VWE-2019-5275 Viewing Source [template]Vulnerability | cve= | aka= | severity=Medium | difficulty=Normal | description=Permissions Escalation. Using template parameters in alternate parser types, such as plain-text, makes it possible to render content using settings from the wrong area. | platform=XF | lite=no | issueid= | discover-date=June 12, 2019 | patch-date=July 12, 2019 | patches=4.1.0 Beta 2 4.0.26 Patch Level 2 4.0.25 Patch Level 4 4.0.24 Patch Level 6 | workaround=In AdminCP > Wiki > Structures > Content Types, disable the Template type. [/template] 552 characters