GoldenMerc
15-05-2007, 05:25 PM
Yes,
In response to the discovery of an XSS flaw in versions of vBulletin from 3.6.0 to 3.6.6, it has been necessary to release vBulletin 3.6.7.
We are sorry that this has come so soon after the release of vBulletin 3.6.6, but we always try to fix security problems as soon as we become aware of them. We have tried to keep this release as easy to upgrade to as possible by not making any changes to templates or database schema.
If you would rather not upgrade to fix the problem, a simple plugin is available to download at vBulletin.com. Please follow the link below for all the relevant information.
vBulletin 3.6.7 Release Announcement & Information (http://www.vbulletin.com/forum/showthread.php?t=229950)
Seems HHGS is ahead,We have just finished our update.
Ross
In response to the discovery of an XSS flaw in versions of vBulletin from 3.6.0 to 3.6.6, it has been necessary to release vBulletin 3.6.7.
We are sorry that this has come so soon after the release of vBulletin 3.6.6, but we always try to fix security problems as soon as we become aware of them. We have tried to keep this release as easy to upgrade to as possible by not making any changes to templates or database schema.
If you would rather not upgrade to fix the problem, a simple plugin is available to download at vBulletin.com. Please follow the link below for all the relevant information.
vBulletin 3.6.7 Release Announcement & Information (http://www.vbulletin.com/forum/showthread.php?t=229950)
Seems HHGS is ahead,We have just finished our update.
Ross