Jump to content

[IPS] IP.Board 3.1.x, 3.2.x, 3.3.x & 3.4.x Critical Security Update

Recommended Posts

Security Update: 27th December 2012

A security evaluation has revealed a critical security issue and we are releasing a critical security update today to patch this issue.


We are providing a patch for IP.Board versions 3.4, 3.3, 3.2, and 3.1. Version 3.1 is end of life for support but we are still providing the patch for the convenience of clients who have not yet upgraded. If you are running a version less than 3.1 you should upgrade to get this and other security enhancements.

Patching is very easy:

  1. Identify the version of IP.Board you are running.
  2. Download and unzip the appropriate patch file below that matches your version.
  3. Upload the contents of the zip to your IP.Board home directory

IP.Board 3.4.x
Attached File ipb34_dec27.zip   13.4K  139 downloads

IP.Board 3.3.x
Attached File ipb33_dec27.zip   13.4K  75 downloads

IP.Board 3.2.x
Attached File ipb32_dec27.zip   13.08K  19 downloads

IP.Board 3.1.x
Attached File ipb31_dec27.zip   12.63K  21 downloads


Please be advised that if you use IP.Converge, it has also been updated to resolve a similar security issue, and to ensure compatibility with the patches being released today for IP.Board. IP.Converge is no longer officially supported and is "use at your own risk". To patch your IP.Converge installation, simply download the full package from the following URL, unzip to your computer, and then upload the contents of the "upload" folder to your server, overwriting the existing files present.


IP.Converge Login Module

Please be advised that if you use IP.Converge, and you upload the updated IP.Converge package referenced above, you will also need to upload the following updated IP.Converge login module. Download the following patch, unzip to your local computer, and then upload the auth.php file to your server at admin/sources/loginauth/ipconverge/, overwriting the existing file.

Attached File ipconverge_login_module.zip   3.18K  8 downloads


  • When you apply the security update the bulletin in your AdminCP will still display. We keep the bulletin in place for at least a week after a security release.
  • Our main software packages accessed via the client area have already been updated with this security update.
  • If you are an IPS Hosting client your community will be automatically patched.

View the full article
Link to comment
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Create New...