NOTE: You may download the latest update here: 

http://hostpapasupport.com/index.php?/Knowledgebase/Article/View/2388/81/whmcs-security-update-dec-27-2013

========================================
WHMCS Security Advisory TSR-2013-010
http://blog.whmcs.com/?t=83303
========================================

WHMCS has released a new update for all supported versions of WHMCS. This update
contains a change that addresses a specific security concern within the WHMCS
product.

We strongly encourage you to update your WHMCS installations as soon as
possible.

WHMCS has rated this update as having an important security impact. Information
on security ratings can be found at http://docs.whmcs.com/Security_Levels

==========
 Releases
==========
Please update your installation to the following version:
  v5.2.15

== Patches ==

Incremental patches can be downloaded by following the provided links below.
These patch sets contain only the files that have changed between the previous
release and this update. The previous release version that these patch sets are
designed for is clearly indicated as the first and smaller number.

Do not attempt to apply an incremental patch set to an installation that is
running a different version than the indicated version. Doing so will result in
a "Down for Maintenance" message and require you to use the full
release to complete the upgrade.

Incremental patches do not require any update process. Simply apply the changed
files to the existing WHMCS installation.

The following incremental patches are available for direct download:

  5.2.14 --> 5.2.15 Patch
http://go.whmcs.com/290/v5214_incremental_to_v5215_patch
  MD5 Checksum: 709126303a0296ea41e6984c84aa42fa

To apply a patch set release, download the files as indicated above. Then follow
the upgrade instructions for a "Patch Set" which can be found at
http://docs.whmcs.com/Upgrading#For_a_Patch_Set

== Full Release ==

A full release distribution contains all the files of a WHMCS product
installation. It can be used to perform a new install or update an existing
installation (regardless of previous version).

The latest full release can always be downloaded from our members area at
https://www.whmcs.com/members

  5.2.15 Full Version - Downloadable from the WHMCS Members Area
  MD5 Checksum: d990f802db28c28d6d2fc003c8f339eb

To apply a full release, download the files as indicated above. Then follow the
upgrade instructions for a "Full Release Version" which can be found
at http://docs.whmcs.com/Upgrading#For_a_Full_Release_Version

=========================================
 Important Maintenance Issue Information
=========================================

This release also provides resolution for the following maintenance issues:

  Case #3706 - Some graphs failing after recent Google Graph API Update
  Case #3711 - CSV Export content should not contain HTML entities
  Case #3726 - PDF Line Items failing to output some specific characters
  Case #3727 - Admin password reset process failing to send new password email
  Case #3738 - Sub-account password field's default text must be removed on
focus/click events

============================
 Security Issue Information
============================

This Advisory provides resolution for a single security issue which was publicly
disclosed. Specific information regarding that issue can be found below.

== Case #3785 ==
SQL Injection via Admin Credit Routines

=== Severity Level ===
Important

=== Description ===
An attacker who can function as an authenticated admin user with the ability to
apply credits to an invoice can, using specially crafted input, cause the credit
routines to execute arbitrary SQL commands if the target user has a credit
balance known to the attacker.

Due to the many prerequisites necessary to successfully navigate this vector, a
security impact level has been assessed as "Important". Information on
security ratings can be found at http://docs.whmcs.com/Security_Levels

=== Resolution ===
Download and apply the appropriate software updates to protect against these
vulnerabilities; information about software update releases is provided in the
"Releases" section of this Advisory.

============================

All published and supported versions of WHMCS prior to 5.2.15 are affected by
one or more of these maintenance and security issues.

For information regarding our Long Term Support Policy, read our documentation
here:
http://docs.whmcs.com/Long_Term_Support

============================

WHMCS Limited
www.whmcs.com

- Members Area: https://www.whmcs.com/members/
- Support: http://www.whmcs.com/support/
- Documentation: http://docs.whmcs.com/
- Community Forums: http://forums.whmcs.com/


Read more »