Show Posts
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
31
Updates / Re: Update PHP-FPM and his selector to the latest and stable PHP v7.4.4 for CWP PRO!
« on: March 22, 2020, 05:49:22 PM »like ioncube and etc.
Hi "Sandeep" and thanks for the support.
32
Updates / Re: Update PHP-FPM and his selector to the latest and stable PHP v7.4.4 for CWP PRO!
« on: March 21, 2020, 03:08:55 AM »we'll release it after all addon extensions are out of beta and released stable version for php 7.4
Hi "Sandeep" and thank in advance for the support.
You can tell us which addons extensions it is so we can get an idea of the times by following the updates of these addons extensions ?
Thanks.
33
Updates / Update PHP-FPM and his selector to latest and stable PHP v7.3.16 for CWP PRO!
« on: March 20, 2020, 08:00:01 PM »
Hi,
First of all i wish to congratulate all the programmers of both CWP (Centos Web Panel) and CWP (Centos Web Panel) PRO for the excellent work they do and for the excellent product they have created, truly excellent from all points of view.
Congratulations also for the new and beautiful official website of CWP and CWP PRO https://control-webpanel.com/
Having said that, i ask you to consider from your next CWP (Centos Web Panel) PRO release,
updating PHP-FPM to the latest and stable version of PHP 7.3.16 which was released on 19 March, 2020.
I know you are always very busy developing CWP but i hope you can consider this suggestion of mine which i believe would be appreciated by all users of CWP (Centos Web Panel) PRO !
Thanks in advance for the support.
First of all i wish to congratulate all the programmers of both CWP (Centos Web Panel) and CWP (Centos Web Panel) PRO for the excellent work they do and for the excellent product they have created, truly excellent from all points of view.
Congratulations also for the new and beautiful official website of CWP and CWP PRO https://control-webpanel.com/
Having said that, i ask you to consider from your next CWP (Centos Web Panel) PRO release,
updating PHP-FPM to the latest and stable version of PHP 7.3.16 which was released on 19 March, 2020.
I know you are always very busy developing CWP but i hope you can consider this suggestion of mine which i believe would be appreciated by all users of CWP (Centos Web Panel) PRO !
Thanks in advance for the support.
34
Updates / Update PHP-FPM and his selector to the latest and stable PHP v7.4.4 for CWP PRO!
« on: March 20, 2020, 07:57:20 PM »
Hi,
First of all i wish to congratulate all the programmers of both CWP (Centos Web Panel) and CWP (Centos Web Panel) PRO for the excellent work they do and for the excellent product they have created, truly excellent from all points of view.
Congratulations also for the new and beautiful official website of CWP and CWP PRO https://control-webpanel.com/
Having said that, i ask you to consider from your next CWP (Centos Web Panel) PRO release,
updating PHP-FPM to the latest and stable version of PHP 7.4.4 which was released on 19 March, 2020.
Also consider that the first stable release of PHP v7.4.0 has been released on 28 November 2019 so almost about 4 months ago !
I know you are always very busy developing CWP but i hope you can consider this suggestion of mine which i believe would be appreciated by all users of CWP (Centos Web Panel) PRO !
Thanks in advance for the support.
First of all i wish to congratulate all the programmers of both CWP (Centos Web Panel) and CWP (Centos Web Panel) PRO for the excellent work they do and for the excellent product they have created, truly excellent from all points of view.
Congratulations also for the new and beautiful official website of CWP and CWP PRO https://control-webpanel.com/
Having said that, i ask you to consider from your next CWP (Centos Web Panel) PRO release,
updating PHP-FPM to the latest and stable version of PHP 7.4.4 which was released on 19 March, 2020.
Also consider that the first stable release of PHP v7.4.0 has been released on 28 November 2019 so almost about 4 months ago !
I know you are always very busy developing CWP but i hope you can consider this suggestion of mine which i believe would be appreciated by all users of CWP (Centos Web Panel) PRO !
Thanks in advance for the support.
35
Updates / Update obsolete phpMyAdmin v4.7.9 to latest phpMyAdmin v5.0.1 for CWP & CWP PRO!
« on: March 20, 2020, 02:44:11 AM »
Hi,
First of all i wish to congratulate all the programmers of both CWP (Centos Web Panel) and CWP (Centos Web Panel) PRO for the excellent work they do and for the excellent product they have created, truly excellent from all points of view.
Congratulations also for the new and beautiful official website of CWP and CWP PRO https://control-webpanel.com/
Having said that, i ask you to consider from your next CWP (Centos Web Panel) and CWP (Centos Web Panel) PRO release,
updating phpMyAdmin to the latest version of phpMyAdmin v5.0.1 which was released on 08 January, 2020.
If you use this command sh /scripts/mysql_phpmyadmin_update the result is that an obsolete version of phpMyAdmin is installed for CWP (Centos Web Panel) and CWP (Centos Web Panel) PRO which is phpMyAdmin v4.7.9 which was released on 05 March, 2018.
NOTE FROM PHPMYADMIN DEVELOPER:
This is a reminder that phpMyAdmin 4.9.3 is in the long-term support phase where it will only get important security fixes and critical bug fixes. Users are suggested to migrate to version 5.0.
This is the official changelog link for phpMyAdmin v5.0.1: https://www.phpmyadmin.net/files/5.0.1/
Welcome to the release of phpMyAdmin version 5.0.1. This is fixes an important security flaw as well as containing several other bug fixes.
The two most notable fixes:
* Issue #15724 regarding two-factor authentication
* PMASA-2020-1 which is an SQL injection vulnerability in the user accounts page
There are several other bugs fixes, please see the ChangeLog file included with this release for full details.
Known shortcomings:
Due to changes in the MySQL authentication method, PHP versions prior to 7.4 are unable to authenticate to a MySQL 8.0 or newer server (our tests show the problem actually began with MySQL 8.0.11). This relates to a PHP bug https://bugs.php.net/bug.php?id=76243. There is a workaround, that is to set your user account to use the current-style password hash method, mysql_native_password. This unfortunate lack of coordination has caused the incompatibility to affect all PHP applications, not just phpMyAdmin. For more details, you can see our bug tracker item at https://github.com/phpmyadmin/phpmyadmin/issues/14220. We suggest upgrading your PHP installation to take advantage of the authentication methods.
Downloads are available now at https://phpmyadmin.net/downloads/
For the phpMyAdmin team,
Isaac
This is the official changelog link for phpMyAdmin v5.0.0: https://www.phpmyadmin.net/files/5.0.0/
Welcome to the release of phpMyAdmin version 5.0.0.
This release includes many new features and improvements from the 4.9 series. We expect to maintain version 4 in a security capacity
to support users with older PHP installations. For full details about supported versions and end of life dates, see the "Supported versions"
grid at .
With this release, we are removing support of old PHP versions (5.5, 5.6, 7.0, and HHVM). These versions are outdated and are no longer supported by the PHP team.
