ISPConfig 3.1.10 Released – Security and bugfix update

What’s new in ISPConfig 3.1.10

This update fixes several XSS vulnerabilities that were found in ISPConfig. A valid ISPConfig login is required to exploit the XSS vulnerabilities. The release includes other bugfixes and some minor improvements as well. See changelog link below for details.


The software can be downloaded here:


Known Issues

Please take a look at the bug tracker:

BUG Reporting

Please report bugs to the ISPConfig bug tracking system:

Supported Linux Distributions

– Debian Etch (4.0) – Stretch (9.0) and Debian testing
– Ubuntu 7.10 – 17.10
– OpenSuSE 11 – 13.2
– CentOS 5.2 – 7
– Fedora 9 – 15


The installation instructions for ISPConfig can be found here:


To update existing ISPConfig 3 installations, run these commands in the shell:

cd /tmp
tar xvfz ISPConfig-3.1.10.tar.gz
cd ispconfig3_install/install
php -q update.php