XenForo 2.2.17 Released Full Nulled By XnForo.Ir

Releases XenForo 2.2.17 Released Full Nulled By XnForo.Ir 2.2.17

Register & Get access to index
Overview Updates (6) Reviews (68) History Discussion

XenForo 2.2.17 Released Full

Today, we are releasing XenForo 2.2.17 to address a potential security vulnerability. We recommend that all customers running XenForo 2.2 upgrade to 2.2.17 or use the patch instructions below as soon as possible.

Notes:

a. XenForo 2.3.1 and above is not affected by this issue. If you are still running XenForo 2.3.0 you should upgrade to the latest release or apply the patch below.
b. The few XenForo Cloud customers still running XenForo 2.2 have been patched automatically.

More...
  • Like
Reactions: rojo_salas and wapewod532

XenForo 2.2.16 Patch 2 Released Full

Firstly, to clarify some concerns that have arisen:

1. If you did a normal upgrade (either uploading files or via your admin control panel) you do not need to manually edit any files to receive the security fixes.

2. If you upgraded to the initial 2.2.16 release, you are fully protected against the security issues that were being addressed.

Secondly, a second patch is being released to address some minor bug fixes that may not have been correctly applied when upgrading to XenForo 2.2.16. This is only applicable if you performed a normal upgrade to 2.2.16, and this patch is not security related or affected by the security fixes.

You can download that now from your customer area or perform a one-click upgrade through your admin control panel. You can go to Tools > Check for upgrades in order to see the second patch release.

If you are running XenForo Cloud, the fixes have been applied automatically.
  • Like
Reactions: krone, El Profesor, t0fx and 9 others

XenForo 2.1.16 Patch 1 Released Full

Some of the changes in XF 2.2.16 include:
  • Fix some issues with xf-dev:class-use-function to better support classes with class attributes and comments, or existing use function declarations.
  • Fix persistent action indicator when using back/forward navigation
  • Add _deleteFromSource method to support performing tasks right before entity deletion
  • Skip logging IPs when updating avatars during registration
  • Fix docblock return hint for \XF\Util\Ip::checkIpsAgainstBinaryRangeList
  • Add missing security locked phrase
  • Expose additional parameters to the reported_thread_title phrase
  • Ensure sticky threads are passed to the fetchExtraContentForThreadsFullView method
  • Adjust the phrasing of mail encryption options
  • Update purchase requests on user merge
  • Set aria-label for tooltips with no children
  • Skip processing email bounces and unsubscribes when email has been disabled in config.php
  • Gracefully handle errors when editing bookmarks
  • Clean up temp files after job completion
  • Add proper ordering to the shared IPs tab
  • Add an index hint to the newest members widget
  • Avoid generating invalid SQL with XF\Db\Schema\Column::values()
  • Prevent disabled accounts from using the admin control panel
  • Include a plain confirmation URL in the email sent to users awaiting email confirmation
  • Like
  • Love
Reactions: vehobi, 789winkids, noyanocelik and 7 others
Back
Top Bottom