Announcement XenForo 1.3.7 Released (Security Fix)

X

XenForo

Guest
Today, we are releasing XenForo 1.3.7 to address two potential security vulnerabilities. We recommend that all customers running XenForo 1.3 upgrade to 1.3.7 or use the attached patch file as soon as possible.

The two issues are XSS vulnerabilities. XSS (Cross Site Scripting) issues allow scripts and malicious HTML to be injected into the page, potentially allowing data theft or unauthenticated access.
  • In the notices system, the name token was not escaped as expected. This could...

XenForo 1.3.7 Released (Security Fix)

Continue reading...
 
You must log in or register to reply here.

Similar threads

X
Announcement XenForo 2.1.15, 2.2.16 and XenForo Media Gallery 2.1.9, 2.2.6 Released (Includes Security Fixes)
Replies
1
Views
154
Matt
Matt
X
Announcement XenForo & Add-ons 2.3.0 Release Candidate 1 Released (Unsupported) (Includes Security Fixes )
Replies
0
Views
117
XenForo
X
X
Announcement XenForo 2.3.0 & Add-ons Released
Replies
0
Views
96
XenForo
X
X
Announcement XenForo & Add-ons 2.3.0 Release Candidate 5 Released (Unsupported)
Replies
0
Views
85
XenForo
X
X
Announcement XenForo & Add-ons 2.3.0 Release Candidate 3 Released (Unsupported)
Replies
0
Views
115
XenForo
X

Shared Hosting

VPS Hosting

Server Management

Back
Top