Read the official Contao announcements.
Contao 2.11.4 is available
by Leo Feyer – Announcements
Contao version 2.11.4 is available. The bugfix release fixes a critical privilege escalation vulnerability which allows regular users to acquire administrator privileges.
It is strongly recommended to upgrade productive installations which have regular users. If there are only administrator users, you are not affected by this issue.
Back to the news overview.