VWE-2020-5643 Printable Version

https://www.vaultwiki.org/pages/Book/Documentation/VWE-2020-5643
This page is a chapter in Info Known Vulnerabilities

This page has been seen 65,705 times.

    • Created by on
Common NameNone
VWE-IDVWE-2020-5643
Related Report#5972
SeverityMEDIUM
Exploit DifficultyEASY
PlatformXenForo 2.x
DescriptionSubscription Management. Alerts for likes or reactions of content contributed to are sent even if the user is not opted-in to that alert.
DiscoveredMarch 7, 2020
ResolvedApril 7, 2020
Patches Available4.1.0 RC 2 Patch Level 1
4.1.0 RC 1 Patch Level 2
The versions listed below are known to be affected by this issue. If you are using one of those versions, you should update to a newer release that has no known vulnerabilities.