Chat+ Security Vulnerability in 0.58.3 and below

Reply·Subscribe
Morocco
MoroccoAdvanced
422 posts
0
 

FYI - Just wanted to share with you this critical info which you can find at:
https://rocket.chat/2018/01/17/security-vulnerability-disclosure/

>> Security Vulnerability in 0.57.3, 0.58.3 and below

All users are advised to upgrade Rocket.Chat Server to 0.57.4, 0.58.4, 0.59.0 or greater.

Rocket.Chat Server version 0.58.3, 0.57.3 and prior versions are vulnerable to a NoSQL injection which can lead to an administrator account takeover.

The details of the vulnerability will be shared in a future update.  If you have any questions, concerns or require advice please contact security@rocket.chat or chat to us on https://open.rocket.chat/channel/support

Quote · 21 Jan 2018
AlexT
AlexTNavigator
6101 posts
0
 

Latest Chat+ server is based on Rocket.Chat 0.59.1, so it should be safe to use.

Rules → http://www.boonex.com/terms
Quote · 23 Jan 2018
Reply ›
 
 
Home
Features
Pricing
Hosting
Support
About
StartDemo
Below is the legacy version of the Boonex site, maintained for Dolphin.Pro 7.x support.
The new Dolphin solution is powered by UNA Community Management System.

Blogs

Dolphin.Pro News
BoonEx News
Our Journey
Social Software World
Community Voice

Help

Support Forums
Documentation
BoonEx at GitHub
Knowledge Base
Contact Support Team

Product

Dolphin.Pro Features
Live Demo & Sandbox
Download Packages
Pricing & Order
Contact Sales Team

Company

Contact Us
About BoonEx
Privacy Policy
Terms & Conditions
© BoonEx Pty Ltd