Version 5.0 includes many coding improvements that modernize the interface. Many of these changes are transparent to users, but make the code easier to maintain.
Much of this refactoring work is completed by our contract developer, Maurício Meneghini Fauth. We always consider applications for new (paid) contract developers,
see for program details.
Some of the changes and new features include:
- Enable columns names by default for CSV exports
- Add Metro theme
- Automatically add the index when creating an auto increment column
- Improvements to exporting views
- Prompt the user for confirmation before running an UPDATE query with no WHERE clause
- Improvements to how errors are show to the user (including allowing easier copying of the error text to the clipboard)
- Added keystrokes to clear the line (ctrl+l) and clear the entire console window (ctrl+u)
- Use charset 'windows-1252' when export format is MS Excel
There are several more changes, please refer to the ChangeLog file included with the release for full details.
Known shortcomings:
Due to changes in the MySQL authentication method, PHP versions prior to 7.4 are unable to authenticate to a MySQL 8.0 or newer server (our tests show the problem actually began with MySQL 8.0.11). This relates to a PHP bug https://bugs.php.net/bug.php?id=76243. There is a workaround, that is to set your user account to use the current-style password hash method, mysql_native_password. This unfortunate lack of coordination has caused the incompatibility to affect all PHP applications, not just phpMyAdmin. For more details, you can see our bug tracker item at https://github.com/phpmyadmin/phpmyadmin/issues/14220. We suggest upgrading your PHP installation to take advantage of the authentication methods.
Downloads are available now at https://phpmyadmin.net/downloads/
Our work would not be possible without the donations of our generous sponsor, and this release in particular is brought to you thanks to the hard work of our Google Summer of Code students and many other contributors.
For the phpMyAdmin team,
Isaac
This is the official changelog link for phpMyAdmin v4.9.4: https://www.phpmyadmin.net/files/4.9.4/
Welcome to the release of phpMyAdmin version 4.9.4. This is a security release and also contains a fix for a problem with two-factor authentication
that was introduced in version 4.9.3.
Changes this version:
- Issue #15724 regarding two-factor authentication
- PMASA-2020-1 which is an SQL injection vulnerability in the user accounts page
This is a reminder that phpMyAdmin 4.9.3 is in the long-term support phase where it will only get important security fixes and critical bug fixes. Users are suggested to migrate to version 5.0.
Downloads are available now at https://phpmyadmin.net/downloads/
For the phpMyAdmin team,
Isaac
This is the official changelog link for phpMyAdmin v4.9.3: https://www.phpmyadmin.net/files/4.9.3/
Welcome to phpMyAdmin 4.9.3, a routine bugfix release.
This is planned as the final bugfix release of phpMyAdmin version 4. Version 4 works with PHP versions 5.5 through (at least) 7.4,
and MySQL versions 5.5 and newer (and the corresponding MariaDB versions). Version 5 will require PHP 7.1 or newer, but
we plan to maintain security fixes for version 4 as part of our LTS program. For end of life details and supported
versions, please see the "Supported versions" grid at .
This release includes fixes for many bugs, including:
- Several PHP notices and warnings including "Undefined index table_create_time,"
a notice about error_reporting() being disabled for security reasons, and several Undefined Index errors.
- Support CloudFront-Forwarded-Proto header for Amazon CloudFront proxy
- Early compatibility with development versions of PHP 8
- Fix replication actions (start, stop, etc)
There are many, many more bug fixes thanks to the efforts of our developers and other contributors.
For full details, you can see the ChangeLog file included with this release.
The phpMyAdmin team
This is the official changelog link for phpMyAdmin v4.9.2: https://www.phpmyadmin.net/files/4.9.2/
Welcome to phpMyAdmin 4.9.2, a bugfix release that also contains a security fix.
This security fix is part of an ongoing effort to improve the security of the Designer feature.
There is also an improvement for how we sanitize Git version information shown on the home page, thanks to Ali Hubail.
This release includes fixes for many bugs, including:
- Fixes for the "Failed to set session cookie" error which relates to the cookie name. In some cases, data stored in the cookie (such as the previously-used user account) may not be loaded from a previous phpMyAdmin cookie the first time you run version 4.9.2
- Fix for Advisor with MySQL 8.0.3 and newer
- Fix PHP deprecation errors
- Fix a situation where exporting users after a delete query could remove users
- Fix incorrect "You do not have privileges to manipulate with the users!" warning
- Fix copying a database's privileges and several other problems moving columns with MariaDB
- Fix for phpMyAdmin not selecting all the values when using shift-click to select during Export
There are many, many more bug fixes thanks to the efforts of our developers and other contributors.
The phpMyAdmin team
This is the official changelog link for phpMyAdmin v4.9.1: https://www.phpmyadmin.net/files/4.9.1/
Welcome to phpMyAdmin 4.9.1, a bugfix release.
This is a regularly-schedule bugfix release that also includes some security hardening measures.
We wish to point out that this also includes a routine fix for an issue that has been reported as CVE-2019-12922. The fix for this has been in our release queue to be part of this release, however it is the opinion of the team that the reported attack vector did not justify a separate release.
This release includes fixes for many bugs, including:
- Editing columns with CURRENT_TIMESTAMP for MySQL versions 8.0.13 and newer
- Compatibility issues with PHP 8
- Export of GIS visualization
- Enhanced descriptions for several collation types
- Creating a user with a single quote in the password string
- Unexpected quotes during import and export on text fields
- Improvements to adding new tables to Designer
- Fix an issue where an authenticated user could trigger heavy traffic between the database server and web server
- Fix a weakness where an attacker, under certain conditions, working at the same time as an administrator is using the setup script, could delete a server from the setup script
There are many, many more bug fixes thanks to the efforts of our developers, Google Summer of Code applicants, and other contributors.
The phpMyAdmin team
This is the official changelog link for phpMyAdmin v4.9.0.1: https://www.phpmyadmin.net/files/4.9.0.1/
Welcome to phpMyAdmin 4.9.0.1, a bugfix release that includes important security fixes.
This release fixes two security vulnerabilities:
* PMASA-2019-3 is an SQL injection flaw in the Designer feature
* PMASA-2019-4 is a CSRF attack that's possible through the 'cookie' login form
Upgrading is highly recommended for all users. Using the 'http' auth_type instead of 'cookie' can mitigate the CSRF attack.
The solution for the CSRF attack does remove the former functionality to log in directly through URL parameters (as mentioned in FAQ 4.8, such as https://example.com/phpmyadmin/?pma_username=root&password=foo). Such behavior was discouraged and is now removed. Other query parameters work as expected; only pma_username and pma_password have been removed.
