VaultWiki - Wiki for Forum Communities - VaultWiki Security Update: Contrastive Vulnerability (XenForo only)

VaultWiki Security Update: Contrastive Vulnerability (XenForo only)
by
pegasus

View Profile

View Forum Posts

View Blog Entries

Visit Homepage

View Articles
Published on April 15, 2016 2:07 PM

1 Comment
Earlier today, our developers stumbled upon a security vulnerability while debugging other issues.

The Contrastive Vulnerability is an HTML/Javascript injection vulnerability that affects all versions of VaultWiki since 4.0.0 Beta 2 on XenForo only. vBulletin-based installations are not affected by this issue.

We have published the following Patch Level releases to resolve this issue:
- 4.0.10 Patch Level 1
- 4.0.9 Patch Level 1
- 4.0.8 Patch Level 3
- 4.0.7 Patch Level 4
- 4.0.6 Patch Level 7
- 4.0.5 Patch Level 7
- 4.0.4 Patch Level 7
We highly recommend that all users running any version of VaultWiki for XenForo in a production environment update to a patched release as soon as possible.
1 Comment
hollosch - April 16, 2016

Reply

Thx for the patch!
Oops!

Cancel Changes

All times are GMT -4. The time now is 9:00 PM.

This site uses cookies to help personalize content, to tailor your experience, and to keep you logged in if you register.
By continuing to use this site, you are consenting to our use of cookies.

Learn more… Accept Remind me later

Welcome to VaultWiki.org, home of the wiki add-on for vBulletin and XenForo!

VaultWiki Security Update: Contrastive Vulnerability (XenForo only)

Oops!