This is an old revision of this page, as edited October 25, 2021, 5:54 PM by pegasus(contribs). It may differ significantly from the current revision.
The versions listed below are known to be affected by this issue. If you are using one of those versions, you should update to a newer release that has no known vulnerabilities.
Common Name None VWE-ID VWE-20216247 Related Report None Severity MEDIUM Exploit Difficulty EASY Platform XenForo 2.x Description Denial of Service. A user can force an existing wiki attachment to become inaccessible by editing it and uploading a new version. Does not affect Lite versions.
Discovered October 6, 2021 Resolved October 25, 2021 Patches Available 4.1.2 Patch Level 3
4.1.1 Patch Level 8