VWE-2016-2039
Return to current revision
Current Revision
February 16, 2017, 1:25 PM
General Differences
made the following changes
- removed the title prefix 'XSS'
- changed the title from 'Balloon Vulnerability' to 'VWE-2016-2039'
Differences in Content
-
[template]Vulnerability
| cve=
| aka=Balloon Vulnerability
| severity=Extreme
| difficulty=Easy
| description=Denial of Service amplification.
| discover-date=January 13, 2016
| patch-date=January 21, 2016
| patches=4.0.8 Patch Level 1
4.0.7 Patch Level 2
4.0.6 Patch Level 5
4.0.5 Patch Level 5
4.0.4 Patch Level 5
4.0.3 Patch Level 5
4.0.2 Patch Level 8
4.0.1 Patch Level 11
| workaround=In your forum software's BB-Code Manager, disable parsing of the WIKI BB-Code and prefix-related BB-Codes for both wiki pages and regular message content.
[/template]