The end of 2017 is rapidly approaching fast.
But before it’s all over and you begin your new year, I’d like to let you know how grateful we are to everyone involved in this little project.
We’ve had a great year together and we’re looking forward for what the next year has to bring.
So…thank you, thank you, thank you!
Happy holidays. Wish you a better and brighter new year.
Take good care.
P.S. Our team will be on holiday from December 22nd until January 3rd. See you in 2018!
Greetings fans of PHP Melody!
As more and more people use PHP Melody the better the software gets. Partly due to user feedback and partly due to code reviewers. Over the past few months we’ve received reports on how we can improve and strengthen our code. Several crucial security holes were patched in v2.7 thanks to reports made by such people.
Today, we’d like to extend our sincere gratitude and thanks to an independent security researcher, Paulos Yibelo, who reported vulnerabilities to Beyond Security’s SecuriTeam Secure Disclosure program. Thank you Mr. Yibelo for helping us and our customers keep their data safe.
We now invite you to log into your account and download the v2.7.3 update package. Updating from v2.7.2 to v2.7.3 is seamless. The update will not overwrite any changes to your layout or code base. Please note that you will not have to update your theme to any plugins after applying this update package. In addition to the security patch, we’ve included fixes for the Facebook and Dailymotion video sources.
As a precautionary measure, we’ve patched all recent releases since v2.7. So, if you’re updating from PHP Melody v2.6 to v2.7 your site will already be secured. All things considered, we still recommend updating all the way to v2.7.3.
If you have any questions or need assistance, our team is ready to help you.
Have a great week and stay safe!
Download v2.7.3 Update Buy PHP Melody v2.7.3
During recent development work we uncovered a security issue within our code base.
This week we received news of a critical vulnerabilities in PHP Melody. Issues include: SQL/code injection, PHPMailer vulnerability (see CVE-2017-5223) and a couple more.
To date, PHP Melody has been actively used on more than 29,000 separate websites in the past 9 years. Thankfully, we received no reports of sites being hacked via exploitable code in our video CMS. We’ve always patched vulnerabilities swiftly. In the past 9 years there have been only 4-5 occasions that promoted such releases.