| Summary | WEBGUI - Fix for XSS and other Web Vulnerabilities |
| Platform | Windows |
| Category | bugfix |
| Valid for | 6.2.x, 6.3.x, 6.4.x, 6.5.0.x |
| Requires | 6.2.0.11 - 6.4.0.9: 1461, 6.2.0.11 - 6.4.0.9: 1337 |
| Client Required Patch/es | |
| Supersedes | |
| Superseded by | |
| Affects | Server: Core |
| Last Updated | June 28, 2017 |
This patch fixes: * the Cross-Site Scripting (XSS) vulnerability on Core Admin * web vulnerabilities in WebGUI * vulnerable PHP version (Upgrade to 5.6.29) * vulnerable Apache version (Upgrade to 2.4.25) * vulnerable OpenSSL version (Upgrade to 1.0.2j)
Unpack the zip file anywhere on the machine to patch. Run install.exe to start installation. Once the patch has been installed, you may delete the unpacked directory. NOTE: The patch must be installed by a user with administrator rights.
Patch1482.zip