This release also includes fixes for many bugs, including:
- Several issues with SYSTEM VERSIONING tables
- Fixed json encode error in export
- Fixed JavaScript events not activating on input (sql bookmark issue)
- Show Designer combo boxes when adding a constraint
- Fix edit view
- Fixed invalid default value for bit field
- Fix several errors relating to GIS data types
- Fixed javascript error PMA_messages is not defined
- Fixed import XML data with leading zeros
- Fixed php notice, added support for 'DELETE HISTORY' table privilege (MariaDB >= 10.3.4)
- Fixed MySQL 8.0.0 issues with GIS display
- Fixed "Server charset" in "Database server" tab showing wrong information
- Fixed can not copy user on Percona Server 5.7
- Updated sql-parser to version 4.3.2, which fixes several parsing and linting problems
There are many, many more bug fixes thanks to the efforts of our developers, Google Summer of Code applicants, and other contributors.
The phpMyAdmin team
This is the official changelog link for phpMyAdmin v4.9.0: https://www.phpmyadmin.net/files/4.9.0/
Welcome to phpMyAdmin 4.9.0, a bugfix release that includes important security fixes.
This release fixes two security vulnerabilities:
* PMASA-2019-3 is an SQL injection flaw in the Designer feature
* PMASA-2019-4 is a CSRF attack that's possible through the 'cookie' login form
Upgrading is highly recommended for all users. Using the 'http' auth_type instead of 'cookie' can mitigate the CSRF attack.
The solution for the CSRF attack does remove the former functionality to log in directly through URL parameters (as mentioned in FAQ 4.8, such as https://example.com/phpmyadmin/?pma_username=root&password=foo). Such behavior was discouraged and is now removed. Other query parameters work as expected; only pma_username and pma_password have been removed.
This release also includes fixes for many bugs, including:
- Several issues with SYSTEM VERSIONING tables
- Fixed json encode error in export
- Fixed JavaScript events not activating on input (sql bookmark issue)
- Show Designer combo boxes when adding a constraint
- Fix edit view
- Fixed invalid default value for bit field
- Fix several errors relating to GIS data types
- Fixed javascript error PMA_messages is not defined
- Fixed import XML data with leading zeros
- Fixed php notice, added support for 'DELETE HISTORY' table privilege (MariaDB >= 10.3.4)
- Fixed MySQL 8.0.0 issues with GIS display
- Fixed "Server charset" in "Database server" tab showing wrong information
- Fixed can not copy user on Percona Server 5.7
- Updated sql-parser to version 4.3.2, which fixes several parsing and linting problems
There are many, many more bug fixes thanks to the efforts of our developers, Google Summer of Code applicants, and other contributors.
The phpMyAdmin team
This is the official changelog link for phpMyAdmin v4.8.5: https://www.phpmyadmin.net/files/4.8.5/
The phpMyAdmin team announces the release of phpMyAdmin version 4.8.5. Among other bug fixes, this contains several important security fixes. Upgrading is highly recommended for all users.
The security fixes involve:
* Arbitrary file read vulnerability (https://www.phpmyadmin.net/security/PMASA-2019-1)
* SQL injection in the Designer interface (https://www.phpmyadmin.net/security/PMASA-2019-2)
The arbitrary file read vulnerability could also be exploited to delete arbitrary files on the server. This attack requires that phpMyAdmin be run with the $cfg['AllowArbitraryServer'] directive set to true, which is not the default. An attacker must run a malicious server process that will masquerade as a MySQL server. This exploit has been found and fixed recently in several other related projects and appears to be caused by a bug in PHP (https://bugs.php.net/bug.php?id=77496).
In addition to the security fixes, this release also includes these bug fixes and more as part of our regular release cycle:
* Export to SQL format not available
* QR code not shown when adding two-factor authentication to a user account
* Issue with adding a new user in MySQL 8.0.11 and newer
* Frozen interface relating to Text_Plain_Sql plugin
* Table level Operations tab was missing
And several more. Complete notes are in the ChangeLog file included with this release.
As always, downloads are available at https://www.phpmyadmin.net/downloads/
This is the official changelog link for phpMyAdmin v4.8.4: https://www.phpmyadmin.net/files/4.8.4/
The phpMyAdmin team announces the release of phpMyAdmin version 4.8.4. Among other bug fixes, this contains several important security fixes. Upgrading is highly recommended for all users.
The security fixes involve:
* Local file inclusion (https://www.phpmyadmin.net/security/PMASA-2018-6/),
* XSRF/CSRF vulnerabilities allowing a specially-crafted URL to perform harmful operations (https://www.phpmyadmin.net/security/PMASA-2018-7/), and
* an XSS vulnerability in the navigation tree (https://www.phpmyadmin.net/security/PMASA-2018-8/)
In addition to the security fixes, this release also includes these bug fixes and more as part of our regular release cycle:
* Issue with changing theme
* Ensure that database names with a dot ('.') are handled properly when DisableIS is true
* Fix for message "Error while copying database (pma__column_info)"
* Move operation causes "SELECT * FROM `undefined`" error
* When logging with $cfg['AuthLog'] to syslog, successful login messages were not logged when $cfg['AuthLogSuccess'] was true
* Multiple errors and regressions with Designer
And several more. Complete notes are in the ChangeLog file included with this release.
Note that for this release, we experimented with a pre-release announcement so that hosting providers and package managers would have an opportunity to prepare for the security release. If this was helpful to you or if you have feedback about this technique, please let us know through the public list developers@phpmyadmin.net or privately at security@phpmyadmin.net. We may or may not decide use this behavior in the future and your feedback will help us decide whether it's beneficial to the community.
As always, downloads are available at https://www.phpmyadmin.net/downloads/
This is the official changelog link for phpMyAdmin v4.8.3: https://www.phpmyadmin.net/files/4.8.3/
The phpMyAdmin team is pleased to announce the release of phpMyAdmin version 4.8.2. Among other bug fixes, this contains a security fix for an issue that can be exploited when importing files.
A flaw was discovered with how warning messages are displayed while importing a file. This attack requires a specially-crafted file but can allow an attacker to trick the user in to executing a cross-site scripting (XSS) attack. We recommend updating immediately to mitigate this attack.
In addition to the security fixes, this release also includes these bug fixes and more as part of our regular release cycle:
* An error where a database is named 0
* Fix for NULL as default not being shown
* Fix for recent tables list
* Fix for slow performance with table filtering
* Two-factor authentication (2FA) fails if the GD PHP library is missing
* Event scheduler toggle does not work
* ERR_BLOCKED_BY_XSS_AUDITOR error when exporting a table
* PHP 7.3 warning: "continue" in "switch" is equal to "break"
And several more. Complete notes are in the ChangeLog file included with this release.
As always, downloads are available at https://www.phpmyadmin.net/downloads/
This is the official changelog link for phpMyAdmin v4.8.2: https://www.phpmyadmin.net/files/4.8.2/
The phpMyAdmin team is pleased to announce the release of phpMyAdmin version 4.8.2. Among other bug fixes, this contains an important security update and it is highly recommended that all users upgrade immediately.
