Security Fix in Softaculous 5.5.7 Disclosure

Softaculous 5.5.7 was released on 2nd October 2020 with a security fix which allowed Local Privilege Escalation using the Softaculous binary (CVE-2020-26886).

We did not disclose the details about the security fix to allow users to upgrade to the latest version of Softaculous. There was no public disclosure before October 31st 2020 and with the auto upgrade utility in Softaculous 98.5% of the users have successfully patched and are safe.

Please check if you are running Softaculous version higher than 5.5.7, if yes you are safe. If not please upgrade to the latest Softaculous version asap.

If you have any questions or are not sure if you are safe open a support ticket with us and we can help you out.

Softaculous Team

Leave a comment

Your email address will not be published. Required fields are marked *