VWE-2024-6538 Printable Version

https://www.vaultwiki.org/pages/Book/Documentation/VWE-2024-6538
This page is a chapter in Info Known Vulnerabilities

This page has been seen 277,509 times.

- Created by
  pegasus
  on March 8, 2024

Common Name None
VWE-ID VWE-2024-6538
Related Report #6421
Severity MEDIUM
Exploit Difficulty EASY
Platform XenForo
Description Permissions Escalation. Administrators receive an error when attempting to edit custom permissions for guests within a specific area, preventing them from revoking permissions in that area.

Discovered March 3, 2024
Resolved March 8, 2024
Patches Available 4.1.7 Patch Level 1
The versions listed below are known to be affected by this issue. If you are using one of those versions, you should update to a newer release that has no known vulnerabilities.

Common Name	None
VWE-ID	VWE-2024-6538
Related Report	#6421
Severity	MEDIUM
Exploit Difficulty	EASY
Platform	XenForo
Description	Permissions Escalation. Administrators receive an error when attempting to edit custom permissions for guests within a specific area, preventing them from revoking permissions in that area.
Discovered	March 3, 2024
Resolved	March 8, 2024
Patches Available	4.1.7 Patch Level 1