|Date Added:||9 February 2015|
|File Size:||9.19 Mb|
|Operating Systems:||Windows NT/2000/XP/2003/2003/7/8/10 MacOS 10/X|
|Price:||Free* [*Free Regsitration Required]|
XenForo 1.4.8 Released (Includes Security Fix)
Update the bundled version of jQuery Migrate to 1. Fix an incorrect permission check over viewing the moderator actions taken against a thread.
Convert from XenForo
Use a new “simple” Xenfpro code formatter when creating snippets for RSS feeds to prevent unexpected code from running. XenForo Company info Staff member. Thanks to Diego Palacios for reporting these two issues. See the Resolved Bug Reports forum for further information. The following template has had changes: Members Current visitors New profile posts Search profile posts.
Fix a situation where the spam cleaner would not remove replies by a spammer to their own thread. Forums New posts Search forums. Prune drafts hourly rather than daily. This could allow specially crafted requests to trigger an XSS for guests or for a registered user to trigger an XSS on themselves. Media New media New comments Search media.
Fix certain cases where the image proxy would unexpectedly fail to detect a 1.48 image.
We recommend that all customers running XenForo 1. Improved performance in the rich text editor.
The two security issues are XSS vulnerabilities. In the filter list system xentoro the admin control panel, dynamic highlighting when filtering did not escape output properly, potentially triggering an XSS against the user viewing the page. In addition, some of the bugs fixed in 1. Fix an issue where the vBulletin importer could infinitely loop.
XenForo — Wikipédia
This release addresses two potential security vulnerabilities and fixes a number of bugs found since the release of 1. Fixed trophies not being awarded at session creation as expected.
Throw an error when sending a warning and only one of the conversation title or message box has been completed. You must log in or register to reply here.
All customers with active licenses may now download the new version from the customer area.