Read Time:13 Second
Posted by Egidio Romano on Jul 16
——————————————————————————-
XenForo <= 2.2.15 (Widget::actionSave) Cross-Site Request Forgery Vulnerability
——————————————————————————-
[-] Software Link:
[-] Affected Versions:
Version 2.2.15 and prior versions.
[-] Vulnerability Description:
The XFAdminControllerWidget::actionSave() method, defined into the…