Release notes 7.6.6
From SuiteCRM Documentation
SuiteCRM 7.6.6 IMPORTANT Security Patch
- Resolves a Multiple XSS Vulnerabilities in Yahoo YUI component & YUI IO Utility
- Removes the use of uploader.swf file (and references) within self-hosted YUI library that can be vulnerable to XSS attacks
Users of ALL previous releases are advised to Upgrade to 7.5.5 or 7.6.6 as soon as possible
Special thanks for chadbennett for alerting and helping us resolve this vulnerability.