XenForo 2.2.15 Cross Site Request Forgery

-------------------------------------------------------------------------------XenForo <= 2.2.15 (Widget::actionSave) Cross-Site Request Forgery Vulnerability------------------------------------------------------------------------------- Software Link:https://xenforo.com Affected Versions:Version 2.2.15 and prior versions. Vulnerability Description:The XFAdminControllerWidget::actionSave() method, defined into the/src/XF/Admin/Controller/Widget.php script, does not check whether thecurrent HTTP…