Jump to content
YOUR-AD-HERE
HOSTING
TOOLS

Locked Featured XenForo 2.2.11 Released Full + XenForo 2.2.11 Released (Security Fix)

itsMe

By MASTERitsMe
in Xenforo

 Share

Recommended Posts

itsMe Master Hacker

MASTERitsMe

Posted
Posted

This is the hidden content, please

Today, we are releasing XenForo 2.2.11 to address a potential security vulnerability. We recommend that all customers running XenForo 2.2 upgrade to 2.2.11 or use the attached patch file as soon as possible.

The issue relates to HTML attribute injection which can be triggered when rendering editor content, such as when a post is edited or quoted.

XenForo extends thanks to @PaulB, the team at @NamePros and @Xon for reporting the issues.

We recommend doing a full upgrade to resolve the issues, but a patch can be applied manually. See below for further details.

Note: There are no other changes in this release and any work previously done towards XenForo 2.2.11 - including a new CAPTCHA option by Cloudflare Turnstile and various bug fixes and improvements - will be released alongside XenForo 2.2.12 in the coming weeks.

 

This is the hidden content, please

 

This is the hidden content, please

Link to comment
Share on other sites
  • MASTERitsMe pinned and featured this topic
  • MASTERitsMe unpinned this topic
Guest
This topic is now closed to further replies.
 Share
Go to topic listing
×
×
  • Create New...

Important Information

We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.