Details

Published: 17 March 2020

Introduction

The Kunena team is proud to announce the arrival of Kunena 5.1.16 [K5.1.16] which is now available for download as a native Joomla extension for Joomla 3.9.x. This version addresses most of the issues that were discovered in K 5.1 and issues discovered during the development stages of K 5.1.16.

We have Released K5.1.16 who has some improvements and fixes.

Read more: Kunena 5.1.16 Released

Details

Published: 27 October 2019

Introduction

The Kunena team is proud to announce the arrival of Kunena 5.1.15 [K5.1.15] which is now available for download as a native Joomla extension for Joomla 3.9.x. This version addresses most of the issues that were discovered in K 5.1 and issues discovered during the development stages of K 5.1.15.

We have Released K5.1.15 who has some improvements and fixes.

Read more: Kunena 5.1.15 Released

Details

Published: 13 August 2019

Introduction

The Kunena team is proud to announce the arrival of Kunena 5.1.14 [K5.1.14] which is now available for download as a native Joomla extension for Joomla 3.9.x. This version addresses most of the issues that were discovered in K 5.1 and issues discovered during the development stages of K 5.1.14. This update fixed 1 security issue.

We have Released K5.1.14 because of a 1 High Security issue

1 New feature to turn off "Re:" on subject names.

Read more: Kunena 5.1.14 Released - Security update

Posts in discussion: Kunena 5.1.14 Released - Security update

rich replied the topic: #1 7 months 3 days ago

Please use the correct category for your problem. This category here is for official announcements and not for troubleshooting.

reufelss replied the topic: #2 7 months 3 days ago

Hello, we have just installed version 5.1.15 DEV. Unfortunately, Java scripts, e.g. when replying to posts, can be execute in the header.
We testet it with the script "><script>alert(1)</script>

reufelss replied the topic: #3 7 months 3 days ago

I have installed the update. Our Version is 5.1.14

810 replied the topic: #4 7 months 5 days ago

You should install the update, then the problem should be solved. If you run any issue, then please try the nightly build, its on our download page, on the bottom.

reufelss replied the topic: #5 7 months 5 days ago

Sorry but Iám new hier.

We have the cross site scripting problem. By abusing the vulnerability an attacker can store JavaScript in the database, which is stored in the title of the answer he or she wrote. The now stored XSS is executed every time a user enters the affected topic in the forum, which could therefore be triggered by any user of the system. Note that the XSS gets only executed if it is the latest answer of the topic.

Can you help us?

Attachment not found

Attachment not found

Read More...

Details

Published: 21 July 2019

Introduction

The Kunena team is proud to announce the arrival of Kunena 5.1.13 [K5.1.13] which is now available for download as a native Joomla extension for Joomla 3.9.x. This version addresses most of the issues that were discovered in K 5.1 and issues discovered during the development stages of K 5.1.13

Read more: Kunena 5.1.13 Released