We are releasing a security patch for SocialEngine PHP to address a vulnerability reported to us. As this is a security release, we strongly recommend that everyone deploy it immediately. This vulnerability impacts all versions of SocialEngine PHP.

Instructions for how to get the patch and install it are in our Learning Center tutorial:

Installing security patch 6.4.8

A changelog is not available due to the nature of this vulnerability.

As always we highly encourage all users to do a complete backup of both files and database before uploading files. Please have the backup performed by your host or a developer if you’re not comfortable performing it yourself. 

We truly appreciate the client who informed us via a support ticket about this vulnerability. For any questions about this vulnerability, please contact our support team by logging into the client dashboard and opening a ticket.

With Great Appreciation,
The SocialEngine Team

This post was edited by socialenginestaff at October 4, 2023 12:06 PM EDT

Please note that we have updated the security patch. Please install patch 6.4.8 as our patch 647 had issues in admin.