Thousands of Sites Hacked Via vBulletin Hole

JMH · Oct 25, 2013

Attackers appear to have compromised tens of thousands of Web sites using a security weakness in sites powered by the forum software vBulletin, security experts warn.

In a blog post in late August, vBulletin maker Jelsoft Internet Brands Inc. warned users that failing to remove the “/install” and “/core/install” directories on sites running 4.x and 5.x versions of the forum software could render them easily hackable. But apparently many vBulletin-based sites didn’t get that memo: According to Web site security firm Imperva, more than 35,000 sites were recently hacked via this vulnerability.

Thousands of Sites Hacked Via vBulletin Hole ? Krebs on Security

AceInfinity · Oct 25, 2013

I seen the title and had to laugh a little. :)

Paid forum software proven to be not the most secure just because you have to pay for it. It just means the developers are motivated by money lol.

edit: I also had to scroll down to see that this forum was using vBulletin, sorry. Hopefully updates and/or patches fix this for any fellow friends that use vBulletin, including Sysnative! :thumbsup2:

Search

Search

Thousands of Sites Hacked Via vBulletin Hole

JMH

Emeritus, Contributor

AceInfinity

Emeritus, Contributor