Passbolt is pleased to announce the immediate availability of version v4.11.1. This version is a targeted security release of the API focusing on highlighting a security issue reported by security researcher David Silva.
We would like to express our appreciation to the community for their assistance in making Passbolt more secure. Further details can be found in the incident report.
API
Security
- PB-39045 Fix empty fullBaseUrl leading to Host header injection attack