The urgent vulnerability allows an authenticated attacker to exploit a phpMyAdmin feature to show and potentially execute files on the server. PHP open_basedir restrictions mitigate the effect of this flaw. For further details, see the PMASA announcement .
A second flaw was also fixed allowing an attacker to use a specially crafted database name to trick a user in to executing a cross-site scripting (XSS) attack in the Designer feature .
In addition to the security fixes, this release also includes these bug fixes as part of our regular release cycle:
* WHERE 0 clause causes a fatal error
* Fix missing "INDEX" icon
Downloads are available at https://www.phpmyadmin.net/downloads/
This is the official changelog link for phpMyAdmin v4.8.1: https://www.phpmyadmin.net/files/4.8.1/
This is the official changelog link for phpMyAdmin v4.8.0.1: https://www.phpmyadmin.net/files/4.8.0.1/
I know you are always very busy developing CWP but i hope you can consider this suggestion of mine which i believe would be appreciated by all users of CWP (Centos Web Panel) and CWP (Centos Web Panel) PRO !
Thanks in advance for the support.
First of all i wish to congratulate all the programmers of both CWP (Centos Web Panel) and CWP (Centos Web Panel) PRO for the excellent work they do and for the excellent product they have created, truly excellent from all points of view.
Congratulations also for the new and beautiful official website of CWP and CWP PRO https://control-webpanel.com/
Having said that, i ask you to consider from your next CWP (Centos Web Panel) and CWP (Centos Web Panel) PRO release,
updating phpMyAdmin to the latest version of phpMyAdmin v5.0.1 which was released on 08 January, 2020.
If you use this command sh /scripts/mysql_phpmyadmin_update the result is that an obsolete version of phpMyAdmin is installed for CWP (Centos Web Panel) and CWP (Centos Web Panel) PRO which is phpMyAdmin v4.7.9 which was released on 05 March, 2018.
NOTE FROM PHPMYADMIN DEVELOPER:
This is a reminder that phpMyAdmin 4.9.3 is in the long-term support phase where it will only get important security fixes and critical bug fixes. Users are suggested to migrate to version 5.0.
This is the official changelog link for phpMyAdmin v5.0.1: https://www.phpmyadmin.net/files/5.0.1/
Welcome to the release of phpMyAdmin version 5.0.1. This is fixes an important security flaw as well as containing several other bug fixes.
The two most notable fixes:
* Issue #15724 regarding two-factor authentication
* PMASA-2020-1 which is an SQL injection vulnerability in the user accounts page
There are several other bugs fixes, please see the ChangeLog file included with this release for full details.
Known shortcomings:
Due to changes in the MySQL authentication method, PHP versions prior to 7.4 are unable to authenticate to a MySQL 8.0 or newer server (our tests show the problem actually began with MySQL 8.0.11). This relates to a PHP bug https://bugs.php.net/bug.php?id=76243. There is a workaround, that is to set your user account to use the current-style password hash method, mysql_native_password. This unfortunate lack of coordination has caused the incompatibility to affect all PHP applications, not just phpMyAdmin. For more details, you can see our bug tracker item at https://github.com/phpmyadmin/phpmyadmin/issues/14220. We suggest upgrading your PHP installation to take advantage of the authentication methods.
Downloads are available now at https://phpmyadmin.net/downloads/
For the phpMyAdmin team,
Isaac
This is the official changelog link for phpMyAdmin v5.0.0: https://www.phpmyadmin.net/files/5.0.0/
Welcome to the release of phpMyAdmin version 5.0.0.
This release includes many new features and improvements from the 4.9 series. We expect to maintain version 4 in a security capacity
to support users with older PHP installations. For full details about supported versions and end of life dates, see the "Supported versions"
grid at .
With this release, we are removing support of old PHP versions (5.5, 5.6, 7.0, and HHVM). These versions are outdated and are no longer supported by the PHP team.
Version 5.0 includes many coding improvements that modernize the interface. Many of these changes are transparent to users, but make the code easier to maintain.
Much of this refactoring work is completed by our contract developer, Maurício Meneghini Fauth. We always consider applications for new (paid) contract developers,
see for program details.
Some of the changes and new features include:
- Enable columns names by default for CSV exports
- Add Metro theme
- Automatically add the index when creating an auto increment column
- Improvements to exporting views
- Prompt the user for confirmation before running an UPDATE query with no WHERE clause
- Improvements to how errors are show to the user (including allowing easier copying of the error text to the clipboard)
- Added keystrokes to clear the line (ctrl+l) and clear the entire console window (ctrl+u)
- Use charset 'windows-1252' when export format is MS Excel
There are several more changes, please refer to the ChangeLog file included with the release for full details.
Known shortcomings:
Due to changes in the MySQL authentication method, PHP versions prior to 7.4 are unable to authenticate to a MySQL 8.0 or newer server (our tests show the problem actually began with MySQL 8.0.11). This relates to a PHP bug https://bugs.php.net/bug.php?id=76243. There is a workaround, that is to set your user account to use the current-style password hash method, mysql_native_password. This unfortunate lack of coordination has caused the incompatibility to affect all PHP applications, not just phpMyAdmin. For more details, you can see our bug tracker item at https://github.com/phpmyadmin/phpmyadmin/issues/14220. We suggest upgrading your PHP installation to take advantage of the authentication methods.
Downloads are available now at https://phpmyadmin.net/downloads/
Our work would not be possible without the donations of our generous sponsor, and this release in particular is brought to you thanks to the hard work of our Google Summer of Code students and many other contributors.
For the phpMyAdmin team,
Isaac
This is the official changelog link for phpMyAdmin v4.9.4: https://www.phpmyadmin.net/files/4.9.4/
Welcome to the release of phpMyAdmin version 4.9.4. This is a security release and also contains a fix for a problem with two-factor authentication
that was introduced in version 4.9.3.
Changes this version:
- Issue #15724 regarding two-factor authentication
- PMASA-2020-1 which is an SQL injection vulnerability in the user accounts page
This is a reminder that phpMyAdmin 4.9.3 is in the long-term support phase where it will only get important security fixes and critical bug fixes. Users are suggested to migrate to version 5.0.
Downloads are available now at https://phpmyadmin.net/downloads/
For the phpMyAdmin team,
Isaac
This is the official changelog link for phpMyAdmin v4.9.3: https://www.phpmyadmin.net/files/4.9.3/
Welcome to phpMyAdmin 4.9.3, a routine bugfix release.
This is planned as the final bugfix release of phpMyAdmin version 4. Version 4 works with PHP versions 5.5 through (at least) 7.4,
and MySQL versions 5.5 and newer (and the corresponding MariaDB versions). Version 5 will require PHP 7.1 or newer, but
we plan to maintain security fixes for version 4 as part of our LTS program. For end of life details and supported
versions, please see the "Supported versions" grid at .
