Ark 2.6.9 - Ark Editor Security Announcement
Immediate upgrade to Ark 2.6.9
NOTE: For more info on how to upgrade, please see: http://arkextensions.com/documentation/ark-editor/156-upgrading
High Risk XSS
vulnerability caused by Missing ACL checks in inline-editing save plugins. User can be unauthorised
SQL Injection vulnerability caused by incomplete data sanitation. User must be logged-in with Ark Editor component editing privileges.
X6 XSS vulnerabilities. User must be logged-in with Ark Editor component editing privileges. Affected Installs All prior versions of Ark Extensions
Upgrade to version Ark 2.6.9