[KIS-2024-01] XenForo <= 2.2.13 (ArchiveImport.php) Zip Slip Vulnerability

Read Time:15 Second

Posted by Egidio Romano on Feb 04

————————————————————
XenForo <= 2.2.13 (ArchiveImport.php) Zip Slip Vulnerability
————————————————————

[-] Software Link:

https://xenforo.com

[-] Affected Versions:

Version 2.2.13 and prior versions.

[-] Vulnerability Description:

The vulnerability is located in the
/src/XF/Service/Style/ArchiveImport.php script. Specifically, into the…

Read More