A small patch to fix a security flaw has been released; it applies to versions 2.0.x and 2.5.x. It doesn't apply to any of the beta versions. Please use this patch to apply it in the Community version until 2.5.2 is release. Special thanks to our ProcessMaker Developer and our Community for finding and bringing the flaw to our attention.
Our clientes are being updated to version 220.127.116.11 which includes this patch.
Resources where the security issue was posted
Here we are including all the web URLs were the security issue was posted:
- http://packetstormsecurity.com/files/12 ... witterfeed