We have recently become aware of a security issue within XenForo and have released a patch and new version (XenForo 1.3.8) to resolve this issue. We strongly recommend all XenForo customers follow the steps below to resolve this issue.
The issue is a cross site scripting (XSS) flaw that could allow an attacker to steal cookies or force a user to take actions without their consent or knowledge (possibly including administrative actions).
If you have any questions relating to...
XenForo 1.3.8 Released (Security Fix)
Continue reading...
The issue is a cross site scripting (XSS) flaw that could allow an attacker to steal cookies or force a user to take actions without their consent or knowledge (possibly including administrative actions).
If you have any questions relating to...
XenForo 1.3.8 Released (Security Fix)
Continue reading...