Category Archives: Advisories

[KIS-2024-06] XenForo <= 2.2.15 (Template System) Remote Code Execution Vulnerability

Read Time:15 Second

Posted by Egidio Romano on Jul 16

———————————————————————–
XenForo <= 2.2.15 (Template System) Remote Code Execution Vulnerability
———————————————————————–

[-] Software Link:

https://xenforo.com

[-] Affected Versions:

Version 2.2.15 and prior versions.

[-] Vulnerability Description:

XenForo implements a template system which gives complete control over
the layout of XenForo…

Read More

[KIS-2024-05] XenForo <= 2.2.15 (Widget::actionSave) Cross-Site Request Forgery Vulnerability

Read Time:13 Second

Posted by Egidio Romano on Jul 16

——————————————————————————-
XenForo <= 2.2.15 (Widget::actionSave) Cross-Site Request Forgery Vulnerability
——————————————————————————-

[-] Software Link:

https://xenforo.com

[-] Affected Versions:

Version 2.2.15 and prior versions.

[-] Vulnerability Description:

The XFAdminControllerWidget::actionSave() method, defined into the…

Read More