VWE-2016-2047
Return to current revision
Differences in Content
-
[template]Vulnerability
| cve=
| aka=Presumptuous Post Vulnerability
| severity=Minor
| difficulty=Easy
| description=Permissions escalation. Only affects XenForo.
| discover-date=January 30, 2016 -
-
| patch-date=February 1, 2016
| patches=4.0.8 Patch Level 2
4.0.7 Patch Level 3
4.0.6 Patch Level 6
4.0.5 Patch Level 6
4.0.4 Patch Level 6
4.0.3 Patch Level 6
4.0.2 Patch Level 9 -
+
| patch-date=
| patches= -
| workaround=Physically remove deleted comments. Adjust permissions so that no users can post comments if their comments would be moderated.
[/template]