{"id":659,"date":"2008-11-13T04:34:44","date_gmt":"2008-11-13T12:34:44","guid":{"rendered":"http:\/\/www.vtiger.com\/blogs\/2008\/11\/13\/vtiger-crm-504-security-patch-release\/"},"modified":"2008-11-13T04:34:44","modified_gmt":"2008-11-13T12:34:44","slug":"vtiger-crm-504-security-patch-release","status":"publish","type":"post","link":"https:\/\/two.vtiger.com\/blog\/archives\/vtiger-crm-504-security-patch-release\/","title":{"rendered":"vtiger CRM 5.0.4 Security Patch Release"},"content":{"rendered":"<p>We have released a security patch for 5.0.4 that fixes the following security issues along with some critical bugs reported by the community. More details can be found in the release notes VtigerCRM 5.0.4 SecurityPatch_ReleaseNotes.<\/p>\n<p>Security Issues:-<br \/>\n1. Local File Disclosure<br \/>\n2. Cross-Site Scripting<br \/>\n3. SQL injection Vulnerbility<br \/>\n4. Arbatory File Upload<\/p>\n<p>Trac Tickets:-<br \/>\n<a href=\"http:\/\/trac.vtiger.com\/cgi-bin\/trac.cgi\/ticket\/5235\">#5235<\/a>: Patch Apply: Timeout settings need change<br \/>\n<a href=\"http:\/\/trac.vtiger.com\/cgi-bin\/trac.cgi\/ticket\/5255\">#5255<\/a>: Cannot import more than 500 records<br \/>\n<a href=\"http:\/\/trac.vtiger.com\/cgi-bin\/trac.cgi\/ticket\/5307\">#5307:<\/a> Campaign Related info getting lost<br \/>\n<a href=\"http:\/\/trac.vtiger.com\/cgi-bin\/trac.cgi\/ticket\/5298\">#5298<\/a>: File attachment download gets corrupted<br \/>\n<a href=\"http:\/\/trac.vtiger.com\/cgi-bin\/trac.cgi\/ticket\/5294\">#5294<\/a>: Organization image upload issue<br \/>\n<a href=\"http:\/\/trac.vtiger.com\/cgi-bin\/trac.cgi\/ticket\/5231\">#<\/a><a href=\"http:\/\/trac.vtiger.com\/cgi-bin\/trac.cgi\/ticket\/5231\">5231<\/a>: Webmail qualify issue<br \/>\n<a href=\"http:\/\/trac.vtiger.com\/cgi-bin\/trac.cgi\/ticket\/5268\">#<\/a><a href=\"http:\/\/trac.vtiger.com\/cgi-bin\/trac.cgi\/ticket\/5268\">5268<\/a>: Homepage dashboard link showing incorrect data in list view<br \/>\n<a href=\"http:\/\/trac.vtiger.com\/cgi-bin\/trac.cgi\/ticket\/4847\">#4847<\/a>: Problem in selecting users\/groups\/profiles from the roles and groups edit view<br \/>\n<a href=\"http:\/\/trac.vtiger.com\/cgi-bin\/trac.cgi\/ticket\/5393\">#5393<\/a>: Not able to delete default profiles\/roles\/users<\/p>\n<p>We thank vtiger community for their support to detect the issues and help us resolve it. Special thank to Mark Piper, Fabian Fingerele, and Different Solutions.<\/p>\n<p><strong>Patch Download:<\/strong><br \/>\nThe 5.0.4 Security patch download is available here: [ <a href=\"http:\/\/downloads.sourceforge.net\/vtigercrm\/VtigerCRM504_Security_Patch.zip\">VtigerCRM5.0.4_SecurityPatch<\/a>]<\/p>\n<p><strong>NOTE:<\/strong> You will need to unpack the zip into your vtiger CRM folder. We recommend you to take a backup of your directory first before you unpack the patch.<\/p>\n<p>Regards,<br \/>\nAsha<br \/>\nVtiger Team<\/p>\n","protected":false},"excerpt":{"rendered":"<p>We have released a security patch for 5.0.4 that fixes the following security issues along with some critical bugs reported by the community. More details can be found in the release notes VtigerCRM 5.0.4 SecurityPatch_ReleaseNotes. Security Issues:- 1. Local File Disclosure 2. Cross-Site Scripting 3. SQL injection Vulnerbility 4. Arbatory File Upload Trac Tickets:- #5235:&hellip;&nbsp;<a href=\"https:\/\/two.vtiger.com\/blog\/archives\/vtiger-crm-504-security-patch-release\/\" class=\"\" rel=\"bookmark\">.