Stay up to date with news around HumHub.
Also check out our community for more information about HumHub.
a year ago
Important Security Notice for HumHub versions 1.3.x:
A potential security vulnerability within an external dependency of HumHub named jQuery fileupload plugin was discovered. The vulnerability has been fixed with HumHub version 1.3.7. We highly recommend updating your installation to the latest version **as soon as possible** ([Update Guide](http://docs.humhub.org/admin-updating-automatic.html)). We also highly recommend checking whether other tools you are using may be affected by this jQuery fileupload issue. **This issue did not affect instances hosted on our servers.**
In order to provide you with an easy way to fix this and future issues, **without fully updating to a newer version**, the [AutoPatch module](https://www.humhub.org/en/marketplace/details?id=40 "AutoPatch module") will be available as of now:
* Checks for the existence of potential security vulnerabilities in your installation
* Downloads patches automatically, but patches need to be installed manually in the administration section (automatic updates will be available in the future)
We also want to use this opportunity to remind you of the [HumHub Security Guide](http://docs.humhub.org/admin-security.html "HumHub Security Guide") and the recommended [File and Folder Permissions](http://docs.humhub.org/admin-installation.html#file-permissions).