Announcement XenForo 1.3.5 Released (Security Fix)


XenForo, XenForo

Today, we are pleased to release XenForo 1.3.5. This release addresses a security vulnerability that was identified. As such, we recommend that all customers running 1.3 upgrade to 1.3.5 as soon as possible.

The security issue relates to XML processing. A specially crafted XML file can be used to enact a denial of service attack or potentially read files from the the file system. This type of vulnerability has been identified in many other applications. In XenForo, the risk is mitigated as...

XenForo 1.3.5 Released (Security Fix)

Continue reading...