The versions listed below are known to be affected by this issue. If you are using one of those versions, you should update to a newer release that has no known vulnerabilities.
Common Name An Unconfirmed Vulnerability VWE-ID VWE-2016-3104 Related Report None Severity MEDIUM Exploit Difficulty EASY Platform Affects all platforms supported by the vulnerable versions. Description Denial of Service. The vulnerability allows attackers to increase the likelihood that your site will be flagged for an email blacklist.
Discovered December 20, 2016 Resolved December 21, 2016 Patches Available 4.0.15 Patch Level 3
4.0.14 Patch Level 6
4.0.13 Patch Level 6
4.0.12 Patch Level 7
4.0.11 Patch Level 7
4.0.10 Patch Level 8
4.0.9 Patch Level 8
4.0.8 Patch Level 10Workaround For unsent notifications, set Settings > VaultWiki: Notifications > Enable Wiki Subscriptions = No.
Sub-Categories of VWE-2016-3104
-
#
-
# (cont.)
-
# (cont.)