<span class=\"screen-reader-text\">vtiger CRM 5.0.4 Security Patch Release<\/span><\/a><\/p>\n","protected":false},"author":17,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_eb_attr":"","neve_meta_sidebar":"","neve_meta_container":"","neve_meta_enable_content_width":"","neve_meta_content_width":0,"neve_meta_title_alignment":"","neve_meta_author_avatar":"","neve_post_elements_order":"","neve_meta_disable_header":"","neve_meta_disable_footer":"","neve_meta_disable_title":"","neve_meta_reading_time":"","_themeisle_gutenberg_block_has_review":false,"_ti_tpc_template_sync":false,"_ti_tpc_template_id":"","footnotes":""},"categories":[3],"tags":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v21.4 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>vtiger CRM 5.0.4 Security Patch Release - Vtiger CRM Blog - Latest CRM Topics, Tips, Insights and Updates<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/two.vtiger.com\/blog\/vtiger-crm-504-security-patch-release\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"vtiger CRM 5.0.4 Security Patch Release - Vtiger CRM Blog - Latest CRM Topics, Tips, Insights and Updates\" \/>\n<meta property=\"og:description\" content=\"We have released a security patch for 5.0.4 that fixes the following security issues along with some critical bugs reported by the community. More details can be found in the release notes VtigerCRM 5.0.4 SecurityPatch_ReleaseNotes. Security Issues:- 1. Local File Disclosure 2. Cross-Site Scripting 3. SQL injection Vulnerbility 4. Arbatory File Upload Trac Tickets:- #5235:&hellip;&nbsp;.vtiger CRM 5.0.4 Security Patch Release\" \/>\n<meta property=\"og:url\" content=\"https:\/\/two.vtiger.com\/blog\/vtiger-crm-504-security-patch-release\/\" \/>\n<meta property=\"og:site_name\" content=\"Vtiger CRM Blog - Latest CRM Topics, Tips, Insights and Updates\" \/>\n<meta property=\"og:image\" content=\"https:\/\/two.vtiger.com\/blog\/wp-content\/uploads\/2023\/02\/vtiger-logo-only.png\" \/>\n\t<meta property=\"og:image:width\" content=\"490\" \/>\n\t<meta property=\"og:image:height\" content=\"399\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"author\" content=\"Asha\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"vtiger CRM 5.0.4 Security Patch Release - Vtiger CRM Blog - Latest CRM Topics, Tips, Insights and Updates","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/two.vtiger.com\/blog\/vtiger-crm-504-security-patch-release\/","og_locale":"en_US","og_type":"article","og_title":"vtiger CRM 5.0.4 Security Patch Release - Vtiger CRM Blog - Latest CRM Topics, Tips, Insights and Updates","og_description":"We have released a security patch for 5.0.4 that fixes the following security issues along with some critical bugs reported by the community. More details can be found in the release notes VtigerCRM 5.0.4 SecurityPatch_ReleaseNotes. Security Issues:- 1. Local File Disclosure 2. Cross-Site Scripting 3. SQL injection Vulnerbility 4. Arbatory File Upload Trac Tickets:- #5235:&hellip;&nbsp;.vtiger CRM 5.0.4 Security Patch Release","og_url":"https:\/\/two.vtiger.com\/blog\/vtiger-crm-504-security-patch-release\/","og_site_name":"Vtiger CRM Blog - Latest CRM Topics, Tips, Insights and Updates","og_image":[{"width":490,"height":399,"url":"https:\/\/two.vtiger.com\/blog\/wp-content\/uploads\/2023\/02\/vtiger-logo-only.png","type":"image\/png"}],"author":"Asha","twitter_card":"summary_large_image","schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/two.vtiger.com\/blog\/vtiger-crm-504-security-patch-release\/#article","isPartOf":{"@id":"https:\/\/two.vtiger.com\/blog\/vtiger-crm-504-security-patch-release\/"},"author":{"name":"Asha","@id":"https:\/\/two.vtiger.com\/blog\/#\/schema\/person\/51e09ef5a1502db1a99400986ea204ce"},"headline":"vtiger CRM 5.0.4 Security