UNKNOWNCVE-2025-71279
XenForo Passkey Security Bypass
Platform
php
Component
xenforo
Fixed in
2.3.7
XenForo before 2.3.7 contains a security issue affecting Passkeys that have been added to user accounts. An attacker may be able to compromise the security of Passkey-based authentication.
How to fix
Actualice XenForo a la versión 2.3.7 o posterior. Esta versión contiene las correcciones de seguridad necesarias para mitigar la vulnerabilidad de omisión de seguridad en las Passkeys.
Monitor your dependencies automatically
Get notified when new vulnerabilities affect your projects. Free forever.
Start free