This is a security patch release, it fixes a PHP Code Injection Vulnerability in the ISPConfig language file editor. The vulnerability requires that the attacker is correctly logged in as the ‘admin’ user (the account with superadmin privilege) in ISPConfig, so an attacker must know the administrator password or get access to an active admin … Continue reading ISPConfig 3.2.11p1 Released