📢 Moderators Needed 🚀

Moderators are needed with resources to post or have access to resources to post. Submit an application to be considered.

RSS Feeds
Xenforo RSS Feed

RSS validateSubscriptionDetails() does not stictly validate key and token

Thread starter Kirby
Start date Today at 11:57 AM

Kirby

Guest

Guest or Bot

Today at 11:57 AM

\XF\Repository\UserPushRepository::validateSubscriptionDetails() does not validate if key and token are fully valid Base64.

This allows invalid values to be stored in the DB causing possible errors like
Code:

Code:

InvalidArgumentException: Invalid data provided src/vendor/spomky-labs/base64url/src/Base64Url.php:51

#0 src/vendor/minishlink/web-push/src/Encryption.php(82): Base64Url\Base64Url::decode('<redacted>')

when sending notifications.

Continue reading...

RSS Batch update threads should allow to add tag

RSS Filter DMs from Postings tab on profile

Show hidden low quality content

You must log in or register to reply here.

S	RSS XF 2.3 regression: Clicking "Handle report" on an assigned report does not reveal the save button making it impossible to submit the form Steffen Oct 30, 2025 Xenforo RSS Feed
K	RSS Adding, editing or removing passkey does not require user re-authentication Kirby Oct 29, 2025 Xenforo RSS Feed
V	RSS XF::logError does not work in CLI vbresults Oct 31, 2025 Xenforo RSS Feed
M	RSS CLI search rebuild doesn't report error with incorrect parameter Mouth Oct 30, 2025 Xenforo RSS Feed
S	RSS Who uses Patreon? Does anyone want an addon to promote forum members who are patrons? Stuart Wright Oct 13, 2025 Xenforo RSS Feed

📢 Moderators Needed 🚀

RSS validateSubscriptionDetails() does not stictly validate key and token

Kirby

Guest

We value your privacy