"Issue one is a potential Cross Site Scripting exploit, Issue two could allow routes to be forged on vBulletin pages."
Although this patch appears to be for vBulletin 5.1.4 - 5.1.9, it appears to imply that patches are available for earlier versions.
"If you're using a version of vBulletin 5 older than 5.1.4, you should upgrade to the latest version as soon as possible."
Does this in fact affect version 3.8.9 Beta 2?
This is the latest one that they list: Security patch: 3.8.8 PL1.
Although this patch appears to be for vBulletin 5.1.4 - 5.1.9, it appears to imply that patches are available for earlier versions.
"If you're using a version of vBulletin 5 older than 5.1.4, you should upgrade to the latest version as soon as possible."
Does this in fact affect version 3.8.9 Beta 2?
This is the latest one that they list: Security patch: 3.8.8 PL1.
Comment