[Description]-----------------------------------------------------------
XenForo is a commercial Internet forum software written in the PHP
programming language using the Zend Framework (A Rapid Application
Development Framework). The software is developed by a team led by
former vBulletin lead developers Kier Darby and Mike Sullivan .
*** - [Server Requirements]---------------------------------------------------
+ PHP : 5.2+
+ MySQL : 5.x+
*** - [Install Notes]---------------------------------------------------------
1. Extract the archive to a folder on your computer
2. See the INSTALL-UPGRADE.txt file for installation instruction
*** - [Greetings]-------------------------------------------------------------
.[/CODE]
We have recently become aware of a security issue within XenForo and have released a patch and new version (XenForo 1.4.10) to resolve this issue. We strongly recommend all XenForo customers follow the steps below to resolve this issue.
The issue is a cross site scripting (XSS) flaw that could allow an attacker to steal cookies or force a user to take actions without their consent or knowledge (possibly including administrative actions)
XenForo is a commercial Internet forum software written in the PHP
programming language using the Zend Framework (A Rapid Application
Development Framework). The software is developed by a team led by
former vBulletin lead developers Kier Darby and Mike Sullivan .
*** - [Server Requirements]---------------------------------------------------
+ PHP : 5.2+
+ MySQL : 5.x+
*** - [Install Notes]---------------------------------------------------------
1. Extract the archive to a folder on your computer
2. See the INSTALL-UPGRADE.txt file for installation instruction
*** - [Greetings]-------------------------------------------------------------
.[/CODE]
We have recently become aware of a security issue within XenForo and have released a patch and new version (XenForo 1.4.10) to resolve this issue. We strongly recommend all XenForo customers follow the steps below to resolve this issue.
The issue is a cross site scripting (XSS) flaw that could allow an attacker to steal cookies or force a user to take actions without their consent or knowledge (possibly including administrative actions)