Register Members List Search Today's Posts Mark Forums Read

Closed Thread
 
Thread Tools
  #1  
Old 27 Mar 2012, 22:30
vB.Org System vB.Org System is offline
 
Join Date: Aug 2007
vBulletin Security Patch for vBulletin 4.1.4 - 4.1.11 for Suite & Forum - 03/23/2012

A recent vBulletin 4 (4.1.4 - 4.1.11 Suite & Forum) report indicated that there was a potential XSS exploit vector in the editor. Once the cause of the issue was isolated, code changes were made to eliminate the reported threat.

The issue does not affect vBulletin 3.x and vBulletin 4.0 - 4.1.3.

This patch has been issued for vBulletin 4.1.4 through 4.1.11.

To improve the security of your vBulletin 4 Suite installation please download the patch from the members area of vBulletin: http://members.vbulletin.com/
We recommend you install this security patch as soon as possible.

The upgrade process is the same as previous patch level releases - simply download the patch from the Members Area, extract the files and upload to your web server, overwriting the existing files. There is no upgrade script required.

Advanced Users - Files updated in the patch are:
  • includes/version_vbulletin.php
  • clientscript/ckeplugins/bbcode/plugin.js (if js uncompressed)
  • clientscript/ckeditor/ckeditor.js" (if js compressed)
Please note that this issue and fix affects BOTH vBulletin SUITE and FORUM.


More...
Closed Thread


Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
Forum Jump


New To Site? Need Help?

All times are GMT. The time now is 06:42.

Layout Options | Width: Wide Color: