XenForo 2.0.10 - Full

xF2 Releases XenForo 2.0.10 - Full 2.0.10

You must be signed in and/or upgrade to VIP to download this resource
No, you're not imagining it - we are doing another release, just a day after the release of 2.0.8.

XenForo 2.0.9 fixes a flaw that could potentially be exploited to create a cross-site scripting vulnerability. We recommend that all customers running XenForo 2.0 upgrade to 2.0.9 or use the attached patch file as soon as possible. Note that if you are applying the patch rather than doing a full upgrade to 2.0.9, you will need to apply the 2.0.8 patch too.

XenForo extends thanks to Thomas Schneider for identifying the issue.

The issue is a XSS vulnerability. XSS (Cross Site Scripting) issues allow scripts and malicious HTML to be injected into the page, potentially allowing data theft or unauthenticated access.

Applying a Fix: Upgrading
You may upgrade to 2.0.9 to fix this issue. You should upgrade as you would to any other release.

Customers with an active license may download 2.0.9 from their customer area. Full details for how to install and upgrade XenForo can be found in the XenForo Manual.
Author
Admin
Downloads
18
Views
276
First release
Last update
Rating
0.00 star(s) 0 ratings

More resources from Admin

Share this resource

Latest updates

  1. 2.0.10

    Some of the changes in XF 2.0.10 include: Improve compatibility with MySQL 8.0. Update to...