Howdy, Stranger!

It looks like you're new here. If you want to get involved, click one of these buttons!

Try Vanilla Forums Cloud product

Ready to contribute?

Amazing! Sign our contributors' agreement and then join us on GitHub.

Update for critical security issue in PHPMailer included in release Vanilla 2.3.1

Vanilla 2.1.7 released

LincLinc Vanilla's Bard (and Lead Developer)Detroit Vanilla Staff

This is a critical security upgrade for all forums.

Download it now: http://vanillaforums.org/addon/vanilla-core-2.1.7

9 files changed. View the diff.

Security:

  • Fix for CSRF potential in posting & editing discussions.
  • Fix for allowing unauthorized Format changes to discussions (possible XSS vector when combined with the above CSRF).
  • Harden Gdn_Database against MySQL injection attacks by closing possible multiple-query-per-statement vector.

Hat tip to ZeniMax Online Studios' security team for disclosing the SQL injection vector.

Another hat tip to Dingjie Yang of Qualys, Inc for disclosing the CSRF & XSS vectors.

Both these contributors have responsibly disclosed previous security flaws as well, and we deeply appreciate their assistance.

Additional Patches:

  • Fix for "u.Photo isn't in GROUP BY" Fatal Error (thx @Shadowdare‌)
  • Fix for detecting locales in enabled application (thx @hgtonight‌)
  • Fix for IS NULL WHERE clauses (thx @imnotjames‌)
  • Added a new "Class Gdn not found" exception if ini files are out of date to avoid obscure errors (me)

Thanks all!

In other news, we made significant headway in our pull request backlog over the holidays and are moving to get the 2014 ones cleared as quickly as possible. We appreciate the contributions & activity (both on PRs and elsewhere) greatly.

hgtonightAdrianAaronWebsteyshashajackmaessenShadowdare

Comments

Sign In or Register to comment.