VWE-2020-5857 Printable Version

https://www.vaultwiki.org/pages/Book/Documentation/VWE-2020-5857
This page is a chapter in Info Known Vulnerabilities

This page has been seen 73,521 times.

- Created by
  pegasus
  on October 16, 2021

Common Name None
VWE-ID VWE-2020-5857
Related Report None
Severity LOW
Exploit Difficulty EASY
Platform XenForo 2.x
Description Information Disclosure. Debug output and file paths in the Javascript console when saving pages in areas with at least one custom field. Does not affect Lite versions.

Discovered May 9, 2020
Resolved June 11, 2020
Patches Available 4.1.0 RC 3 Patch Level 1
The versions listed below are known to be affected by this issue. If you are using one of those versions, you should update to a newer release that has no known vulnerabilities.

Common Name	None
VWE-ID	VWE-2020-5857
Related Report	None
Severity	LOW
Exploit Difficulty	EASY
Platform	XenForo 2.x
Description	Information Disclosure. Debug output and file paths in the Javascript console when saving pages in areas with at least one custom field. Does not affect Lite versions.
Discovered	May 9, 2020
Resolved	June 11, 2020
Patches Available	4.1.0 RC 3 Patch Level 1