Within last few hours we’ve been notified about potential LFD security threat that affects HostBill installations, caused by one of used libraries.
Although its severity really depends on server configuration we cannot leave our users at risk – we take security very seriously.

Download patch from here: http://hostbillapp.com/clientarea/patches/hostbill_patch3.8.0_3426.zip (for version 3.8).

Patching process is simple – extract archive contents in main HostBill directory, no db updates/install is required.

HostBill 3.8.0 archive available in our client area has also been patched, please upgrade to latest version if you’re using < 3.8