This release includes fixes for many bugs, including:
- Several PHP notices and warnings including "Undefined index table_create_time,"
a notice about error_reporting() being disabled for security reasons, and several Undefined Index errors.
- Support CloudFront-Forwarded-Proto header for Amazon CloudFront proxy
- Early compatibility with development versions of PHP 8
- Fix replication actions (start, stop, etc)
There are many, many more bug fixes thanks to the efforts of our developers and other contributors.
For full details, you can see the ChangeLog file included with this release.
The phpMyAdmin team
This is the official changelog link for phpMyAdmin v4.9.2: https://www.phpmyadmin.net/files/4.9.2/
Welcome to phpMyAdmin 4.9.2, a bugfix release that also contains a security fix.
This security fix is part of an ongoing effort to improve the security of the Designer feature.
There is also an improvement for how we sanitize Git version information shown on the home page, thanks to Ali Hubail.
This release includes fixes for many bugs, including:
- Fixes for the "Failed to set session cookie" error which relates to the cookie name. In some cases, data stored in the cookie (such as the previously-used user account) may not be loaded from a previous phpMyAdmin cookie the first time you run version 4.9.2
- Fix for Advisor with MySQL 8.0.3 and newer
- Fix PHP deprecation errors
- Fix a situation where exporting users after a delete query could remove users
- Fix incorrect "You do not have privileges to manipulate with the users!" warning
- Fix copying a database's privileges and several other problems moving columns with MariaDB
- Fix for phpMyAdmin not selecting all the values when using shift-click to select during Export
There are many, many more bug fixes thanks to the efforts of our developers and other contributors.
The phpMyAdmin team
This is the official changelog link for phpMyAdmin v4.9.1: https://www.phpmyadmin.net/files/4.9.1/
Welcome to phpMyAdmin 4.9.1, a bugfix release.
This is a regularly-schedule bugfix release that also includes some security hardening measures.
We wish to point out that this also includes a routine fix for an issue that has been reported as CVE-2019-12922. The fix for this has been in our release queue to be part of this release, however it is the opinion of the team that the reported attack vector did not justify a separate release.
This release includes fixes for many bugs, including:
- Editing columns with CURRENT_TIMESTAMP for MySQL versions 8.0.13 and newer
- Compatibility issues with PHP 8
- Export of GIS visualization
- Enhanced descriptions for several collation types
- Creating a user with a single quote in the password string
- Unexpected quotes during import and export on text fields
- Improvements to adding new tables to Designer
- Fix an issue where an authenticated user could trigger heavy traffic between the database server and web server
- Fix a weakness where an attacker, under certain conditions, working at the same time as an administrator is using the setup script, could delete a server from the setup script
There are many, many more bug fixes thanks to the efforts of our developers, Google Summer of Code applicants, and other contributors.
The phpMyAdmin team
This is the official changelog link for phpMyAdmin v4.9.0.1: https://www.phpmyadmin.net/files/4.9.0.1/
Welcome to phpMyAdmin 4.9.0.1, a bugfix release that includes important security fixes.
This release fixes two security vulnerabilities:
* PMASA-2019-3 is an SQL injection flaw in the Designer feature
* PMASA-2019-4 is a CSRF attack that's possible through the 'cookie' login form
Upgrading is highly recommended for all users. Using the 'http' auth_type instead of 'cookie' can mitigate the CSRF attack.
The solution for the CSRF attack does remove the former functionality to log in directly through URL parameters (as mentioned in FAQ 4.8, such as https://example.com/phpmyadmin/?pma_username=root&password=foo). Such behavior was discouraged and is now removed. Other query parameters work as expected; only pma_username and pma_password have been removed.
This release also includes fixes for many bugs, including:
- Several issues with SYSTEM VERSIONING tables
- Fixed json encode error in export
- Fixed JavaScript events not activating on input (sql bookmark issue)
- Show Designer combo boxes when adding a constraint
- Fix edit view
- Fixed invalid default value for bit field
- Fix several errors relating to GIS data types
- Fixed javascript error PMA_messages is not defined
- Fixed import XML data with leading zeros
- Fixed php notice, added support for 'DELETE HISTORY' table privilege (MariaDB >= 10.3.4)
- Fixed MySQL 8.0.0 issues with GIS display
- Fixed "Server charset" in "Database server" tab showing wrong information
- Fixed can not copy user on Percona Server 5.7
- Updated sql-parser to version 4.3.2, which fixes several parsing and linting problems
There are many, many more bug fixes thanks to the efforts of our developers, Google Summer of Code applicants, and other contributors.
The phpMyAdmin team
This is the official changelog link for phpMyAdmin v4.9.0: https://www.phpmyadmin.net/files/4.9.0/
Welcome to phpMyAdmin 4.9.0, a bugfix release that includes important security fixes.
This release fixes two security vulnerabilities:
* PMASA-2019-3 is an SQL injection flaw in the Designer feature
* PMASA-2019-4 is a CSRF attack that's possible through the 'cookie' login form
Upgrading is highly recommended for all users. Using the 'http' auth_type instead of 'cookie' can mitigate the CSRF attack.
The solution for the CSRF attack does remove the former functionality to log in directly through URL parameters (as mentioned in FAQ 4.8, such as https://example.com/phpmyadmin/?pma_username=root&password=foo). Such behavior was discouraged and is now removed. Other query parameters work as expected; only pma_username and pma_password have been removed.
This release also includes fixes for many bugs, including:
- Several issues with SYSTEM VERSIONING tables
- Fixed json encode error in export
- Fixed JavaScript events not activating on input (sql bookmark issue)
- Show Designer combo boxes when adding a constraint
- Fix edit view
- Fixed invalid default value for bit field
- Fix several errors relating to GIS data types
- Fixed javascript error PMA_messages is not defined
- Fixed import XML data with leading zeros
- Fixed php notice, added support for 'DELETE HISTORY' table privilege (MariaDB >= 10.3.4)
- Fixed MySQL 8.0.0 issues with GIS display
- Fixed "Server charset" in "Database server" tab showing wrong information
- Fixed can not copy user on Percona Server 5.7
- Updated sql-parser to version 4.3.2, which fixes several parsing and linting problems
There are many, many more bug fixes thanks to the efforts of our developers, Google Summer of Code applicants, and other contributors.
The phpMyAdmin team
This is the official changelog link for phpMyAdmin v4.8.5: https://www.phpmyadmin.net/files/4.8.5/
The phpMyAdmin team announces the release of phpMyAdmin version 4.8.5. Among other bug fixes, this contains several important security fixes. Upgrading is highly recommended for all users.
