The versions listed below are known to be affected by this issue. If you are using one of those versions, you should update to a newer release that has no known vulnerabilities.
Common Name Presumptuous Post Vulnerability VWE-ID VWE-2016-2047 Related Report None Severity MINOR Exploit Difficulty EASY Platform XenForo Description Permissions escalation.
Discovered January 30, 2016 Resolved February 9, 2016 Patches Available 4.0.8 Patch Level 2
4.0.7 Patch Level 3
4.0.6 Patch Level 6
4.0.5 Patch Level 6
4.0.4 Patch Level 6
4.0.3 Patch Level 6
4.0.2 Patch Level 9
Workaround Physically remove deleted comments. Adjust permissions so that no users can post comments if their comments would be moderated.
Sub-Categories of VWE-2016-2047