XenForo News

Latest news and announcements about XenForo, including new releases and development updates.
  • Threads: 321
  • Messages: 358
We hope you're enjoying the "Have you seen...?" series for XenForo 2.3 so far. We still have quite a bit more to show you while we work on adding the last finishing touches before we unleash XenForo 2.3 on this very forum. This week we're going to talk about various improvements we have made which are mostly focused around images. Check out the index below to skip to a specific post: Image optimization with WebP support Enhanced image resizing Use... Read more Continue reading...
While the first few 'Have you seen...?' posts for XenForo 2.3 have focused on mostly aesthetic or performance changes, today we are taking the opportunity to talk about one of the first new major pieces of functionality we've been working on. Every release cycle we like to focus on at least one significant feature related to content discovery and 2.3 is no different with the introduction of what we are calling Featured content. "But wait, don't we already have featured... Read more Continue reading...
In today's 'Have you seen...?' entry for XenForo 2.3 we're going to look at how we've zeroed in on enhancing performance, ensuring your community has a swift and seamless experience. We're going to take a deep dive into the advancements we've made and how they stack up against various performance metrics. But, before we get into the individual changes, let's take a quick look at the baseline - this is our current Performance score as calculated by Lighthouse for the XenForo... Read more Continue reading...
Well, here we are with our first Have you seen thread for XenForo 2.3. It's been a long time coming, and for various reasons that we will go into later, it has changed quite a bit from what we had originally intended it to be, but it's finally ready to start showing you what's new. tl;dr: there's a video at the end of this post. Dark mode A lot of the new stuff in XenForo 2.3 is related to performance improvements that won't be immediately apparent on first glance, but... Read more Continue reading...
XenForo 2.2.13 Released XenForo 2.2.13 is now available for all licensed customers to download. We strongly recommend that all customers running previous versions of XenForo 2.2 upgrade to this release to benefit from increased stability. In addition to the fixes listed below, we have a few other aces up our sleeves this time around. Full iOS PWA compatibility with push notification support iOS 16.4 finally introduced push notifications for iOS devices. To facilitate... Read more Continue reading...
XenForo 2.2.12 Released XenForo 2.2.12 is now available for all licensed customers to download. We strongly recommend that all customers running previous versions of XenForo 2.2 upgrade to this release to benefit from increased stability. We're pleased to announce the introduction of two new features available in XenForo 2.2.12. New CAPTCHA provider: Cloudflare Turnstile In September, Cloudflare Turnstile was announced. You may have noticed that we quickly implemented... Read more Continue reading...
Today, we are releasing XenForo 2.2.11 to address a potential security vulnerability. We recommend that all customers running XenForo 2.2 upgrade to 2.2.11 or use the attached patch file as soon as possible. The issue relates to HTML attribute injection which can be triggered when rendering editor content, such as when a post is edited or quoted. XenForo extends thanks to security researcher @PaulB, the team at @NamePros and @Xon for reporting the issues. We recommend... Read more Continue reading...
Today, we are releasing XenForo 2.1.13 to address a potential security vulnerability. We recommend that all customers still running XenForo 2.1 upgrade to 2.1.13 or use the attached patch file as soon as possible. The issue relates to HTML attribute injection which can be triggered when rendering editor content, such as when a post is edited or quoted. XenForo extends thanks to security researcher @PaulB, the team at @NamePros and @Xon for reporting the issues. We... Read more Continue reading...
Here we go! We're four HYS threads in already and you might be wondering just how many there are left. Well, I can't tell you 😉 But what I can tell you is - we're not even half way through yet! In case you've not yet seen the previous entries, you can check them out here. As ever, to ensure you're kept up to date, we strongly recommend caressing that "Watch forum" link and make sure you enable email notifications if you haven't done so already 🙂 Continue reading...
XenForo 2.2.10 Released XenForo 2.2.10 is now available for all licensed customers to download. We strongly recommend that all customers running previous versions of XenForo 2.2 upgrade to this release to benefit from increased stability. This version contains a fix for an issue whereby outgoing requests from the server running XenForo could be tricked into accessing web-accessible resources on the local network. The scope to exploit this issue is limited within the core and... Read more Continue reading...
XenForo 2.2.9 Released XenForo 2.2.9 is now available for all licensed customers to download. We strongly recommend that all customers running previous versions of XenForo 2.2 upgrade to this release to benefit from increased stability. In addition to the usual bug fixes and improvements, we've continued to improve compatibility with PHP 8.1 and added support for self-hosted licenses to more easily sign outgoing emails with DKIM as per this recent suggestion by... Read more Continue reading...
It has come to our attention today that a vulnerability has been discovered in popular Java logging library Log4j 2 which may allow attackers to arbitrarily execute code (remote code execution). Apache Log4j 2 is bundled with and used in many Java applications including Elasticsearch. XenForo itself is not directly exploitable, and we are currently investigating whether XenForo Enhanced Search can be used as a vector at all, but this is potentially significant enough that an abundance of... Read more Continue reading...

Create an account or login to comment

You must be a member in order to leave a comment

Create account

Create an account on our community. It's easy!

Log in

Already have an account? Log in here.

Back
Top