The security fixes involve:
* Arbitrary file read vulnerability (https://www.phpmyadmin.net/security/PMASA-2019-1)
* SQL injection in the Designer interface (https://www.phpmyadmin.net/security/PMASA-2019-2)
The arbitrary file read vulnerability could also be exploited to delete arbitrary files on the server. This attack requires that phpMyAdmin be run with the $cfg['AllowArbitraryServer'] directive set to true, which is not the default. An attacker must run a malicious server process that will masquerade as a MySQL server. This exploit has been found and fixed recently in several other related projects and appears to be caused by a bug in PHP (https://bugs.php.net/bug.php?id=77496).
In addition to the security fixes, this release also includes these bug fixes and more as part of our regular release cycle:
* Export to SQL format not available
* QR code not shown when adding two-factor authentication to a user account
* Issue with adding a new user in MySQL 8.0.11 and newer
* Frozen interface relating to Text_Plain_Sql plugin
* Table level Operations tab was missing
And several more. Complete notes are in the ChangeLog file included with this release.
As always, downloads are available at https://www.phpmyadmin.net/downloads/
This is the official changelog link for phpMyAdmin v4.8.4: https://www.phpmyadmin.net/files/4.8.4/
The phpMyAdmin team announces the release of phpMyAdmin version 4.8.4. Among other bug fixes, this contains several important security fixes. Upgrading is highly recommended for all users.
The security fixes involve:
* Local file inclusion (https://www.phpmyadmin.net/security/PMASA-2018-6/),
* XSRF/CSRF vulnerabilities allowing a specially-crafted URL to perform harmful operations (https://www.phpmyadmin.net/security/PMASA-2018-7/), and
* an XSS vulnerability in the navigation tree (https://www.phpmyadmin.net/security/PMASA-2018-8/)
In addition to the security fixes, this release also includes these bug fixes and more as part of our regular release cycle:
* Issue with changing theme
* Ensure that database names with a dot ('.') are handled properly when DisableIS is true
* Fix for message "Error while copying database (pma__column_info)"
* Move operation causes "SELECT * FROM `undefined`" error
* When logging with $cfg['AuthLog'] to syslog, successful login messages were not logged when $cfg['AuthLogSuccess'] was true
* Multiple errors and regressions with Designer
And several more. Complete notes are in the ChangeLog file included with this release.
Note that for this release, we experimented with a pre-release announcement so that hosting providers and package managers would have an opportunity to prepare for the security release. If this was helpful to you or if you have feedback about this technique, please let us know through the public list developers@phpmyadmin.net or privately at security@phpmyadmin.net. We may or may not decide use this behavior in the future and your feedback will help us decide whether it's beneficial to the community.
As always, downloads are available at https://www.phpmyadmin.net/downloads/
This is the official changelog link for phpMyAdmin v4.8.3: https://www.phpmyadmin.net/files/4.8.3/
The phpMyAdmin team is pleased to announce the release of phpMyAdmin version 4.8.2. Among other bug fixes, this contains a security fix for an issue that can be exploited when importing files.
A flaw was discovered with how warning messages are displayed while importing a file. This attack requires a specially-crafted file but can allow an attacker to trick the user in to executing a cross-site scripting (XSS) attack. We recommend updating immediately to mitigate this attack.
In addition to the security fixes, this release also includes these bug fixes and more as part of our regular release cycle:
* An error where a database is named 0
* Fix for NULL as default not being shown
* Fix for recent tables list
* Fix for slow performance with table filtering
* Two-factor authentication (2FA) fails if the GD PHP library is missing
* Event scheduler toggle does not work
* ERR_BLOCKED_BY_XSS_AUDITOR error when exporting a table
* PHP 7.3 warning: "continue" in "switch" is equal to "break"
And several more. Complete notes are in the ChangeLog file included with this release.
As always, downloads are available at https://www.phpmyadmin.net/downloads/
This is the official changelog link for phpMyAdmin v4.8.2: https://www.phpmyadmin.net/files/4.8.2/
The phpMyAdmin team is pleased to announce the release of phpMyAdmin version 4.8.2. Among other bug fixes, this contains an important security update and it is highly recommended that all users upgrade immediately.
The urgent vulnerability allows an authenticated attacker to exploit a phpMyAdmin feature to show and potentially execute files on the server. PHP open_basedir restrictions mitigate the effect of this flaw. For further details, see the PMASA announcement .
A second flaw was also fixed allowing an attacker to use a specially crafted database name to trick a user in to executing a cross-site scripting (XSS) attack in the Designer feature .
In addition to the security fixes, this release also includes these bug fixes as part of our regular release cycle:
* WHERE 0 clause causes a fatal error
* Fix missing "INDEX" icon
Downloads are available at https://www.phpmyadmin.net/downloads/
This is the official changelog link for phpMyAdmin v4.8.1: https://www.phpmyadmin.net/files/4.8.1/
This is the official changelog link for phpMyAdmin v4.8.0.1: https://www.phpmyadmin.net/files/4.8.0.1/
I know you are always very busy developing CWP but i hope you can consider this suggestion of mine which i believe would be appreciated by all users of CWP (Centos Web Panel) and CWP (Centos Web Panel) PRO !
Thanks in advance for the support.
36
Installation / Re: Job for php-fpm.service failed because the control process exited
« on: March 20, 2020, 02:22:51 AM »hello, I want to try install php-fpm on my server with cwp. I noticed that the automatic installation with a selector is just for the pro version so I tried to install it ...
Hi "antoaunix",
In my opinion, you only complicate your work with the risk of also encountering possible errors.
CWP PRO it is sold at a really low price practically they give it to you almost free, i say this, considering the fact that the prices are as follows:
CWP PRO > 1 Month license ... $1.49 USD (included VAT);
CWP PRO > 3 Months license ... $4.39 USD (included VAT);
CWP PRO > 6 Month license ... $8.89 USD (included VAT);
CWP PRO > 12 Months license ... $11.99 USD (included VAT).
In addition, CWP PRO in addition to PHP-FPM offers much, much more than CWP FREE which is still excellent.
Consider that by purchasing a license for CWP PRO you would help CWP and CWP PRO developers to make it even better by supporting their work and efforts.
If you want you can also read this message of mine in another discussion where i try to explain besides the comparison of costs with other administration panels (where CWP PRO wins big, both for the price and for the many features) also in advantages that are not only economic by CWP PRO !
http://forum.centos-webpanel.com/index.php?topic=8218.msg28315#msg28315
I hope i have been helpful and i wish you a good day and good job.
37
Updates / Re: Installed cURL Version
« on: March 20, 2020, 01:59:41 AM »We have different CWP servers where we have this problem:QuoteInstalled cURL Version
You currently have version 7.29.0 of cURL installed. This version is known to have security issues. Please update to the latest cURL and ensure it is greater than 7.35.0.
We need CWP to update the version.
Greetings!
PROBLEM SOLVED
Update cURL v7.29.0 to the latest cURL v7.69.1 for CWP (Centos Web Panel) and CWP PRO (Centos Web Panel Pro) !
