Forum Plugin Version 2.7.1 - Security Fix

Contributed by: Blaine on Saturday, July 19 2008 @ 09:31 am EDT

Last modified on

A possible Cross-Site security vulnerability has been identified by NetAgent Co., Ltd. and JPCERT/CC Lt - http://jvn.jp/

The issue is with the forum search not correctly filtering out javascript. This new release addresses that issue and all sites are recommended to upgrade to this latest release which is now available in the downloads area.

The upgrade steps are to replace the changed files and run the plugin upgrade.
  • public_html/index.php
  • config.php
  • functions.inc
Comments (2)

Geeklog - Forum Plugin Version 2.7.1 - Security Fix
https://www.geeklog.net/article.php/20080719093147449