Fork me on GitHub
Current releases are 2.1.4 (30 Oct 2014) and 2.0.18.13 (5 Aug 2014)

Ready for 2.1? Find out if your plugins are compatible. 2.0 will no longer be updated after Dec 2014.

Security vulnerability: Flagging plugin (2.0.18.2 and earlier)

LincLinc Community InstigatorDetroit Vanilla Staff
edited March 2012 in Releases

There is an XSS vulnerability in Vanilla, version 2.0.18.2 and earlier. This only effects the Flagging plugin. Anyone using the Flagging plugin should immediately upgrade to 2.0.18.3 or make this change: Fix for Flagging XSS.

2.0.18.3 is now available.

Sr Developer at Vanilla Forums, humble servant of Lord Brackos, & pro smatcher. [GitHub, Twitter]

merfedUnderDogaerykkshisan

Comments

Sign In or Register to comment.