A security update for HostBill has just been released for all HostBill versions – please update your HostBill to the most recent version: 2025-03-17.

We’ve been notified by a customer about an XSS issue that potentially (depending on configuration) affects all HostBill versions since 2017 until the most recent release. 

Resolution:

To mitigate this issue please update your HostBill to the most recent release, which is version 2025-03-17 or higher, either manually or using the Auto-Update plugin.

If you cannot update at this time and use the affected version, you can apply a patch available in our client portal in Support -> Browse Downloads Library.