Patch Release","dateModified":"2008-11-13T12:34:44+00:00","mainEntityOfPage":{"@id":"https:\/\/two.vtiger.com\/blog\/vtiger-crm-504-security-patch-release\/"},"wordCount":184,"commentCount":18,"publisher":{"@id":"https:\/\/two.vtiger.com\/blog\/#organization"},"articleSection":["All"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/two.vtiger.com\/blog\/vtiger-crm-504-security-patch-release\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/two.vtiger.com\/blog\/vtiger-crm-504-security-patch-release\/","url":"https:\/\/two.vtiger.com\/blog\/vtiger-crm-504-security-patch-release\/","name":"vtiger CRM 5.0.4 Security Patch Release - Vtiger CRM Blog - Latest CRM Topics, Tips, Insights and Updates","isPartOf":{"@id":"https:\/\/two.vtiger.com\/blog\/#website"},"dateModified":"2008-11-13T12:34:44+00:00","breadcrumb":{"@id":"https:\/\/two.vtiger.com\/blog\/vtiger-crm-504-security-patch-release\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/two.vtiger.com\/blog\/vtiger-crm-504-security-patch-release\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/two.vtiger.com\/blog\/vtiger-crm-504-security-patch-release\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/two.vtiger.com\/blog\/"},{"@type":"ListItem","position":2,"name":"vtiger CRM 5.0.4 Security Patch Release"}]},{"@type":"WebSite","@id":"https:\/\/two.vtiger.com\/blog\/#website","url":"https:\/\/two.vtiger.com\/blog\/","name":"Vtiger CRM Blog - Latest CRM Topics, Tips, Insights and Updates","description":"","publisher":{"@id":"https:\/\/two.vtiger.com\/blog\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/two.vtiger.com\/blog\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/two.vtiger.com\/blog\/#organization","name":"Vtiger CRM Blog - Latest CRM Topics, Tips, Insights and Updates","url":"https:\/\/two.vtiger.com\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/two.vtiger.com\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/two.vtiger.com\/blog\/wp-content\/uploads\/2023\/02\/vtiger-logo-only.png","contentUrl":"https:\/\/two.vtiger.com\/blog\/wp-content\/uploads\/2023\/02\/vtiger-logo-only.png","width":490,"height":399,"caption":"Vtiger CRM Blog - Latest CRM Topics, Tips, Insights and Updates"},"image":{"@id":"https:\/\/two.vtiger.com\/blog\/#\/schema\/logo\/image\/"}},{"@type":"Person","@id":"https:\/\/two.vtiger.com\/blog\/#\/schema\/person\/51e09ef5a1502db1a99400986ea204ce","name":"Asha","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/two.vtiger.com\/blog\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/ebe69e32e38761281f6bde9ac10b86f0?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/ebe69e32e38761281f6bde9ac10b86f0?s=96&d=mm&r=g","caption":"Asha"},"url":"https:\/\/two.vtiger.com\/blog\/author\/asha\/"}]}},"_links":{"self":[{"href":"https:\/\/two.vtiger.com\/blog\/wp-json\/wp\/v2\/posts\/659"}],"collection":[{"href":"https:\/\/two.vtiger.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/two.vtiger.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/two.vtiger.com\/blog\/wp-json\/wp\/v2\/users\/17"}],"replies":[{"embeddable":true,"href":"https:\/\/two.vtiger.com\/blog\/wp-json\/wp\/v2\/comments?post=659"}],"version-history":[{"count":0,"href":"https:\/\/two.vtiger.com\/blog\/wp-json\/wp\/v2\/posts\/659\/revisions"}],"wp:attachment":[{"href":"https:\/\/two.vtiger.com\/blog\/wp-json\/wp\/v2\/media?parent=659"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/two.vtiger.com\/blog\/wp-json\/wp\/v2\/categories?post=659"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/two.vtiger.com\/blog\/wp-json\/wp\/v2\/tags?post=659"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}