PinoStudio 1
Update Info MyBB 1.8.13 - Printable Version

+- PinoStudio 1 (http://pinostudio1.com)
+-- Forum: Foros Varios Temas (http://pinostudio1.com/forumdisplay.php?fid=10)
+--- Forum: Archive Info (http://pinostudio1.com/forumdisplay.php?fid=12)
+--- Thread: Update Info MyBB 1.8.13 (/showthread.php?tid=1586)



MyBB 1.8.13 - DiegoPino - 11-07-2017

MyBB 1.8.13

Download: https://resources.mybb.com/downloads/mybb_1813.zip

What’s added/changed in this version?

This update includes fixes related to compatibility with PostgreSQL, SQLite and PHP 7.2 and resolves attachment HTML output problems. Note that the theme’s CSS files may need to be updated.

7 security vulnerabilities addressed:

High risk: Installer RCE on configuration file write — reported by pabstersac
High risk: Language file headers RCE — reported by Julian Rittweger
Medium risk: Installer XSS — reported by pabstersac
Medium risk: Mod CP Edit Profile XSS — reported by Julian Rittweger
Low risk: Insufficient moderator permission check in delayed moderation tools — reported by Starpaul20 of MyBB Team
Low risk: Announcements HTML filter bypass
Low risk: Language Pack Properties XSS — reported by Julian Rittweger


More Information in Blog MyBB:
https://blog.mybb.com/2017/11/07/mybb-1-8-13-released-security-maintenance-release/