Tarih: 25 Nisan 2022
Kaynak: https://community.cyberpanel.net/t/change-logs/161
Alıntı
I am happy to announce that CyberPanel v2.3.1 has been released. This update brings tons of security and bug fixes to CyberPanel.
During this time weve also launched our new site and new community forums 1.
Right now CyberPanel is the only free control panel that is fully audited by RACK911 Labs for any security issues, team from RACK911 Labs is known for fixing security issues in web hosting industry. Apart from that weve brought some new features too:
You will now be able to see weather you are on latest commit from Version Management in CyberPanel
Root Level File Manager (Paid Feature)
Google Drive Backups Retention (Paid Feature)
Make Mautic 4.1.2 as default during installation
Weve worked really hard so that you can use CyberPanel in mult-user environment with peace of mind.
Security Fixes
Please update your CyberPanel to v2.3.1 as soon as possible.
security fix: CP-01: Installation improper permissions 1
CP-05: Command Line Tools Type Insecure Processes Risk Medium
CP-10: Admin Websites Suspend / Unsuspend 2
CP-11: Admin Packages Delete Package
CP-12: Admin Packages Modify Package
CP-13: Admin Back Up Create Back Up
CP-14: Admin Back Up Create Back Up
CP-16: Admin Back Up Start Transfer
security fix: CP-17: Admin Security CSF
security fix: CP-18: Users Create New User
security fix: CP-21: Websites Create Website 1
security fix: CP-22: Websites Modify Website
security fix: CP-24: Manage Website Domain Alias (Delete)
security fix: CP-26: Manage Website File Manager Upload
Security: Prevent leaking load average dat
Security: PyYAML dependency update
Security: Multiple CVE dependency update 1
resolve CyberPanel 2.1 - Remote Code Execution (RCE) (Authenticated) - Multiple webapps Exploit
securify fix: CP-29: Manage Website SMTP Hosts Verify
securityfix: CP-30: Manage Website Compose
security fix: CP-33: Manage Website Git 2
security fix: CP-36: DNS Add / Delete Records 1
bug fix: CP-17 1
CP-19: Additional Domains to Block
CP-21: Additional Security 1
Fix CVE-2021-32839
Bug Fixes
bug fix: avoid possible removal of directories
install acme.sh before main installation
Update cyberpanel.sh
bug fix: install 1
bug fix: cronjob
bug fix in backup creation 2
bug fix: wp staging 1
bug fix: custom ssl save 1
bug fix: deploy staging to production 1
bug fix: create wp staging
security fix: CP-19: Websites Create Website
bug fix: fetch status 1
bug fix: file manager 5
bug fix: dkim manager 1
Fix architecture detection 1
add vhost level cache root for openlitespeed 7
bug fix: continue backups if website is deleted from main CP 1
bug fix: during website creation 3
bug fix: backup creation
use website level user for restic backups
bug fix: incremental backups
disable sftp destination for incremental backups for time being
bug fix: delete database during inc backups
bug fix: see git file changes
bug fix: child domain records
fix: file creation user
bug fix: ssl
bug fix: cpanel importer
add confirm before converting to LiteSpeed Enterprise
remove not needed function calls
During this time weve also launched our new site and new community forums 1.
Right now CyberPanel is the only free control panel that is fully audited by RACK911 Labs for any security issues, team from RACK911 Labs is known for fixing security issues in web hosting industry. Apart from that weve brought some new features too:
You will now be able to see weather you are on latest commit from Version Management in CyberPanel
Root Level File Manager (Paid Feature)
Google Drive Backups Retention (Paid Feature)
Make Mautic 4.1.2 as default during installation
Weve worked really hard so that you can use CyberPanel in mult-user environment with peace of mind.
Security Fixes
Please update your CyberPanel to v2.3.1 as soon as possible.
security fix: CP-01: Installation improper permissions 1
CP-05: Command Line Tools Type Insecure Processes Risk Medium
CP-10: Admin Websites Suspend / Unsuspend 2
CP-11: Admin Packages Delete Package
CP-12: Admin Packages Modify Package
CP-13: Admin Back Up Create Back Up
CP-14: Admin Back Up Create Back Up
CP-16: Admin Back Up Start Transfer
security fix: CP-17: Admin Security CSF
security fix: CP-18: Users Create New User
security fix: CP-21: Websites Create Website 1
security fix: CP-22: Websites Modify Website
security fix: CP-24: Manage Website Domain Alias (Delete)
security fix: CP-26: Manage Website File Manager Upload
Security: Prevent leaking load average dat
Security: PyYAML dependency update
Security: Multiple CVE dependency update 1
resolve CyberPanel 2.1 - Remote Code Execution (RCE) (Authenticated) - Multiple webapps Exploit
securify fix: CP-29: Manage Website SMTP Hosts Verify
securityfix: CP-30: Manage Website Compose
security fix: CP-33: Manage Website Git 2
security fix: CP-36: DNS Add / Delete Records 1
bug fix: CP-17 1
CP-19: Additional Domains to Block
CP-21: Additional Security 1
Fix CVE-2021-32839
Bug Fixes
bug fix: avoid possible removal of directories
install acme.sh before main installation
Update cyberpanel.sh
bug fix: install 1
bug fix: cronjob
bug fix in backup creation 2
bug fix: wp staging 1
bug fix: custom ssl save 1
bug fix: deploy staging to production 1
bug fix: create wp staging
security fix: CP-19: Websites Create Website
bug fix: fetch status 1
bug fix: file manager 5
bug fix: dkim manager 1
Fix architecture detection 1
add vhost level cache root for openlitespeed 7
bug fix: continue backups if website is deleted from main CP 1
bug fix: during website creation 3
bug fix: backup creation
use website level user for restic backups
bug fix: incremental backups
disable sftp destination for incremental backups for time being
bug fix: delete database during inc backups
bug fix: see git file changes
bug fix: child domain records
fix: file creation user
bug fix: ssl
bug fix: cpanel importer
add confirm before converting to LiteSpeed Enterprise
remove not needed function calls
