What's new
By:
Filters
ExtraLicense - Buy, Sell, & Trade Your Licenses

This is a sample guest message. Register a free account today to become a member! Once signed in, you'll be able to participate on this site by adding your own topics and posts, as well as connect with other members through your own private inbox!

XenForo 1.4.13 Released (Security Fix)

EL PaperBoy

EL PaperBoy

Well-known member
During internal testing, we discovered a security issue within XenForo. The issue is known as a server-side request forgery (SSRF). This could allow an attacker to use your server to bypass your server's firewall and make internal requests. Depending on the services found, this could lead to privilege escalation or remote code execution.


This is a potentially serious issue and we strongly recommend all customers running XenForo 1.4 or older follow one of the below methods to fix this...

XenForo 1.4.13 Released (Security Fix)

Continue reading...

 
You must log in or register to reply here.

Similar threads

EL PaperBoy
XenForo XenForo 2.2.11 Released (Security Fix)
Replies
0
Views
2K
EL PaperBoy
EL PaperBoy
EL PaperBoy
XenForo XenForo 2.1.13 Released (Security Fix)
Replies
0
Views
2K
EL PaperBoy
EL PaperBoy
EL PaperBoy
XenForo XenForo 2.2.1 Released (Includes Security Fix)
Replies
0
Views
427
EL PaperBoy
EL PaperBoy
EL PaperBoy
XenForo XenForo 2.1.12 Released (Security Fix)
Replies
0
Views
462
EL PaperBoy
EL PaperBoy
EL PaperBoy
Official RSS - XenForo 2.2.1 Released (Includes Security Fix)
Replies
0
Views
267
EL PaperBoy
EL PaperBoy
Top