Geetings to the community
An important security issue was brought recently to our attention by Core Advisories Team
, which will also issue a public warning next week.
Using a specially crafted url a malicious user can acquire web server privileges on systems running efront. A patch
is already available, all 3.5.x users are strongly recommended to download and apply it