Jump to content


Welcome to IPS!

Feel free to browse our community to get a feel for how our community software operates. Post in the pre-sales forum with any questions you have before purchasing or use the Test Posting forum to post a few messages yourself! You can also get a free demo to try the IPS Community Suite yourself.

Already an active IPS client?

Login with the same email address and password you use for the client area to access client-only areas.

* * * * * 10 votes

IP.Board 3.1.x Security Patch Released

Started by IPS News, Sep 07 2010 09:42 AM

  • Please log in to reply
No replies to this topic

#1 IPS News

    Public Relations

  • IPS Staff
  • 710 posts

Posted 07 September 2010 - 09:42 AM

A security issue has been discovered in IP.Board 3.1.x that could potentially allow a malicious user to insert JavaScript or other code into your community.

The damage this sort of attack can do is drastically mitigated by IP.Board's use of HTTP-only cookies and other security measures.

As part of our continued dedication to security enhancement, we are releasing a simple patch for IP.Board 3.1.2 to address this issue. If you are running IP.Board versions less than 3.1.2 simply upgrade your software version.

Download Patch

Simply upload the attached file to: admin/sources/classes/bbcode/custom/defaults.php

Attached File  312_sept_patch.zip   11.15K   2944 downloads

The main download zip has been updated at the time of this post.
Back to News and Information


0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Invision Power Services
  2. Welcome to IPS
  3. News and Information
  4. Community Rules