Jump to content
Forum²

Recommended Posts

  • Forum² Admin
Posted

It has come to our attention that a XSS (Cross Site Scripting) attack is possible under specific circumstances when editing a post another member has made.

 

This issue only exists in IP.Board 3.2.0, 3.2.1, 3.2.2 and 3.2.3. We recommend that everyone using these versions apply this simple two file patch.

 

Simply download the zip, expand it on your computer and upload the files to the relevant folders on your server. The directory structure is maintained in the zip so you will have no issues finding the files.

 

If you need assistance, please contact technical support.

 

http://community.invisionpower.com/index.php?app=core&module=attach&section=attach&attach_id=37690" http://community.invisionpower.com/public/style_extra/mime_types/zip.gif" alt="Attached File" />

;http://community.invisionpower.com/index.php?app=core&module=attach&section=attach&attach_id=37690" march-editor-patch_3_2.zip ; ;25.21K

; ;

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
×
  • Create New...