Announcements XenForo 1.5.4 Released (Security Fix)

Currently reading:
Announcements XenForo 1.5.4 Released (Security Fix)

During routine internal testing, we discovered a security issue within XenForo 1.3 and newer. The issue allows a cross site scripting (XSS) attack to potentially be triggered via a specially crafted profile post. XSS issues may allow an attacker to steal data (including cookies) or force a user to take actions without their consent or knowledge (possibly including administrative actions).

We strongly recommend all XenForo customers follow one of the steps below to resolve this issue....

XenForo 1.5.4 Released (Security Fix)

Continue reading...
 

Create an account or login to comment

You must be a member in order to leave a comment

Create account

Create an account on our community. It's easy!

Log in

Already have an account? Log in here.

Welcome to customizeXF

We are running default XenForo style customized by cXF
Registration is free!

Search forums

Back
Top