Hi "CoriaWeb Hosting" i discovered a great website https://www.mysterydata.com/ with a great Administrator where you can find many guides for CWP, CWP PRO and more, also by registering for free on the forum i found the solution to this problem thanks to the courtesy and extreme availability of the Administrator.
SOLUTION:
Guide with solution at MysteryData.com :
https://www.mysterydata.com/update-install-latest-curl-version-on-rhel-8-rhel-7-centos-7-8-cwp-vestacp-cpanel-plesk/
OFFICIAL CURL CHANGELOG:
https://curl.haxx.se/changes.html
Good day and good work to all !
38
New Modules / Re: [Module] CWP_2FA
« on: February 24, 2020, 10:17:14 AM »Video uploaded to the GitHub Page
Hi "rcschaff",
Very very good, thank you !
39
Information / Re: Current work to improve CWP.
« on: February 14, 2020, 03:38:04 PM »
Hi "coriaweb",Thank you !
40
Information / Re: Current work to improve CWP.
« on: February 12, 2020, 01:36:44 AM »What they should do (from now on). Is make the ...
Hi "coriaweb",
You reported it to the developers of CWP and CWP PRO ?
41
CentOS-WebPanel GUI / Re: Caution: CWP Default ModSecurity Holes
« on: February 10, 2020, 12:50:47 PM »I've been setting up a new server ...
Hi "ejsolutions",
You use OSWAP or CWAF as roles ?
Can you show me where to find these disabled roles ?
Thanks in advance for the support.
42
Other / Re: CWP support worth every penney
« on: February 06, 2020, 02:59:16 PM »I have been using cwp premium support for some years now and I will tell you that they are fantastic.I do code my site but not great at Linux and have issues sometimes.The cwp support folks have saved me so many headaches and have actually saved my server at least five times.I highly recommend there premium support it worth ever penney
centos 7 CWP user
Hi "bjw4253".+ 1 for me !
Greetings.
43
Other / Re: This is why we all love CWP
« on: February 06, 2020, 02:57:46 PM »https://hostingjournalist.com/web-hosting/cpanel-says-sorry-announces-adjustments-to-its-new-licensing-model/
I hope to see many more people migrating to CWP and joining the forum and community.
Hi "Glenn",I hope so too, CWP Free and CWP PRO are truly two excellent products.
Greetings.
44
Other / Re: OTP / 2FA Authentication for Admin / User Login
« on: February 06, 2020, 02:54:10 PM »
Is there OTP / 2FA Authentication for Admin / User Login ?
Hi "JaseHill",
at the moment unfortunately it is not yet available but the CWP Team of Developers said they have included it in their to-do list.
Greetings.
45
Information / Re: Current work to improve CWP.
« on: February 05, 2020, 01:38:39 PM » Hi to all,I ask that as far as assistance is concerned, the CWP Team should operate like this:
- For CWP Free Version:
Limited assistance only through this support forum aka "Community-based support" and without any possibility of receiving assistance via ticket.
- For CWP PRO paid Version:
Assistance through support ticket limited to one request for one single problem at a time because for multiple support requests there is already a support plan of $ 12.99 a month and up to three multiple support requests.
As for the cost of the CWP PRO license, I agree that the price must be absolutely raised and I think that this range of values at the moment is absolutely reasonable and super cheap given all that is offered with CWP PRO:
- CWP PRO License Monthly Cost up to a minimum of $ 3.99 to a maximum of $ 4.99 per month.
Reason all of the above reminding you of the costs and functions of the best known and most famous control panels just to refresh your memory:
- cPanel License Prices:
Solo > 1 account = $ 15.00 Monthly;
O.S. supported: Cloud Linux - Centos 6.x, 7.x
cPanel License Annual Cost: $ 180.00 + VAT.
CWP PRO License Annual Cost: $ 17.88 ($ 1.49 Monthly) included VAT.
WITH CWP PRO YOU SAVE $ 162,12 + VAT ANNUALLY.
Admin > Up to 5 Accounts = $ 20.00 Monthly;
O.S. supported: Cloud Linux - Centos 6.x, 7.x
cPanel License Annual Cost: $ 240.00 + VAT.
CWP PRO License Annual Cost: $ 17.88 include VAT ($ 1.49 Monthly) included VAT.
WITH CWP PRO YOU SAVE $ 222,12 + VAT ANNUALLY.
Pro > Up to 30 Accounts = $ 30.00 Monthly;
O.S. supported: Cloud Linux - Centos 6.x, 7.x
cPanel License Annual Cost: $ 360.00 + VAT.
CWP PRO License Annual Cost: $ 17.88 ($ 1.49 Monthly) included VAT.
WITH CWP PRO YOU SAVE $ 342,12 + VAT ANNUALY.
Premier > Up to 100 Accounts (Each Account above 100 Accounts $0.20 each) = $ 45.00 Monthly.
O.S. supported: Cloud Linux - Centos 6.x, 7.x
cPanel License Annual Cost: $ 540.00 + VAT.
CWP PRO License Annual Cost: $ 17.88 ($ 1.49 Monthly) included VAT.
WITH CWP PRO YOU SAVE $ 522,12 + VAT ANNUALLY.
- Plesk License Prices:
Web Admin Edition > Up to 10 Domains = $ 9.16 Monthly + VAT;
Included: WordPress Toolkit SE.
O.S. supported: Cloud Linux 5.x, 6.x, 7.x - Centos 6.x, 7.x - Debian 7.x, 8.x - Ubuntu 12.x, 14.x
Plesk License Annual cost: $ 100.76 + VAT (One Months is Free for annual subscriptions).
CWP PRO License Annual Cost: $ 17.88 ($ 1.49 Monthly) included VAT.
WITH CWP PRO YOU SAVE $ 82,88 + VAT ANNUALLY.
Web Pro Edition > Up to 30 Domains = $ 13.75 Monthly + VAT;
Included: WordPress Toolkit SE - Developer Pack - Subscription Management - Account Management.
O.S. supported: Cloud Linux 5.x, 6.x, 7.x - Centos 6.x, 7.x - Debian 7.x, 8.x - Ubuntu 12.x, 14.x
Plesk License Annual cost: $ 151,25 + VAT (One Months is Free for annual subscriptions).
CWP PRO License Annual Cost: $ 17.88 ($ 1.49 Monthly) included VAT.
WITH CWP PRO YOU SAVE $ 133,37 + VAT ANNUALLY.
Pro > Unlimited Domains = $ 41.25 Monthly + VAT;
Included: WordPress Toolkit SE - Developer Pack - Subscription Management - Account Management - Reseller Management.
O.S. supported: Cloud Linux 5.x, 6.x, 7.x - Centos 6.x, 7.x - Debian 7.x, 8.x - Ubuntu 12.x, 14.x
Plesk License Annual cost: $ 453,75 + VAT (One Months is Free for annual subscriptions).
