Kunena 6.2.4 Released

The Kunena team has announce the arrival of Kunena 6.2.4 [K 6.2.4] which is now available for download as a native Joomla extension for J! 4.3.x/4.4.x/5.0.x. This version addresses most of the issues that were discovered in K 6.1 / K 6.2 and issues discovered during the last development stages of K 6.2

This is for users to help other users, to discuss topics that are related to forum administration in general or problems in running Joomla. This is not the place to ask for Joomla support. If you want assistance with Joomla please ask at forum.joomla.org

Important IMPORTANT --- Security Flaw in TapaTalk

9 years 9 months ago #1 by TheVisitors
Not exactly sure where I should have posted this. If this is in the wrong location, I hope a staff member can relocate it given the importance.

If you're site is using TapaTalk, update now! There was a security flaw found in TapaTalk and they decided NOT to inform anyone or advise anyone to update their files.

I did not find out until today, when I just happen to scroll over and found a post about it.

They even publicly admit to patching it silently, but NOT issuing a release or any notice telling people they should replace their files (because they did not even bother changing the version number either). :dry:

So I can only imagine how many sites are using the other copy without knowing they have a problem. This is completely irresponsible. :angry:

TapaTalk wrote: Hi,

This issue has been addressed in April 26th, 9 days before this site published the issue. However, since this is a low risk item - we have simply replaced all the plugins that are affected. If this is concerning you and If you have updated the plugin after April 26th, you are not affected.

Source: support.tapatalk.com/threads/tapatalk-cr...vulnerability.24719/

attached screenshots to confirm

www.sociallyuncensored.eu -- An uncensored community

Please Log in or Create an account to join the conversation.

9 years 8 months ago - 9 years 8 months ago #2 by sozzled
According to your website - the one contained in your signature - and the Tapatalk website, I don't understand how this affects Kunena. :unsure: Your website uses something called Xenforo which is a free-standing forum product. Let me rephrase that, Xenforo doesn't even work with Joomla. :S

The Tapatalk support forium also uses Xenforo.

So, I'm unsure if this "security flaw" has anything to do with Kunena and, further, there has been no confirmation or denial by anyone else in the Kunena community relating to security issues affecting Kunena caused by Tapatalk.

So, maybe there are security issues caused by Tapatalk that affect Kunena or maybe there aren't. I really don't have anything to add to this topic because the Kunena developers are not in contact with the Tapatalk developers.
Last edit: 9 years 8 months ago by sozzled.

Please Log in or Create an account to join the conversation.

9 years 8 months ago #3 by DTP2
I can confirm receiving this email.

Please Log in or Create an account to join the conversation.

Time to create page: 0.335 seconds