Security

ข่าว XenForo 2.1.10 Patch 2 Released

  • 6
  • 0
XenForo 2.1.10 Patch 2 Released

Shortly after releasing 2.1.10, we became aware of an incompatibility related to how some add-ons add custom CSS to the control panel. This could lead to the control panel appearing unstyled. In order to resolve this, we have released XenForo 2.1.10 Patch 2.

You can perform the upgrade directly from your control panel by going to Tools > Check for upgrades (<url>/admin.php?tools/upgrade-check if you do not see the link due to display issues). You can also download the update from your Customer area and upgrade...

ข่าว vBulletin 5.6.1 Security Patch Level 1

  • 75
  • 0
A security exploit has been reported within vBulletin 5.6.1. To fix this issue, we have created a new security patch.

You can download the patch for your version in the Member's Area

We have made patches available for the following versions of vBulletin Connect:

  • 5.6.1 Patch Level 1
  • 5.6.0 Patch Level 1
  • 5.5.6 Patch Level 1
Installing the Patch
  1. Download the appropriate files for your version of vBulletin.
  2. Upload all files found within the zip file. Make sure to overwrite the...

ข่าว XenForo 2.1.7 (Includes Security Fix)

  • 377
  • 0
XenForo 2.1.7 is now available for all licensed customers to download. We recommend that all customers running previous versions of XenForo 2.1 upgrade to this release to benefit from increased stability.

Most importantly, this release fixes a security vulnerability in XenForo. Only XenForo 2.1.0 and above are affected.

The issue is a XSS vulnerability. XSS (Cross Site Scripting) issues allow scripts and malicious HTML to be injected into the page, potentially allowing data theft or unauthenticated access.

The vulnerability affects content displayed in the "Approval queue" and requires...

ข่าว XenForo 1.5 is no longer supported

  • 388
  • 0
We first documented in our XenForo 1.5 End of Life Schedule a clear timeline for the end of support and updates for XenForo 1.5.

Today, we have reached the first part of that timeline and from this point forward we will no longer be providing support or updates for XenForo 1.5. XenForo 2.0 and any versions prior to XenForo 1.5 are already unsupported.

At the time of writing, we will only accept support tickets and bug reports for XenForo 2.1. You may still seek support on the forum, if you wish...

ข่าว XenForo 1.5.24 Released

  • 326
  • 0
XenForo 1.5.24 Released

XenForo 1.5.24 is now available for all licensed customers to download. We recommend that all customers running previous versions of XenForo 1.5 upgrade to this release to benefit from increased stability.

Download XenForo 1.5.24

Some of the changes in XF 1.5.24 include:

ข่าว XenForo 2.0.9 Released (Security Fix)

  • 901
  • 0
No, you're not imagining it - we are doing another release, just a day after the release of 2.0.8.

XenForo 2.0.9 fixes a flaw that could potentially be exploited to create a cross-site scripting vulnerability. We recommend that all customers running XenForo 2.0 upgrade to 2.0.9 or use the attached patch file as soon as possible. Note that if you are applying the patch rather than doing a full upgrade to 2.0.9, you will need to apply...

ข่าว XenForo 2.0.8 Released (Security Fix)

  • 763
  • 0
Today, we are releasing XenForo 2.0.8 to address a potential security vulnerability. We recommend that all customers running XenForo 2.0 upgrade to 2.0.8 or use the attached patch file as soon as possible.

The issue is a XSS vulnerability. XSS (Cross Site Scripting) issues allow scripts and malicious HTML to be injected into the page, potentially allowing data theft or unauthenticated access.

Specifically, the issue relates to specially crafted text entered into messages and output using the structured text system (used in profile posts and comments).

Thank you to @batpool52! for...


ด้านบน