CWP PRO License Annual Cost: $ 17.88 ($ 1.49 Monthly) included VAT.
WITH CWP PRO YOU SAVE $ 435,87 + VAT ANNUALLY.
- Direct Admin License Prices:
Trial (60 days) > 1 Account Up to 1 Domains = $ 0.00 Monthly - Expire in 60 Days
Included: Fully functional license with all feature (Expire in 60 Days) - Community-based support - Seldf installation.
O.S. supported: Cloud Linux 6.x, 7.x, 8.x - Centos 6.x, 7.x, 8.x - Debian 8.x, 9.x, 10.x - FreeBSD 11.x, 12.x
Direct Admin License Monthly cost: $ 0.00 (Expire in 60 Days).
CWP PRO FREE Annual Cost: $ 0.00 (Never Exipre).
Personal > 1 Account Up to 10 Domains = $ 2.00 Monthly + VAT;
Included: Community-based support - Seldf installation.
O.S. supported: Cloud Linux 6.x, 7.x, 8.x - Centos 6.x, 7.x, 8.x - Debian 8.x, 9.x, 10.x - FreeBSD 11.x, 12.x
Direct Admin License Annual cost: $ 24 + VAT.
CWP PRO License Annual Cost: $ 17.88 ($ 1.49 Monthly) included VAT.
WITH CWP PRO YOU SAVE $ 6,12 + VAT ANNUALLY.
Lite > 10 Account Up to 50 Domains = $ 15 Monthly + VAT;
Included: Unlimited techinical support - Free installation.
O.S. supported: Cloud Linux 6.x, 7.x, 8.x - Centos 6.x, 7.x, 8.x - Debian 8.x, 9.x, 10.x - FreeBSD 11.x, 12.x
Direct Admin License Annual cost: $ 180.00 + VAT.
CWP PRO License Annual Cost: $ 17.88 ($ 1.49 Monthly) included VAT.
WITH CWP PRO YOU SAVE $ 162,12 + VAT ANNUALLY.
Standard > Unlimited Account and Unlimited Domains = $ 15 Monthly + VAT;
Included: Unlimited techinical support - Free installation.
O.S. supported: Cloud Linux 6.x, 7.x, 8.x - Centos 6.x, 7.x, 8.x - Debian 8.x, 9.x, 10.x - FreeBSD 11.x, 12.x
Direct Admin License Annual cost: $ 348.00 + VAT.
CWP PRO License Annual Cost: $ 17.88 ($ 1.49 Monthly) included VAT.
WITH CWP PRO YOU SAVE $ 330,12 + VAT ANNUALLY.
- ISPConfig License Prices:
Free > Unlimited Account and Unlimited Domains = $ 0.00 Monthly - Never Expire
Included: Fully functional license with all feature - Community-based support - Self installation.
O.S. supported: Debian v9 and v10 - Ubuntu v16.04 and v18.04 - CentOS v7
Monthly cost: $ 0.00 (Never Expire).
CWP PRO FREE Annual Cost: $ 0.00 (Never Exipre).
Obviously I have used all the above control panels and I can guarantee you that CWP PRO has no equal neither in price nor in functionality included.
CWP PRO has as its great advantage the ease of use, practically you can easily create and manage even a complex webserver like Nginx + Varnish + Apache PHP-FPM thing that with the other panels above it is not possible to do it or if it is possible to do it it is very very complicated both during installation and management as it is all or almost left to the shell commands, while with CWP PRO it is practically a point and click and this is just to give an example.
Now, and this is my personal thought, so take it as such, I appeal to all users who use CWP PRO, in my opinion, you can not expect the moon and that is to have at $ 1.49 includes VAT per month, the best and perfect control panel ever, also because the other and famous control panels that cost at least 10 times as much as CWP PRO and that also have thousands and thousands of customers more than CWP PRO, also because, and those who have used them know, the most famous and expensive control panels, have a lot of limitation and less functionality than CWP PRO, also many of them charge through third-party plugins to have functionality that in CWP PRO are including.
As for security, it is obvious that the most famous control panels can be safer, as they can count on a user base hundreds of times larger than CWP PRO and this helps them in the discovery and resolution of many bugs.
Specifically, I have never had any security problems in CWP PRO and by searching on Google I have not read about any serious recent security problem regarding CWP PRO which, if well configured, is also much safer than the most famous and expensive panels of in fact, just to give an example, in addition to including CSF (Config Security and Firewall), it also includes Mod Security with OSWAP and COMODO WAF rules in CWP PRO.
So to conclude in my opinion at the moment the license of CWP PRO for $ 1.49 per month is literally sold out because in my opinion CWP PRO, already now and as it is, is worth much, much more.
For this, in my opinion the license of CWP PRO should cost at a minimum of $ 3.99 to a maximum of $ 4.99 per month.
If the CWP PRO Team aligns its prices as recommended by me, we would all earn because the CWP PRO team would have more money to invest in developing CWP PRO.
Of course I am also convinced that for every CWP PRO update they should release the relevant changelog and that for every CWP PRO update it is not necessary to overwrite everything every update.
I want to say to all those who complain that they do not receive assistance on this forum that assistance costs and must be paid and as for the most famous and expensive administration panels, assistance on the forum is Community-based.
Furthermore, if you search on Google you will find many, many very good guides for CWP Free and for CWP PRO in many other forums or blogs, this means that the use of CWP Free and CWP PRO is always on the increase and this thanks to its excellent quality and convenience.
From personal experience I can tell you, having purchased the CWP PRO paid assistance package, which at the level of paid assistance are UNBEATABLE, because they are very prepared, quick and kind.
Now if you are not convinced of what I say, try to have if someone sells you a beautiful Ferrari or Lamborghini brand new car and fully functional for $ 1000 (in my opinion you will continue to walk on foot for a long way).
Instead of complaining, think if there was no CWP Free and CWP PRO, we try to help them and make them grow, for example I ask all the hosts and suppliers of the server to implement it and I always advertise CWP Free and CWP PRO because I am convinced that it is already one of the best control panels ever and that in the future it will have great potential and that certainly will not disappoint us and I am convinced of this.
Among other things, those like us who perhaps have more knowledge than others could occasionally and without any effort help some other user so as to make this forum grow, this means creating a community and not waiting for things to always fall from heaven by grace received.
And I conclude: Do not complain too much and thank those who work wonders with few resources and practically give their work for free or for very few pennies a month, practically not even the cost of a coffee !
Have a good day everyone and: « Stay hungry, stay foolish. »
...
...
...
Current work to improve CWP ...
With present price of CWP Pro it is no way they''ll be able to ...
some more improovements that cwp musto to ...
+1 for the above, but I think ...
1. Fix what's broken ...
5. Get a serious panel name. Branding is everything. kokpit.com ...
I agree with rcschaff. There are many knowledgeable ...
