Advertise Here | Advertise Here | Advertise Here | Advertise Here
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.
  2. Attention buyers: Please take the time to read THIS
    Dismiss Notice
  3. I have imposed a new requirement today limiting who can start and receive private conversations. This is in an effort to thwart scammers who have a zero post count but private message others offering to sell their licenses. The restriction is not strict, a user must post at least one (1) post in the forum before being allowed to start and/or receive private conversations. Read Forum Post
    Dismiss Notice
  4. Dismiss Notice
Dismiss Notice
Introducing the new Classifieds Section

Please see HERE for more info.

Official XenForo Security Releases: 1.2.7, 1.3.6 and 1.4.1 (Includes Patch)

Discussion in 'XenForo' started by EL Paper Boy, Sep 16, 2014.

  1. EL Paper Boy

    EL Paper Boy Member

    Local Time:
    9:55 AM
    A cross site request forgery (CSRF) issue has been identified in the SWFUpload library that XenForo uses. This issue may allow an attacker to make requests and carry out actions as you or one of your members.

    This issue affects all versions of XenForo available prior to this announcement. We recommend all customers take steps to apply a fix as soon as possible. If you have any questions about applying a fix, please post in the appropriate forum or submit a ticket.

    [FONT=Trebuchet...

    [url='https://xenforo.com/community/threads/xenforo-security-releases-1-2-7-1-3-6-and-1-4-1-includes-patch.83256/']XenForo Security Releases: 1.2.7, 1.3.6 and 1.4.1 (Includes Patch)[/url]

    Continue reading...
     

Share This Page