Softaculous 5.5.7 was released on 2nd October 2020 with a security fix which allowed Local Privilege Escalation using the Softaculous binary (CVE-2020-26886).

We did not disclose the details about the security fix to allow users to upgrade to the latest version of Softaculous. There was no public disclosure before October 31st 2020 and with the auto upgrade utility in Softaculous 98.5% of the users have successfully patched and are safe.

Please check if you are running Softaculous version higher than 5.5.7, if yes you are safe. If not please upgrade to the latest Softaculous version asap.

If you have any questions or are not sure if you are safe open a support ticket with us and we can help you out.

Regards,
Softaculous Team

Avatar of editorial staff

Editorial Staff

Rad Web Hosting is a leading provider of web hosting, Cloud VPS, and Dedicated Servers in Dallas, TX and Phoenix, AZ.

Leave a Reply

lg